Sr IDT Assurance Advisor

Job Description

If you are interested in Information Risk Management (IRM) and desire to sit into the drivers seat where we provide assurance to the organization on the risks we carry in IT world, IDT Assurance Services (IAS) is the team you would want to be in. Join our IAS team, where it is a great opportunity for those looking to develop IT Risk review/audit skills. This role is in the CISO / IDT Assurance / IDT Assurance Services organization. What's the role As a Snr IDT Assurance Advisor, your role is pivotal in fortifying the IT risk environment. You will conduct comprehensive risk management reviews, identify gaps and meticulously track remediation progress. Your key responsibilities include: Conducting Assurance Reviews : Perform thorough assurance reviews on projects and topics to enhance risk management practices. Regulatory Monitoring : Stay vigilant about new regulatory requirements and changes, proposing necessary adjustments to current risk reviews to ensure management receives accurate assurance. Risk Management Advisory : Provide expert advice to IT operations on risk management and contribute to the development of remediation plans for any identified control deficiencies. Collaboration with BIRMs/Business Focals : Work closely with Business Information Risk Managers (BIRMs) and business focal points to identify, assess, and review risks. ESSA Initiatives : Lead ESSA (Enterprise Security and Systems Assurance) initiatives related to assurance services, ensuring regular and accurate reporting. Oversight of Tools and Reports : Oversee the accuracy and relevance of tools and reports used by the team and stakeholders, making updates based on evolving business needs. Adherence to Assurance Plan : Ensure strict adherence to the approved assurance plan and provide detailed reporting on its execution. What you'll be doing This role demands a high level of expertise in IT security and risk management, with a focus on proactive risk management and continuous improvement. Responsibilities : Provide comprehensive assurance to the organization regarding IT risks. Continuously monitor new regulatory requirements and develop a robust assurance plan for the organization. Define and establish criteria for assessing information risks. Support the ITGC Testing Lead, especially during peak periods, to ensure seamless operations. Collaborate with cross-functional teams to enhance the overall risk management framework. Communicate effectively with stakeholders to ensure understanding and alignment with assurance processes and risk management strategies. Stay updated with industry best practices and integrate them into the organization's assurance strategies. Opportunity : Leadership and Influence : Youll be in a pivotal position to shape the organizations approach to IT risk management, providing assurance and influencing key decisions. Broad Scope : Beyond IT General Controls (ITGCs), youll have the chance to identify and mitigate risks in various areas, broadening your expertise and impact. Regulatory Insight : By continuously monitoring new regulatory requirements, youll stay at the forefront of industry standards and help the organization remain compliant and competitive. Strategic Development : Youll define and establish criteria for assessing information risks, contributing to the strategic development of the organizations risk management framework. Collaboration : Working with cross-functional teams will enhance your collaborative skills and allow you to contribute to a comprehensive risk management strategy. Support and Mentorship : Supporting the ITGC Testing Lead, especially during peak periods, will provide opportunities for mentorship and leadership within the team. Overall, this role offers a dynamic and impactful career path in Information Risk Management, with opportunities to lead, innovate, and collaborate across the organization. As the energy industry transitions to cleaner forms of energy, Shell is actively leveraging technology across its business. This exposes us to risk in Information security and regulatory requirements that come along with it. Snr. IDT Assurance Advisor plays a vital role in ensuring compliance with IRM policies and standards. This role involves delivering Assurance services and driving improvement projects, and developing assurance capabilities. Effective collaboration with stakeholders, managing impact from Shell-wide projects, and staying informed about internal policies and external risks are key challenges. What you bring Experience : 8+ years' experience in IT audits, ITGC testing, or conducting risk assessments/reviews. Monitoring regulatory changes, assessing organizational readiness, and providing assurance to management. Education : Academic Background : Bachelors Degree in Technology is required; a postgraduate degree is highly desirable. Certifications : Preferred certifications include those in IT security and Risk Management. Technical Skills : Comprehensive knowledge of information risk management and related processes. General knowledge of IT security standards (e.g., ISO 27001, COBIT). Certifications: ISO 27001, CISA, CRISC. Familiarity with widely used applications (e.g., SAP, Power Platform, Cloud). Continuous improvement mindset and project management experience. Soft Skills : Proactive problem-solving : Identify upcoming challenges and propose solutions. Learner Mindset : Professional curiosity and eagerness to learn. Highly motivated team player : Volunteer support and collaborate effectively. Prioritization skills : Handle multiple tasks simultaneously. Interpersonal skills : Communicate clearly and build relationships across stakeholders.