Controls Testing Senior Analyst
TASC
Unix
Senior Controls Testing Analyst
TASC
full-time
Posted on:
Location Type: Office
Location: London • 🇬🇧 United Kingdom
Visit company websiteJob Level
Senior
Tech Stack
Cyber SecurityUnix
About the role
- Control Testing Execution
- Support periodic testing of key and non-key controls in accordance with the Control Testing Methodology.
- Assess control design and operating effectiveness against internal policies, standards, regulatory requirements, and customer obligations.
- Timely collection of control testing evidence from relevant Control Owners to support scheduled testing activities.
- Prepare clear and accurate test documentation, including test procedures, execution results, and supporting evidence.
- Identify and document control deficiencies, ensuring timely escalation to the Manager and supporting remediation follow-up activities.
- Monitoring the control testing mailbox to ensure timely review and response to incoming queries and submissions.
- Team Leadership, Collaboration & Stakeholder Engagement
- Work closely with 1st Line teams to obtain evidence, clarify control processes, and support accurate testing outcomes.
- Liaise with 2nd Line Technology risk partners and Internal Audit as directed, ensuring transparency and alignment with control testing activities.
- Contribute to the preparation of management information, dashboards, and thematic analysis for governance forums.
- Support control owners by providing observations on control effectiveness and contributing to discussions on remediation approaches.
- Governance & Continuous Improvement
- Adhere to established control testing standards, procedures, and documentation requirements.
- Provide input on opportunities to streamline testing activities, improve efficiency, and enhance the consistency of outcomes.
- Maintain awareness of relevant regulatory requirements, emerging risks, and industry practices, particularly within the technology risk domains.
- Contribute to strengthening the 3 Lines of Defence model by embedding robust and transparent testing practices.
Requirements
- Experience in control testing, or assurance, and risk management within technology in a regulated environment.
- Good investigative and analytical experience (e.g. enquiry, scanning, analysis, interviewing, testing), problem-solving, and decision-making skills.
- Good understanding of control frameworks and standards (e.g., e.g., ITIL, CRI, COBIT).
- Ability to assess control design and operating effectiveness in complex environments and to identify control gaps and improvement opportunities.
- Good communication and stakeholder engagement skills.
- Professional certifications such as CISA, ITIL, COBIT, CRISC, or equivalent is desirable.
- Bachelor’s degree in Information Technology, Computer Science, Cyber Security, or related field.
- Good Knowledge of IT general controls across platforms such as UNIX, HP Nonstop, and Windows.
- Proficiency in Microsoft Office Suite (MS Word, MS Excel, MS Access and MS PowerPoint)
- Strong organisational skills with the ability to prioritise and manage multiple tasks.
- Self-starter with a continuous improvement mindset and a collaborative approach.
Benefits
- All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard’s security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
control testingrisk managementcontrol frameworksITILCOBITCISACRISCanalytical skillsproblem-solvingdecision-making
Soft skills
communicationstakeholder engagementteam leadershipcollaborationorganisational skillsself-startercontinuous improvement mindset
Certifications
CISAITILCOBITCRISC
