Type de contrat :
Permanent Contract

IT & Operational Risk H/F

Modified on 03/06/2026

  • Lieu : Paris - France
  • Secteur : IT, Digital et Data
  • Numéro de l'offre : 2026-112210

Job description

Reporting to the CIO, the IT Risk Owner (ITRO) is a first line of defense role responsible for managing ICT risk within its scope, covering governance, operations and incidents, projects and application development, suppliers, obsolescence and compliance. The ITRO helps consolidate the overall ICT risk view and coordinates with the relevant stakeholders to ensure comprehensive risk coverage.

Key responsibilities
Contribute to the definition of the entity’s ICT risk appetite and Digital Operational Resilience Strategy (DORS).
Help design, maintain and improve the ICT risk management framework, in coordination with other risk stakeholders.
Identify, assess and monitor ICT risks within the scope of responsibility, and escalate cross-cutting risks where needed.
Lead and track remediation actions and the ICT risk action plan.
Define and monitor KPIs/KRIs, produce dashboards and support risk reporting to governance bodies.
Monitor developments in the internal and external environment, including regulations, standards, technologies and emerging risks.
Contribute to Group-level assessment and control campaigns and governance activities.
Ensure ICT risk is properly addressed in projects, whether internal or outsourced.
Advise the CIO, project managers, business lines and functions on ICT risk matters.
Raise awareness and provide training on ICT risk across the entity.
Coordinate the maintenance of reference architectures, asset mapping and dependencies, including third-party relationships.
Contribute to the management of ICT incidents and crises, in cooperation with the relevant stakeholders.
Define and run the Level 2.1 control plan, and ensure Level 1 controls are performed.
Support internal control reporting and periodic reviews of the ICT risk management framework.
Assess third parties used by the entity and ensure DORA compliance.
Support the entity in its due diligence and DORA compliance towards external clients.

  • Minimum level of study
    Postgraduate degree – MA/MSc/PhD/Doctorate or equivalent
    Training / Specialization
    You hold a Bac+5 degree from a Business School or University.
    Minimum experience level
    6-10 years
  • Amundi, the leading European asset manager, ranking among the top 10 global players (1), offers its 100 million clients - retail, institutional and corporate - a complete range of savings and investment solutions in active and passive management, in traditional or real assets. This offering is enhanced with IT tools and services to cover the entire savings value chain. A subsidiary of the Crédit Agricole group and listed on the stock exchange, Amundi currently manages close to €2.3 trillion of assets (2). With its six international investment hubs (3), financial and extra-financial research capabilities and long-standing commitment to responsible investment, Amundi is a key player in the asset management landscape.
    Amundi clients benefit from the expertise and advice of 5,500 employees in 35 countries.
    Amundi, a trusted partner, working every day in the interest of its clients and society

    (1) Source: IPE “Top 500 Asset Managers” published in June 2025, based on assets under management as at 31/12/2024
    (2) Amundi data as at 30/06/2025
    (3) Paris, London, Dublin, Milan, Tokyo and San Antonio (via our strategic partnership with Victory Capital)

Amundi

Amundi

IT & Operational Risk H/F

Published the 03/06/2026

Type de contrat :
Permanent Contract
  • Paris - France
  • IT, Digital et Data
  • 2026-112210

These offers may interest you!