Back

IT Security Control Management Officer

Are you passionate about using technology to protect Danske Bank from cyber threats? Do you thrive on implementing and validating strong technology controls? If you enjoy collaborating with like-minded stakeholders, you might be the IT Security Control Management Officer we’re seeking in the Technology Risk Assessments and Controls team, part of Security, Resiliency and Controls.

As our new Officer, you will join a team providing compliance and formal management services for the IT and cyber security control framework. Functionally, you will primarily contribute to and support the maintenance of IT controls for stakeholders within the bank. Our team uniquely combines technical security topics with communication, regulatory requirements, and compliance to influence the security culture across the bank.

Who are we?
Security, Resiliency and Controls, led by the Chief Security Officer, is part of the technology organisation. Our mandate is to protect our people, customers, and assets—a fundamental banking function being the protection of customers’ money. Our vision is to develop a mature technology risk and controls environment that offers a transparent view of cyber and information risk, informed by business drivers and evolving threats. We aim to enhance the status quo by leveraging high-quality security capabilities to continuously mitigate new and reassessed risks to agreed levels.

In Technology Risk Assessments and Controls, we focus on the following security areas:

  • Risk and Control Integration (risk mitigation)
    • Assist and facilitate the identification of controls that mitigate technology risks.
    • Ensure risks and their mitigating controls are linked within our GRC tool (ServiceNow).
    • Monitor and validate the effectiveness of risk-mitigating controls.
  • IT Control Management
    • Build, design, and maintain processes to support control owners.
    • Govern the IT Control Management Lifecycle.
    • Monitor and validate IT controls.
  • Regulatory Requirements
    • Map external and internal IT requirements to IT controls.
    • Ensure the implementation and ownership of IT controls.
    • Monitor and validate mappings.
"Everyone is welcome-bring your authentic and full self to work."

You will:

Take ownership and guide the direction of IT control requirements by:

  • Designing, maintaining, enhancing, and supporting activities related to the IT Control Management Lifecycle
  • Monitoring and validating IT controls
  • Assessing and correlating technology risks with controls
  • Assisting with business-as-usual activities related to IT control management
  • Coordinating with, updating, and supporting colleagues in Technology Risk Assessments and Controls
  • Responding to and proactively resolving concerns and requests from stakeholders
  • Addressing queries about technology risks and controls while proactively engaging with key stakeholders
  • Conducting and facilitating controls workshops with stakeholders to provide advisory input and mature the controls environment

About you:

Most importantly, you are attentive to security and technology risk. To be a suitable candidate and future team member, you should have:

  • Relevant experience in hands-on information security risk and control activities, with a background in implementing and validating security policies and risk management frameworks aligned with standards such as ISO 27001, NIST guidelines, or the ISF Statement of Good Practice
  • Hands-on experience in controls management and its lifecycle, including design, implementation, validation, and operational effectiveness testing
  • Ability to manage stakeholders across various seniorities and technical understanding
  • Advanced English language skills
  • 2-3 years of experience in control testing within the technology or financial sectors Experience in auditing or other compliance/assurance roles is beneficial
  • A team-oriented mindset and the ability to work flexibly with global colleagues from diverse cultures and backgrounds

We offer:

Monthly salary range from 2640 EUR to 3960 EUR gross (based on your competencies relevant for the job).

Additionally, each Danske Bank employee receives employee benefits package which includes:
    • Growth opportunities: professional & supportive team, e-learnings, numerous development programs; (incl. professional certificates); 100+ professions for internal mobility opportunities.
    • Health & Well-being: a diverse, inclusive, work & life balance work environment; additional health insurance; mental well-being practices; partial psychologist counselling compensation; silence and sleep zones at the office; game rooms.
    • Hybrid working conditions: Work from home up to two days a week; home office budget (after the probation period); modern Danske Campus workplace developed with anthropologist for the best employee experience.
    • Additional days of leave: for rest, health, volunteering, exams in higher education institutions, and other important activities. Moreover, for seniority with Danske Bank.
    • Monetary compensation package: accidents & critical diseases insurance; financial support in case of unfortunate events, travel insurance; IIIrd Pillar Pension Fund contribution.

Additional days of vacation

Canteen services and free fruits

24/7 gym services and group trainings

Third pillar pension fund

See all the benefits HERE.

Join my team!

If you're interested in this role and joining my team, feel free to contact me via LinkedIn, and I will answer your questions!

Yancey Westerfield, Team Lead, Technology Risk Assessments

Apply via:

Send your CV

If you are interested, please send your CV in English no later than 14.02.2025. Confidentiality guaranteed.

Your title in job contract will be Officer – Business Risk & Controls.

Back