[ref. e41374516] London - Audit and Compliance Analyst
At Allwyn Lottery Solutions we build and deliver our interactive platform for lottery gaming, including the National Lottery website, Mobile channels and an increasing suite of other products for our International client base.
Our vision is to be a leading technology and professional services provider to lotteries around the world. We’re a dynamic company with ambitions of changing the way in which the world engages with its lotteries. What we want to achieve is impossible without an amazing team of people, spanning sales, technology, consulting and product development.We hope you can be a part of this team.
Purpose of the Role:
The purpose of this role is to continue to support in developing an effective control assurance programme suitable for the organisation which will enable the compliance team to report on the control environment posture. This includes reviewing prioritised Critical/High risk controls on a regular basis, supporting the Team by reporting and detailing control gaps and failings or providing assurance that controls are effective and working appropriately.
The role will cover compliance with ISO 27001, ISO 22301, ESG, Responsible Gaming, PCI DSS,SoC and new ISO or WLA standards which may be beneficial to the company.
Key Accountabilities:
- Support the implementation of the IT Risk Management Framework and process through supporting the roll out the firm’s Enhanced Risk Management Framework
- Support with Identify potential threats and vulnerabilities for business processes, associated data and supporting capabilities to guide in the evaluation of enterprise risk.
- Report the status of the operation Control landscape and audit action remediation to stakeholder
- Support to identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements
- Support Audit and Compliance internal and external relationships, and actively contributed to the audit lifecycle.
- Maintain Terms of References, fieldwork evidence collection, agreed audit actions, closure dates, sign off from LT, to address control gaps within agreed time frame.
- Conduct regular internal audits in line with the requirements of the standards.
- Monitor industry and regulatory developments in order to identify areas of vulnerability and risk.
- Develop and support implementation of corrective/preventative action plans for the resolution of compliance issues and provide guidance and coaching on how to avoid future incidents.
- Communicate the compliance programme to all employees including management
- Prepare and deliver presentations to managers and other interested parties reporting on the status of compliance initiatives.
- Meet with the business to build relationships and enhance their capability to manage risk.
- Create a defined process that allows for the evaluation, approval and adoption of all new compliance and certification activities to ensure clear ownership, documented processes, and proper controls.
- Assist in defining a Business Continuity Plan appropriate to the business.
- Conduct regular internal audits in line with the requirements of the standards.
- Identify, record, maintain and report on business risks associated with the standards.
- Preparation and maintenance of an active “Non Compliance” register.
Requirements
Essential Experience:
- 2-5 years experience in an Compliance or Risk role within an Technology, Gaming or heavily regulated environment
- Proven track record working in Risk Management / LOD / ITor IS functions
- Proven track record working with regulators / auditors
- Thorough understanding and implementation experience of IT Risk and Control frameworks
- Knowledge and working experience of control testing / assurance / managing and conducting audits
- Detailed understanding of Technology governance processes
- Takes ownership / accountability of tasks and drives them to completion
- Constructively challenges where appropriate
- Seeks opportunities for continuous improvement to achieve ‘best in class’
- Meticulous, strong attention to quality and accuracy
- Good written and verbal communication skills
- Ability to develop and present management summary concisely and succinctly
- Proven background in a results driven and team oriented company
Education, Qualifications, Knowledge, Skills and Experience:
- University level degree in Business or relevant field of study
- CISSP, CISM or CISA certified desirable
- Knowledge and experience of the security products available including intrusion detection, SIEM and encryption tools desirable
- An understanding of ESG and Responsible Gaming is desirable
- Be part of a dynamic team with enthusiastic experts that will support your talent and growth
- Embark on a journey within a diverse environment full of opportunities and challenges
- Comprehensive onboarding experience designed to facilitate your smooth transition
- Attractive salary and a bonus plan
- Health and life insurance for you
- Well-being allowance
- Developmental 360° feedback framework
- Extensive leave plan
- Employee Assistance Program with specialized Counselors / Licensed Psychologists
- Enjoyable and stable working environment
- Flexible working arrangements
- Modern workspace environment
- Apple equipment and top-notch office technology to support our hybrid working
Allwyn encourages applications from individuals regardless of age, disability (visible or hidden), sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion, or belief, and marriage and civil partnerships.
Privacy Disclaimer
By clicking "Apply" for this Job, you agree that you have read and accepted our Privacy Statement relating to job applicants and that you provide your consent for the processing of your personal data for the purposes described therein.