Job Description:As a DORA control officer, you will integrate our Cyber Security department in Portugal, working alongside other assessors and project management officers to control that our projects portfolio delivers the expected improvements to our DORA maturity.Main Tasks and Responsibilities:- Support DORA maturity assessment - Collect evidence of DORA maturity: collaborate with IT teams to collect evidence of achieved compliance - Audit evidence provided by CIB teams: assess the quality level of collected evidence and identify remaining gaps to achieve the target compliance level - Increase CIB maturity: coordinate with CIB ITO IT Risk team and Group to obtain the formal approval of DORA compliance - Contribute to the reports made to regulators: analyse and help structure CIB answers to regulators or audits inquiring about DORA maturity - Support projects/program steering - Assist committees' preparation and animation with various stakeholders at different management level. - Prepare communication on projects with relevant stakeholders (internal, external) - Support monitoring of activities which contribute to DORA: identify main contributors to DORA maturity and involve them to organize regular compliance reporting. In particular, provide special attention to projects which are not part of the cyber-governance such as management and security of back-ups or Third Party Risk Management (TPRM). - Document DORA maturity increase: plans, reports, trend analysis and back to green definition with SMEs when necessary - Assist project resource management: assist budget (budget, FTE) formalization and monitoring for DORA initiativesTechnical Skills: - Rules & norms (Knowledge of regulatory standards, ability to translate them into internal policies) - Regulatory (general knowledge in IT and cybersecurity regulators framework) - Control (Ability to verify operations, ensure that the procedures are being followed...) - Cybersecurity (general knowledge in cybersecurity risks, frameworks and requirements) - Risk opinion (ability to challenge, approve and decide (new activities, projects...) - IT knowledge (global knowledge of IT, its major processes and assets & solutions) - Business/IT Relationship (ability to understand business needs) - Methodologies and tools needed: - ISO 27001 - NIST - Digital Operational Resilience Act (DORA) - Microsoft Office (Excel, Macro, PowerPoint)Language Skills: - English - Mastery - French- PracticeSoft Skills: - Ability to collaborate / Teamwork - Communication skills – oral & written - Personal Impact / Ability to influence - Adaptability - Organizational skills - Ability to synthetise/simplify - Ability to understand, explain and support change - Ability to challenge information - Ability to develop and leverage networks - Ability to anticipate business/strategic evolution