SIX drives the transformation of financial markets.
What sets us apart drives us ahead: between local roots and global relevance, we are a unique blend of tradition and future, of foundation and growth. We value bright minds and inspire them to grow with their ideas. Come and shape the future of finance with us.
Senior IT Risk and Control Officer
Warsaw | Working from home up to 40% | Reference 7682
Are you passionate about finance and modern technology? Do you have good organizational skills? If yes, this is the right place for you. You coordinate the IT Risk and controls out of a central team distributed between Switzerland, Spain and Poland, to ensure appropriate risk methodology and assessment and in-time remediation of deficiencies. You also help the operational SMEs to assess their Risks and Internal Control processes. Together with the diverse and motivated team you help to simplify and optimize the GRC landscape, develop templates and guidance as well as train and educate the organization towards the regulated environment and the need for GRC controls.
What You Will Do
- Own and continuously improve the ICS and central IT Control Catalogue, ensuring completeness, harmonization, regulatory alignment, and organization-widewide acceptance.
- Drive automation of controls, including implementation, evidence creation, testing, and evaluation to increase efficiency and maturity.
- Ensure consistent control usage across audits and assessments, fostering evidence reusability throughout SIX.
- Execute IT Assurance & Controls activities, including assessments, quality oversight, reporting, and coordination.
- Support IT Compliance & Regulatory Management, including regulatory interaction, certification, and audit readiness.
- Act as a connector and coach, linking LoD1/LoD2, SMEs, management, regulators, and auditors while translating complex requirements into clear, actionable guidance.
- Lead risk identification, review, and management together with operational SMEs, ensuring a consistent and robust risk process.
What You Bring
- 5+ years of experience in IT risk, controls, assurance, or compliance.
- Strong ICS / IT control framework expertise to maintain and harmonize control catalogues.
- Solid automation & GRC tooling skills (Jira & Confluence) to streamline control execution, evidence handling and reporting.
- Proven audit & assurance capabilities across assessments, testing, and reporting.
- Strong regulatory & compliance knowledge, including certification and audit readiness.
- Excellent stakeholder communication & coaching skills to translate complex topics and connect different stakeholders
- Very good written and spoken English skills. German, Spanish ISACA certifications are a plus.
If you have any questions, check out our FAQ page or call Mateusz Kozielec at +41583998611.
For this vacancy we only accept direct applications.
Diversity is important to us. Therefore, we are looking to receiving applications regardless of any personal background.
What We Offer
Flexible Work Models
We trust our employees and offer a work environment that is well-balanced, productive and fosters success.
Personal Development
You will benefit from a culture of continuous learning and feedback. Your personal growth is supported through an extensive learning offering.
Agile Working Methods
Whether through scrum or design thinking,
we solve exciting tasks together in teams.