Senior Risk Officer
Description
ABOUT THE ROLE:
Are you a strategic thinker and tech savvy risk professional ready to drive enterprise risk management in a dynamic iGaming environment? We're seeking a Senior Risk Officer to enhance and implement risk strategies that protect our business and foster innovation. This role is pivotal in maturing our risk framework, with an initial focus on Information Security risk management (including ISO 27001), potentially evolving to cover a broader risk taxonomy. You will collaborate closely with various departments, administer our GRC software as a technology lead, and contribute to a strong risk-aware culture.
So, if you're ready to make a significant impact and are interested in joining our pride, we want to hear from you.
YOU WILL BE RESPONSIBLE FOR:
- Risk Assessment & Mitigation: Lead and conduct complex risk assessments for new initiatives, products, and projects. Develop, implement, and monitor effective mitigation strategies.
- Enterprise Risk Management framework and strategy: Contribute to the continuous improvement and maintenance of the company's risk management framework, aligning it with best practices, regulations, industry standards such as ISO, the evolving risk landscape and strategic goals.
- Information Security Risk Management: Drive Information Security risk management activities, ensuring compliance with ISO 27001 requirements, potentially broadening to other risk areas.
- GRC System Administration & Technology Lead: Serve as the primary administrator for the Group's GRC risk software, ensuring its ongoing maintenance, optimization, and user support. This includes user management, data governance, workflow automation, training, maintenance of documentation and acting as the technology lead for risk reporting and data analysis (including on the GRC software and other internal reporting tooling).
- Risk Identification & Monitoring: Proactively identify, monitor, and report on emerging risks and trends, maintaining an up-to-date risk register and Key Risk Indicators (KRIs).
- Control Development & Implementation: Assist management in developing and implementing effective controls to mitigate identified risks. Collaborate with the Internal Audit function to facilitate and monitor the implementation of effective risk management practices by operational management.
- Risk Appetite & Culture: Monitor and communicate shifts in the organization's risk appetite. Promote a strong risk-aware culture through guidance and delivery of training sessions to diverse audiences;
- Cross-Functional Collaboration: Partner across departments (e.g., Product, Tech, InfoSec, Compliance, Internal Audit etc) to ensure a holistic and consistent approach to risk management.
- Reporting & Communication: Prepare clear, concise, and structured risk reports for management and committees. Effectively communicate technical or complex risk information to diverse audiences.
- Mentorship & Guidance: Provide guidance and training to Risk Officers and junior team members, fostering their professional development. Guide stakeholders with patience and constructive feedback, persuading and motivating others to integrate risk management into their decision-making processes.
OUR SUCCESSFUL CANDIDATE WILL HAVE THE FOLLOWING:
Essential skills:
Essential skills:
- Bachelor's degree in Information Technology, Computer Science, Business, Finance, or a related technical field and holder of a professional qualification (whether risk management related or otherwise e.g., PRM by PRMIA, FRM by GARP, CISA, ACA, ACCA, CFA, etc);
- 5+ years of experience in a risk management role either in the igaming industry, fintech or risk software vendors, with a strong focus on Information Security risk management (including ISO 27001).
- Proven experience as a GRC system administrator or technology lead for risk reporting (including data analysis and tools like Tableau).
- Strong attention to detail, ensuring accuracy in data collection, analysis, and reporting and proven analytical and numeracy skills with the ability to analyse data and identify risks trends.
- Strong understanding of risk assessment methodologies, control frameworks (e.g., ISO, COSO, COBIT), and regulatory compliance requirements.
- Excellent analytical and problem-solving skills, with a good understanding of systems, management information, and reporting systems.
- Excellent interpersonal and communication skills (written and verbal), with the ability to convey complex information clearly and concisely whilst influencing stakeholders at all levels.
- Demonstrated ability to manage cross-functional initiatives, develop and deliver training to large groups of people, and foster a risk-aware culture.
Nice to have skills:
- Prior knowledge of the betting and gaming industry.
- Project management skills.
- Experience in building and managing teams.
WHO ARE WE?
At the core of LeoVegas Group, is Team Leo. Our culture is our foundation and is what enables us to innovate, build, and lead as we trailblaze our way through the igaming industry. We’re a team of over 1800 innovators, initiators, and groundbreakers working in a fast-paced and agile environment across 16 offices world-wide.
BENEFITS:
- Hybrid work policy
- 4 weeks of Workation (T&C apply)
- Well-being allowance to support your active lifestyle
- Private health insurance
- Discounts across a range of retailers, gyms, bars & restaurants
- We offer an employee assistance program that can provide help and guidance during challenging moments.
- For non-Malta residents, we offer a relocation package with 3 weeks of accommodation and flights.
JOIN US!
In our pride, we like to empower our teammates to find their roar and run with their wildest ideas. We don’t wait around for things to happen, we pounce and make it happen!
If you think you would be a good fit for the Leo pride - give us a roar!
**As our company working language is English we’d like to see your CV in English please**