IT Risk & Governance Officer (m/w/d) with a focus on governance and regulation

Reference number: 16919 - Location: Stuttgart, Leipzig or Berlin - Company: LBBW - Functional area: Information technology - Full time / part time: 100

LBBW is one of Germany's leading banks and is an innovative company in the financial sector. In addition to traditional banking services, we focus on the areas of digitalization, sustainability and international markets. We offer an environment that promotes personal and professional development. With more than 10,000 employees, we shape the future of the financial world - Together #NeuesSchaffen

The IT-Governance & Cyber Defence department ensures secure, transparent and efficient IT across the Group. We define responsibilities, ensure compliance with regulatory requirements and anchor IT risk management as a control process. With a strong focus on operational IT security, we make processes robust and sustainable - for a stable and secure IT environment throughout the LBBW Group. The IT Compliance Group is responsible for IT compliance management, IT internal control system, IT risk management and IT audit monitoring.

Group-wide development and management of IT governance with special focus on Public Cloud and Modern Data Center Establishing uniform, flexible governance models with the interconnection of global standards and local requirements as well as raising synergies between parent and subsidiary companies Operationalization of regulatory requirements for IT in effective governance models and motivators for the further development of the banking regulatory framework (e.g. DORA) taking into account digital trends (M365, Azure), Business Impact, location strategies IT strategy-compliant feasibility testing of new requirements (e.g. FIDA) and balancing of technology versus regulatorics in the savings ring with stakeholders Management of complex, group-wide regulatory and/or governance topics with high relevance for management with strategic vision and solution competence (e.g. further development of the IT-related internal control system) Creation of risk analyses and decision-ready management documents as well as strengthening the compliance culture by awareness measures and training

Completed studies or comparable training More than five years of relevant professional experience in IT governance and IT regulatory in financial institutions or regulated environments Proven experience in managing group-wide change projects Deep understanding of IT processes, IT risks and general banking control (including MaRisk AT 7.2/IT risk management) In-depth knowledge and experience in the Public Cloud and Modern Data Center environment Very good knowledge of regulatory requirements, in particular DORA, MaRisk, ISO 27001, GDPR, CRA, EU AI Act combined with experience in making the regulatory requirements understandably operational Recognizing and implementing the needs of internal customers taking into account all requirements Self-assessment of complex facts and solution-oriented processing of these by means of suitable methods also in superordinate contexts Negotiation security: German C1, English B2/C1 Excellent presentation and moderation skills Appropriate argumentation and enforcement power up to management level

Modern talent management for career development Active promotion of a good reconciliation of work and private life (including flexible working hours, sabbaticals and the possibility to work in part on a mobile or home office) Attractive occupational pensions Comprehensive health management (e.g. cooperation with gyms, occupational medical service, preventive examinations) Interesting leasing possibilities, e.g. Job-Rad, Tablet, Smartphone Great lunch offers (bio, vegetarian or vegan) Several daycare centres