IT Risk Manager

Organisatie
Rabobank
Locatie
Utrecht
Arbeidsvoorwaarden
Marktconform
Vakgebieden
Informatie Technologie
Risk & Compliance
Deze vacature is niet meer vacant

Technology & Innovation Risk Manager

You and your job
New and exciting technologies are right around the corner, creating enormous possibilities for Rabobank. With the arrival of GenAI and the acceleration that is expected, the bank turns even more into a tech company. At the same time we have to be on top of the new risks these technologies introduce. As a bank we have to be permanently aware of the trust that is placed in us. That is why we have to be diligent with regard to protecting our core systems, communication channels and data. We are currently looking for you to support our IT risk department with your knowledge of and experience in risk management with a focus on IT & Security risks.

As an Technology & Innovation Risk professional within the CRO domain, you take responsibility for designing, monitoring and evaluating our IT and security risks on an ongoing basis.

Rabobank increasingly accelerates in working with start-ups and adopting new technologies like AI, data-analytics and cloud. This transformation comes with challenging (but also exciting) topics related to Information Security, Third Party, Continuity and IT Risks, since our IT-landscape is more and more connected to external parties, cloud and mobile applications.

Imagine, that together with colleagues you’ll contribute to a Rabobank that stays in control of its IT-risks, because of your strong, fact-based advice. This way you can facilitate the exciting transformation, based on your thorough, in-depth knowledge and sound experience with IT risk.

At the moment we are looking for a new colleague to join our Libraries & Special Frameworks team. We would love to get in touch with professionals with a lot of experience. However, we also encourage you to apply to if you want to transfer from the audit or security officer world into ours. Especially when you have experience in IT control testing for the financial audit.

PracticalExamples

In your role you will:

  • support and challenge the IT domain of Rabobank Group regarding IT risks in general and information security risks specifically. Specifically, you will be responsible for designing risk & control libraries that form the foundation of our day-to-day risk management
  • guide the process and deliver on testing our internal control framework for IT General Controls as input for the financial statements as prepared by our external auditor
  • develop/safeguard a sound and balanced Operational Risk Management framework for Rabobank Group, in line with the risk appetite of the bank. This refers to the risk themes for the following disciplines:
    • Information Technology risk
    • Information Security
    • Third Party Risk Management
    • Business Continuity Management
  • globally monitoring, challenging and advising (on) the risk profile of the business, the ‘first line’
  • supporting the implementation/optimizing of our risk and control framework  
  • overseeing (oversight and provide independent opinion on OpRisk topics) and facilitating (business partnering by means of advising and challenging) the risk management activities of the IT domain bank wide, both nationally and internationally

Facts & Figures

  • 43,822 Rabobank colleagues around the world
  • 36-40 hours per week
  • A team of around 25 dedicated IT risk  colleagues


Top 3 responsibilities

  • Keep a close eye on the IT risks emerging around the bank. By constantly liaising with your colleagues and your stakeholders in the IT and Information Security departments you are able to have an up-to-date insight in the risks that the bank is running. Can you keep up with the constantly evolving risk landscape?
  • Update risks and controls, improve our risk control framework. By building strong relationships with your counterparts in the IT departments across the bank you are able to give your expert opinion on risk taking and risk management. In this way we are able to define an effective and efficient risk control framework, supported by our Operational Risk Management tooling. Are you up able to gain efficiencies and at the same time counter relevant risks by designing effective controls?
  • Measure and report risk: Continuity & IT Risk will measure and report risk exposures, trends in the evolution of the risk profile of Rabobank and in the external business environment, concentrations and risk-taking outcomes, divisionally and for the group-wide risk profile, scrutinizing them against the Risk Appetite and strategic goals. Reporting is done to the IT department, Risk Management Committees as well as managing board and supervisory board. Your work will get noted!

Together we achieve more than alone
We believe in the power of difference. Bringing together people's differences is what makes us an even better bank. So we are very curious about what you can bring to our team at Continuity & IT-Risk Management.

 IT Risk Manager: “If you like IT Risk and want to contribute to a more secure Rabobank, I really want you to apply. Given our size, the way we are organized (also internationally) and the fact that our IT-landscape is more and more connected to e.g. cloud or mobile applications, I think our work is often challenging, but therefore also more exciting. This because together with colleagues I contribute to a Rabobank that’s more in control of its IT-risks.

IT Risk Manager: “The Rabobank is continuously on the move. Within the department of Technology & Innovation Risk Management we work with a very talented group on a quickly developing set of IT Risk domains, among which emerging technologies as quantum and GenAI. As IT-risk manager you get to work on a very exciting and challenging, broad set of emerging topics. Personally, I really enjoy the work atmosphere within the department and the degree of freedom you get in your work.”

You and your talent

  • University Level (IT related Risk management qualification: CISM, CISSP, CCSP or RE): relevant Master’s degree
  • Sound understanding of the technicalities of operational and non-financial risk management, with broad familiarity with a variety of risk assessment analytics.
  • Sound understanding of the IT domain.
  • Experience with testing of ITGC’s for financial audit is considered to be a plus.
  • In-depth understanding of organizational structures and business processes.
  • Demonstrated good leadership, planning and managerial abilities, with solid project management and organizational skills, as well as ability to work with various internal and external stakeholders.
  • Detailed understanding of the current regulatory environment for IT, operational and non-financial risks.

The following conditions will be additionally valued:

  • experience in Project Management and/or Consultancy;
  • knowledge of the Rabobank organization.

This is what we offer you

  • a gross monthly salary between €5.115 and €8.793 (JG 10-11) (classification depends on education, knowledge and experience;)
  • a thirteenth month and holiday pay;
  • an Employee Benefit Budget (11% of your monthly salary). You decide how to spend this budget. This may include purchasing extra leave days, making extra pension contributions or even receiving a monthly cash pay-out;
  • a personal budget that you can spend on activities related to your personal development and career;
  • flexible working times and location-independent working;
  • 100% reimbursement of commuting costs if you travel by public transport! Do you still prefer to travel by car or motorbike? Then choose a commuting allowance;
  • a pension scheme, to which your contribution is only 5,5%.


This is a selection of the terms of employment for an IT Risk Manager based on a 36-hour working week. You can find all terms of employment on rabobank.jobs/en/conditions-of-employment.

You and the job application process

  • Any questions about the job content? Contact: Klaas Leendert Leijendekker, Global Head Continuity & IT Risk Management via Klaas.leendert.leijendekker@rabobank.nl or +31 (0) 6534 77 568.
  • Any questions about working at Rabobank and the process? Joris Opdam, Corporate Recruiter Risk Management via joris.opdam@rabobank.nl.
  • We can hold interviews through a video call.
  • You can find answers to the most frequently asked questions on rabobank.jobs/en/faq.
  • A security check is part of the process.
  • We respect your privacy.

#LI-JO2

Vacature informatie

Organisatie: Rabobank

Locatie: Utrecht

Opleidingsniveau: