Job Description
Lloyds Bank GmbH and its brands Bank of Scotland and Lloyds Bank have won over 1 million satisfied customers in recent years. And this thanks to convincing products and, above all, our committed colleagues who want to achieve the best for our customers every day with new ideas, challenges and joy. In order to continue writing our success story, we are looking for the right reinforcement for our teams, because all our ambitious goals would be unattainable without teamwork. We also welcome career changers.
For our office in Berlin Mitte we are looking for a
ICT Compliance Manager Outsourcing (m/f/d)
- Oversee and Monitor the ICT third party service providers in relation to DORA requirements chapter 5
- Report DORA Obligations and critical incidents according to § 24 No.19 KWG to Regulator
- Assess the ICT security posture and compliance of prospective third – party providers
- Collaboration with IT Teams and Information Security Officer in relation to ICT services maintenance
- Develop and maintain the IT outsourcing framework (policy, procedures and tools) ensuring the management of outsourcing and other acquisitions of goods and services are in compliance with applicable laws and regulations
- Conduct regular and ad hoc monitoring activities to achieve policy compliance
- Coordinate the outsourcing risk analyses
- Create and maintain full documentation of the bank's outsourcings and ensure central oversight of the outsourcing portfolio against agreed contractual terms
- Report risks, issues and control weaknesses to the Management Board and write the annual outsourcing report pursuant to MaRisk
- Manage relationships and contact with internal and external auditors, regulators and investigating authorities
- Ensure appropriate exit planning is in place
- Recognized Master degree in economics/ law or equivalent
- Profound knowledge of common standards and regulations (e.g. DORA, BAIT, MaRisk, Guidance on outsourcing to cloud service providers , ISO27XXX, ITIL)
- Strong knowledge of Digital Operational Resilience regulation specifically as it pertains to outsourcing
- In-depth understanding of vendor risk management practices and framework, especially in ICT outsourcing
- Good understanding of ICT infrastructure, including on premise basis and cloud – based systems
- Several years professional experience in a comparable risk/ compliance function within the financial industry or a related advisory or audit role
- Excellent experience of risk related regulatory requirements
- Good information analysis and interpretation skills
- Excellent communication skills both verbal and written in English and German (Dutch is a plus)
- An international team with colleagues from more than 48 different countries
- Social benefits such as a company pension scheme and capital formation contributions
- 30 days holiday as well as 24 and 31 December as non-working days
- Employee Assistance Programme – personal 24/7 helpline for all employees
- Various possibilities for flexible working, i.a. various part-time models, flexitime
- Extensive, very flexible home office arrangements
- Possibility to work from other EU countries for up to 30 days per year
- Additional benefits such as sports activities, free fruit, nuts and drinks
- Employer contributions to BVG job ticket and a Lease a bike programme
- An informal corporate culture - without dress code and ‘Sie'.
- An excellent learning culture and opportunity to improve your professional competencies
- Easily accessible city centre offices, in the vicinity of many shops and restaurants to which you receive a discount