Social network you want to login/join with: Operational and ICT Risk Officer, Bilbao Client: Location: Bilbao, Spain Job Category: Other EU work permit required: Yes Job Reference: 152685296239824076832460 Job Views: 4 Posted: 24.01.2025 Expiry Date: 10.03.2025 Job Description: In the frame of our continuous growth and expansion, ADEPA is looking for an Operational and ICT Risk Management Officer. He/she will be responsible for ensuring alignment with regulatory standards and internal policies, safeguarding the integrity of our operations and IT systems. Main responsibilities: Primarily cope with operational and ICT risks related tasks in relation to Adepa group business to ensure compliance with the regulatory and internal guidelines, to identify, monitor and report on an ongoing basis all these risks related to our funds. Perform the daily business tasks following the current practice, assist in IT and operational project related tasks, and deal with special requests. The goal is to ensure a high quality across the whole operational and IT risk measurement process and to identify, report and implement areas for improvement with respect to the quality continuously. Collaborate with the Group Enterprise Risk Management (ERM) to uphold and refine the Operational Risk Management Framework. Investigate operational incidents and loss events, working with originators to identify root causes. Conduct lessons learned sessions to implement strategies preventing the recurrence of loss events. Assist departments in conducting Risk & Control Self Assessments (RCSAs) and in establishing risk mitigation controls. Evaluate outcomes of Risk Self Assessments (RSAs) to ensure effectiveness. Provide guidance to internal departments on operational risk matters. Work with the Group ICT Risk Management function to sustain and improve the ICT Risk Management Framework. Assess ICT processes to ensure adherence to DORA and CSSF ICT risk requirements. Perform evaluations on ICT assets to identify potential risks. Develop and maintain a comprehensive ICT risk inventory. Advise internal teams on DORA and CSSF ICT risk related inquiries. Engage with the CSSF concerning DORA and general ICT risk matters. Qualifications and experience: Education: Bachelor''s or Master''s degree in Mathematics, Economics, Information Technology, or a related field. Industry knowledge: Comprehensive understanding of fund operations and operational risk management practices. Technical proficiency: Strong IT and process management skills. Regulatory insight: Familiarity with regulatory frameworks pertaining to operational and ICT risks, particularly DORA. Software skills: Proficiency in MS Office Suite, especially Excel; experience with VBA or Python programming is advantageous. Fluency in Spanish and English (written and oral); any other European language is a plus. Time management: Ability to meet tight deadlines efficiently. Independence and teamwork: Capable of working autonomously and collab