Senior IT Officer - Governance, Risk & Compliance

Responsibilities

• IT Business Administration & GRC Back-Office Support
• Provide day-to-day IT business administration support for EMEA IT governance, risk, and compliance activities.
• Act as a trusted back-office partner to the Head of Regional IT GRC, supporting planning, coordination, reporting, and follow-up of governance activities.
• Coordinate inputs from IT and business stakeholders across multiple countries and time zones.
• Maintain governance artefacts, records, registers, and documentation to ensure information remains accurate, current, and audit-ready.
• Support the coordination and maintenance of regulatory governance artefacts for regulated entities, including registers, evidence sets, and management reporting required under DORA, the EU Data Act, and IT outsourcing frameworks.
• IT Operating Model Maturity & Documentation
• Create, maintain, and continuously enhance standard operating procedures (SOPs), end-user guides, and business-facing documentation to support consistent IT processes and decision-making.
• Develop clear, professional service documentation, process flows, roadmaps, and operating model artefacts that enable teams to work effectively and independently.
• Ensure all documentation is practical, accessible, and aligned to IT governance frameworks, policies, and standards.
• Use Microsoft 365 tools-including Loop and SharePoint Online-to structure, publish, and maintain collaborative documentation and knowledge repositories.
• IT Governance Frameworks & Standards
• Support the implementation and day-to-day operation of regional IT governance frameworks across EMEA, aligned with global policies and standards.
• Monitor adherence to IT policies, standards, and best practices, identifying and escalating risks or gaps where appropriate.
• Support the consistent application of governance processes across countries, services, and teams.
• Governance Reporting & Communications
• Prepare, consolidate, and maintain recurring and ad-hoc governance and service reporting for senior management, clients, and boards.
• Produce high-quality written materials and presentations, including:
• Executive and Board-level reports
• Country-specific IT performance reports
• Client-facing ITSM and service governance reports
• Ensure reporting related to IT performance, risk, compliance, and change is accurate, consistent, traceable, and fit for purpose.
• Support regulatory and management reporting obligations arising from DORA, the EU Data Act, and IT outsourcing oversight, including evidence tracking and status reporting.
• IT Project, Change, Risk & Compliance Support
• Track and report on IT change-related risks, issues, and outcomes across the EMEA region.
• Support IT managers in identifying, assessing, and managing IT risks.
• Maintain the EMEA IT Risk Register, ensuring risks and mitigation actions are clearly documented and actively tracked.
• Assist with IT risk assessments, audits, and compliance activities, including GDPR and other applicable regional regulations.
• Support regulatory compliance activities for in-scope entities, including DORA Register of Information inputs, third-party and outsourcing governance, and tracking of remediation actions.
• Continuous Improvement
• Identify opportunities to improve governance processes, documentation quality, reporting standards, and operational efficiency.
• Support the implementation of agreed governance, risk, and compliance improvements.
• Promote consistency, accuracy, and professionalism across all IT governance deliverables.
• Contribute to the ongoing maturity of IT governance and regulatory compliance practices in response to evolving regulatory requirements.
• Key Competencies
• Strong organisati

Additional Information

Role Overview The IT Governance, Risk & Compliance (GRC) Officer is a key member of the EMEA IT function, providing day-to-day IT governance administration and back-office support to the Head of Regional IT Governance, Risk & Compliance. The role is both operational and enabling. It supports the effective execution of IT governance, risk, and compliance activities across the EMEA region, while also contributing to the ongoing maturity of the regional IT operating model. A core focus of the role is the production of clear, practical, and business-facing documentation and reporting-including standard operating procedures (SOPs), end-user guides, service reports, and operating roadmaps-enabling consistent execution, informed decision-making, and strong stakeholder outcomes. The role also provides direct support to regulatory compliance activities for Luxembourg and other regulated entities, under the direction of Regional IT Governance. This includes IT governance obligations relating to DORA, the EU Data Act, and IT outsourcing and third-party oversight. Success in the role requires strong attention to detail, advanced proficiency with Microsoft productivity tools, and the ability to translate complex IT processes into clear, professional materials for both technical and non-technical audiences.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Iqeq? Share your experience