Reach out directly about this role
The Risk Manager - Platform Risk reports to the Senior Manager of Risk Management and IT Compliance team within Tech Risk Operations (TRO). This is a first-line of defense risk team responsible for Central Tech business unit risks & Security risks across the company. The Risk Manager - Platform Risk is a people manager role, focused on leading a team of individuals to enable consistent identification of technology-related risks for key Central Tech business unit technology platforms. These technology platforms enable the business to build and run in-house developed applications that support the core of our Business.
The Risk Manager - Platform Risk possesses both a strong technical understanding of DevOps IT technology and expertise in various risk domains. These domains include cybersecurity, IT, privacy, regulatory compliance, broader enterprise risks, Trust & Safety, cybersecurity regulatory compliance, and e-commerce fraud. This role involves identifying technology-related risks across core DevOps technology platforms, encompassing both public cloud and on-premise infrastructure. This includes (but is not limited to) public and private cloud platforms, like AWS, GCP, Azure, Kubernetes, Gitlab, CI/CD Tooling, etc.
This role also requires embedding secure software development principles and tooling (SAST, DAST, SCA) into BAU development practices, to apply them effectively to DevOps technology platforms. The Risk Manager - Platform Risk is also a subject matter expert leveraging a deep understanding of the enterprise risk discipline combining deep knowledge of theory and organizational practice or expertise across several different disciplines within a function. Effective first-line risk professionals are adaptable individuals who can engage with diverse senior technical stakeholders (Senior Engineering Managers, Product Owners, developers, etc.) This necessitates strong communication skills, technical proficiency, an ability to foster collaboration, incorporate different viewpoints, and steer efforts toward positive business results in managing IT risks and ensuring IT regulatory compliance obligations are met.
This position requires strong stakeholder management skills and requires an individual who can convince others who are skeptical or unwilling to accept new concepts, practices and approaches. This position involves extensive collaboration with senior technical stakeholders to ensure the consistent maintenance of existing IT controls across the organization. Success in this role requires exceptional stakeholder management skills, including the ability to build strong relationships, effectively communicate complex information, and persuasively influence individuals and teams, even when faced with resistance to necessary changes and the adoption of new security protocols. The ability to navigate organizational complexities and foster a culture of IT risk management, security awareness and compliance is critical. This role is also a people manager position and is fully responsible for managing a team of individuals and continuously improving the area under their scope. This manager will be responsible for leading and managing a team of internal and/or external resources (e.g. Risk Analysts, Risk Officers, consultants). They are comfortable leading a team to come up with robust, scalable and automated solutions that mitigate key risks while enabling successful business operations across multiple core platforms.
Netherlands, Amsterdam
Relocation
8-12 years
Experience
Full-time
Employment
Hybrid
Work Format
Lead
Grade
C1 - Advanced
English Level
Cybersecurity
Specialization
Travel
Industry
Product company
Company Type
By job title
Lead
Grade
C1 - Advanced
English Level
Cybersecurity
Specialization
Travel
Industry
Product company
Company Type