IT Risk Analyst (M/F/D)
⚲ Warszawa
Do uzgodnienia
Wymagania
- Risk Reporting
- GRC
- ISO 27001 / 27002
- ServiceNow
- TPRM
- IT Risk
Opis stanowiska
About the role
Join our IT Risk & Security Governance team and play a key role in shaping how we understand and communicate risk across the organization.
As an IT Risk Analyst, you will combine hands-on risk assessment work with end-to-end ownership of executive-level reporting. Your insights will directly support decision-making at the highest level, including CISO, CIO, and senior leadership.
This is a high-visibility role for someone who can translate complex risk data into clear business impact and actionable insights.
Your responsibilities
• Conduct IT and security risk assessments (top-down & bottom-up) using ServiceNow (SNOW)
• Ensure risks are properly identified, assessed, documented and maintained throughout their lifecycle
• Validate risk scenarios (impact, likelihood, mitigation plans) with IT and business stakeholders
• Own the monthly risk reporting cycle (data extraction, analysis, storytelling, delivery)
• Prepare executive-ready reports and presentations for senior leadership
• Translate risk data into business impact, trends and priorities
• Analyze risk trends, deviations, controls and third-party exposures
• Identify systemic risks and emerging threats
• Support third-party risk assessments (TPRM) and supplier risk reporting
• Track risk deviations and mitigation actions
• Collaborate with stakeholders across IT and business functions
Our requirements
• Experience in IT Risk, Security Governance or Technology Risk
• Hands-on experience with ServiceNow (SNOW) or other GRC tools
• Proven track record in risk reporting (monthly / executive-level)
• Strong ability to translate technical risk into business language
• Knowledge of ISO 27001 / 27002 standards
• Experience in Third-Party Risk Management (TPRM)
• Excellent communication skills in English (min. B2/C1)
• Ability to work with both technical teams and senior stakeholders
• Analytical mindset and confidence in working with data
• Bachelor’s degree in IT, cybersecurity or related field
Nice to have
• Experience with executive presentations and storytelling
• Familiarity with IT control environments and audits
• Experience in international or matrix organizations
What we offer
• Employment based on an employment contract, along with a comprehensive benefits package
• Training and development programs, as well as access to an e-learning platform
• Onboarding program with the support of a dedicated Buddy
• Participation in an annual, company-wide integration event
• A work environment based on Scandinavian organizational culture
• Opportunities for growth through our internal program
Benefits
• Sharing the costs of sports activities
• Private medical care
• Sharing the costs of foreign language classes
• Sharing the costs of professional training & courses
• Life insurance
• Integration events
• Corporate gym
• Corporate sports team
• Coffee / tea
• Parking space for employees
• Extra social benefits
• Holiday funds
• Christmas gifts
• Employee referral program
• Charity initiatives
• Bicycle parking
• Modern and ergonomic office
• Yoga in the office
Join our IT Risk & Security Governance team and play a key role in shaping how we understand and communicate risk across the organization.
As an IT Risk Analyst, you will combine hands-on risk assessment work with end-to-end ownership of executive-level reporting. Your insights will directly support decision-making at the highest level, including CISO, CIO, and senior leadership.
This is a high-visibility role for someone who can translate complex risk data into clear business impact and actionable insights.
Your responsibilities
• Conduct IT and security risk assessments (top-down & bottom-up) using ServiceNow (SNOW)
• Ensure risks are properly identified, assessed, documented and maintained throughout their lifecycle
• Validate risk scenarios (impact, likelihood, mitigation plans) with IT and business stakeholders
• Own the monthly risk reporting cycle (data extraction, analysis, storytelling, delivery)
• Prepare executive-ready reports and presentations for senior leadership
• Translate risk data into business impact, trends and priorities
• Analyze risk trends, deviations, controls and third-party exposures
• Identify systemic risks and emerging threats
• Support third-party risk assessments (TPRM) and supplier risk reporting
• Track risk deviations and mitigation actions
• Collaborate with stakeholders across IT and business functions
Our requirements
• Experience in IT Risk, Security Governance or Technology Risk
• Hands-on experience with ServiceNow (SNOW) or other GRC tools
• Proven track record in risk reporting (monthly / executive-level)
• Strong ability to translate technical risk into business language
• Knowledge of ISO 27001 / 27002 standards
• Experience in Third-Party Risk Management (TPRM)
• Excellent communication skills in English (min. B2/C1)
• Ability to work with both technical teams and senior stakeholders
• Analytical mindset and confidence in working with data
• Bachelor’s degree in IT, cybersecurity or related field
Nice to have
• Experience with executive presentations and storytelling
• Familiarity with IT control environments and audits
• Experience in international or matrix organizations
What we offer
• Employment based on an employment contract, along with a comprehensive benefits package
• Training and development programs, as well as access to an e-learning platform
• Onboarding program with the support of a dedicated Buddy
• Participation in an annual, company-wide integration event
• A work environment based on Scandinavian organizational culture
• Opportunities for growth through our internal program
Benefits
• Sharing the costs of sports activities
• Private medical care
• Sharing the costs of foreign language classes
• Sharing the costs of professional training & courses
• Life insurance
• Integration events
• Corporate gym
• Corporate sports team
• Coffee / tea
• Parking space for employees
• Extra social benefits
• Holiday funds
• Christmas gifts
• Employee referral program
• Charity initiatives
• Bicycle parking
• Modern and ergonomic office
• Yoga in the office
🔍 Dekoder Ogłoszenia
🟡
play a key role in shaping how we understand and communicate risk across the organization
Twoje sugestie mogą być brane pod uwagę, ale ostateczne decyzje należą do kierownictwa.
🔴
Your insights will directly support decision-making at the highest level, including CISO, CIO, and senior leadership
Będziesz przygotowywać raporty dla zarządu, co oznacza dużą odpowiedzialność i presję.
🟡
This is a high-visibility role
Twoja praca będzie widoczna i oceniana przez kierownictwo, co może oznaczać zarówno szanse na rozwój, jak i większą presję.
🔴
end-to-end ownership of executive-level reporting
Będziesz odpowiedzialny za cały proces tworzenia raportów dla zarządu, od zbierania danych po prezentację.
🟡
translate complex risk data into clear business impact and actionable insights
Oczekuje się od Ciebie umiejętności przekładania technicznych danych na język zrozumiały dla biznesu i proponowania konkretnych rozwiązań.