Opis stanowiska

Rekrutacja zdalna

Role: Risk & Control Lead

Location: flexible, a few times per month in the office in Krakow

Industry: Banking

Contract type: B2B

Duration: long-term cooperation

An experienced Risk & Control Lead to lead and improve risk management practices within GCIO. This role is key in ensuring effective governance, regulatory compliance, and alignment with enterprise-wide risk strategies.

Main Responsibilities: Lead the execution and enhancement of risk and control processes across GCIO, ensuring alignment with internal frameworks and regulatory standards.

• Prepare insights and reporting for Risk & Control Management Meetings (RCMMs) to support risk-based decision-making.

• Represent GCIO in enterprise-wide risk forums and working groups, driving consistency in risk practices.

• Challenge and support residual risk assessments to ensure alignment with risk appetite and external expectations.

• Strengthen the Risk & Control Assessment (RCA) process in collaboration with control owners and capability teams.

• Coordinate regulatory responses, board materials, and content for control committees.

• Support crisis response and ad-hoc control issues, providing timely input to leadership.

• Lead or contribute to cross-functional initiatives, including Operational Resilience and Cybersecurity (e.g. NIST frameworks).

Key Requirements:

• Min. 5 years of experience - Proven experience in risk and control roles within large, complex organisations

• Experience in the banking sector

• Strong understanding of internal control environments, risk frameworks, and regulatory expectations.

• Experience developing and executing technology risk strategies and overseeing control effectiveness.

• Ability to identify control gaps, assess risk trends, and propose proactive mitigation strategies.

• Skilled in stakeholder engagement across multiple functions and geographies.

• Familiarity with frameworks such as NIST, and topics including cyber, operational resilience, and regulatory compliance.

• Strong communication and analytical skills with experience preparing content for senior forums and regulatory audiences.

• Demonstrated ability to foster a risk-aware culture and drive continuous improvement in governance practices.