CAREER OPPORTUNITY
SENIOR IT RISK & COMPLIANCE OFFICER
Position Description:
The National Commercial Bank of Anguilla Ltd (NCBA), the leading financial institution in Anguilla, invites applications from suitably qualified and experienced professionals for the position of Senior IT Risk and Compliance Officer. This middle-management role has responsibility for ensuring adherence to all relevant compliance and regulatory frameworks within the bank’s IT-related operations. As a key contributor within the Risk and Compliance function, the successful candidate will work closely with teams across the organisation to ensure NCBA maintains a strong and effective control environment and remains resilient in an evolving regulatory landscape.
The Senior IT Risk and Compliance Officer reports directly to the Chief Risk Officer.
This is a full-time, on-site position based in Anguilla.
Key Accountabilities Include but are not limited to:
- Identify and evaluate the Bank’s technology and cybersecurity risk and provide key input to the execution of risk assessments.
- Plan and execute reviews of information systems to (i) ensure potential issues and risks are identified and assessed, (ii) evaluate the adequacy and effectiveness of IT and cybersecurity internal control elements to mitigate risks regarding the confidentiality, integrity, and availability of business information, (iii) identify gaps and recommend adjustments.
- Ensure any IT-related gaps identified are recorded, tracked, and managed in the risk management tool.
- Conduct follow-up reviews to (i) ensure IT and cybersecurity risk mitigation plans are implemented, (ii) verify corrective actions address root causes, (iii) confirm system improvements.
- Work collaboratively to ensure IT related policies, procedures, standards, and configurations are adequately maintained, communicated and compliant with regulations.
- Support oversight of IT-related projects risk management.
- Assist in the development and oversight of the Bank’s Data Privacy and Protection Compliance Program.
- Support the development and oversight of the Bank’s Business Continuity Management Programme
- Support the development and oversight of the Bank’s Vendor/Third-Party Risk Management Program.
The ideal candidate must possess the following qualifications and background:
- Bachelor’s degree in computer science, Information Technology, or related field
- Certification as a Certified Information Systems Auditor (CISA)
- Professional certifications in compliance or risk management including CISM, CRISC, CISSP, ITIL or COBIT are an asset
- Prior experience in banking, financial regulation, or IT risk management is highly desirable
- Exposure to CAATs and system security packages and experience with networking is desirable
- Minimum of five (5) years’ of full-time experience in IT operations, Cybersecurity, business analysis, or program evaluation via internal and/or external auditing with a focus on information systems audits
- A graduate degree in Management Information Systems or a related field, or professional certifications may substitute for one year of required experience.
- Proficiency in Compliance Management and Regulatory Compliance practices
- Strong Analytical Skills to identify risks and recommend effective solutions
- Familiarity with relevant laws and regulations applicable to the financial and banking industry
- Proven ability to work independently and collaboratively with multidisciplinary teams
Strong problem-solving abilities and attention to detail