IT Governance Senior Specialist

NN HAYAT VE EMEKLİLİK A.Ş.

• BS in Computer Engineering, Industrial Engineering, Mathematic Engineering or related fields,
• 4+ years of experience in IT related roles
• For male candidates; military service should be completed.
• Strong communication skills in English
• Proven knowledge and hands-on experience in one or more areas of ITIL, COBIT standards and processes.
• Preferred certifications like CGEIT,CISSP,CISA, ISO 27001 LA
• Strong documentation and process design experience & skills,
• Strong analytical skills,
• Excellent communication capability,

İŞ TANIMI

The IT Governance Specialist will be responsible for the development, implementation, monitoring and improvement of the IT service management and Information security policies, procedures, processes and KPIs . The role will support the other IT divisions by setting the common and consistent governance framework, methodology, templates and automation tools to successfully manage communications, integration, deliverables and stable operations across all IT divisions.

• Build & execute service management policies, processes, RACIs, KPIs, procedures, guidelines and ensure relative awareness of all involved stakeholders.
• Implement governance frameworks and standards such as COBIT, ITIL, PCI/DSS, ISF
•  Work closely with the different IT departments in order to ensure the compliance of the applicable regulations and standards.
• Establish mechanisms, conduct assessments to identify IT Risks and compliance issues; develop, and recommends corrective action plans for resolution.
• Participate to all IT related audits and track the corrective actions for all IT risks and audit findings.
• Manage security monitoring process(Splunk)
• Measure effectiveness of information security controls and Service management process. Knowledgeable about ServiceNow or other ITSM tools.
• Ensure that data and IT compliance and practices are considered in projects, initiatives, new implementations and operational tasks.
• Measure and report all IT governance reports (such as KPI’s, security incidents, quality assessment results, Capacity planning etc) regularly (monthly/quarterly or as directed/requested) to IT Managers.
• Budget and invoice controls, contract management
• Vendor management process and controls(Vendor security maturity audits)
• Vulnerability and technical state monitoring.
• IT risk management
• UIM and Access control management
•  Aware of KVKK and other local regulations