Work smart, have fun and make an impact!
EcoVadis is the leading provider of business sustainability ratings.
Our solutions are backed by an international team of experts and powerful technology. We analyze data and build sustainability scorecards that give companies actionable insights into their environmental, social and ethical risks.
Why apply to EcoVadis?
Be a part of the global sustainability change in business. Grow your career. Work with extraordinary people. Feel valued for your contribution.
Learn more about our team and culture on EcoVadis careers page
If you have questions about the company or open roles you can Chat with an insider
The role of IT Risk Expert is to ensure key company information is effectively safeguarded.
In order to achieve this objective IT Risk Expert will lead all work around IT risk identification, assessment and response. Work will be performed with the collaboration of other functions, e.g. Internal Controls, Information Security and IT Security.
Primary Responsibilities
- Undertaking risk reviews of the IT control framework;
- Assisting in finding practical and cost-effective solutions to identified or revealed security and risk issues;
- Providing direction and guidance in the development, implementation, and communication of risk-related policies and standards;
- Providing aggregated risk supervision for various high impact areas of IT services for core components of IT risk measurement and reporting activities;
- Actively engaging in end-to-end risk remediation planning, resolution, and monitoring activities;
- Assisting in developing and implementing policy and guidance;
- Support Internal Control team by performing GITC testing;
- Prepare audit reports and documents observations and commitments clearly, accurately and timely to enable tracking verification;
- Review and assess corrective and preventive action plans and execute follow-up activities, including verification of remediation commitments, documentation of results, reporting on follow-up status, and escalation of any identified risk;
- Builds and maintains trusting, collaborative relationships and partnerships with internal and external stakeholders to accomplish business objectives;
- Maintain awareness of new and emerging technologies, regulatory requirements and enforcement trends related to IT systems, Data Integrity and regulatory requirements.
Fundamentals:
- Min. 5-8 years relevant working experience, of which a significant amount in IT auditing
- CISA or CRISC certificate
- Good knowledge of IT environments, IT operating systems, mobile and internet technologies
- Knowledge of cloud computing
- Knowledge of IT processes
- Knowledge of IT security concepts
- Knowledge of IT audit methodology
- Understanding of SOX requirements in regards to IT environment and experience in performing IT controls testing.
- Languages: English - Full professional proficiency.
- Experience in using dedicated Risk Intelligence applications, e.g. Resolver - a plus.
Other requirements:
- Pro-active, critical, curious and like to take initiatives
- Accurate, creative in your solutions and a team player who’s capable of working in international teams, as well as independently
- Structured and performance oriented, and keen to take the initiative to make a difference
- Customer-oriented, able to put yourself in the position of an audit client without losing objectivity
- Assertive and bold enough to challenge management and recommend improvements
- Presentation skills
Additional Information
Location: Warsaw/remote from Poland
Start date: ASAP
Contract: B2B or CoE
Everyone at EcoVadis contributes to a culture of trust, respect and empowerment. Our growing team in Poland is full of talented professionals from various fields who all share a desire to change the world.
We offer competitive salaries and support personal growth from day one with extensive onboarding, mentoring and a brand new e-learning platform bursting with courses and modules so you can learn new skills and fine-tune old ones.
Our team enjoys the benefits of flexible working. Some of us work from home and some prefer to work from our easily accessible (metro, tram, bus, bike, suburban train) office hub in the heart of Warsaw. We have regular onsite and online team breakfasts. Our CSR team coordinates events where we can give back to local communities and ecosystems. At the office you can chill in break areas, enjoy a panorama of Warsaw or visit our lovely terrace.
EcoVadis will support you with all the necessary office equipment, holidays in line with Polish labor law, optional (fully covered or co-financed) health care and life insurance, Multisport card as well as a lunch card. Everyone at EcoVadis can also use a community service day when volunteering.
Please, share with us your English CV and we can guarantee a response to every application. A new job with purpose awaits you!
Don’t fit all the criteria but still think you’d be a good candidate? Please apply anyway to give our hiring team the opportunity to assess your skills and to learn more about what you could bring to EcoVadis. We’re interested in hiring capable people, regardless of professional and educational background.
Can the hiring process be adjusted to suit my needs? Yes. We want everyone going through the hiring process with EcoVadis to feel confident that you are able to demonstrate your full potential. We welcome applications from disabled people, people with long-term health conditions and neurodiverse candidates. If you need any adjustments, please let the hiring team know.
Our team’s strength comes from everyone’s uniqueness and is founded upon mutual respect. EcoVadis commits to equity, inclusion and reducing bias in our hiring processes. EcoVadis does not accept any form of discrimination based on color, national or ethnic origin, ancestry, citizenship, religion, beliefs, age, sex, gender identity, sexual orientation, neurodiversity, disability, parental status, or any other protected characteristic that makes you unique. In your application, we encourage you to remove personal information such as: photographs, marital status, number of children, religion, gender, residential postal code, university graduation date, past medical or parental leave(s) taken, nationality (instead, please state if you are legally eligible to work in the job region/country), university name (instead, please state any degrees obtained and the study major).
