IT Risk & Assurance Cover Letter

I am excited to be applying for the position of IT risk & assurance. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for responsive advice, counsel, education and service to leaders concerning IT issues and trends in the IT industry.

My experience is an excellent fit for the list of requirements in this job:

• Knowledge of IT security standards including ISO27001 would be an advantage
• Thorough understanding of effective operational risk management and the ORCM framework
• Awareness of IT & Security governance models and standards COBIT, ITIL, ISO27001
• Strong relationship management experience and influencing skills with senior stakeholders and all levels within the business
• Leadership experience and working towards cross-market deliverables and delivering cultural change
• Experienced at managing risks across IT and Operations functions, preferably in a financial or insurance sector
• Excellent interpersonal skills – succinct, clear communicator and focussed
• Recognised Risk Management qualification (or be prepared to work towards)

In response to your job posting for IT risk & assurance, I am including this letter and my resume for your review.

Previously, I was responsible for high-level consulting services to clients in areas such as ISO 27001, HIPAA, PCI, and COBIT to identify security and risk management issues and other opportunities for improvement.

Please consider my experience and qualifications for this position:

• Familiarity/use of automated and/or continuous monitoring tools and GRC tools
• Proficiency and deep operational knowledge of ERP application, database and operating system assets
• Demonstrable operation knowledge of Cloud computing environments
• Accounting principles obtained through either coursework in Accounting and Finance or prior work experience, as applicable
• Business & IT processes, risk & controls, design analysis, walk through and operating effectiveness testing
• Microsoft Excel (intermediate to advanced usage and skill), including use of macros, pivot tables, formulas and formatting
• Technical aptitude for learning new applications and databases
• Commitment to teamwork as demonstrated in professional, classroom or networking environments

In response to your job posting for IT risk & assurance, I am including this letter and my resume for your review.

In the previous role, I was responsible for clear and effective reports to Legal, the business, the operational areas and other internal/external parties regarding new or prospective privacy laws, regulations, industry standards and best practices.

Please consider my experience and qualifications for this position:

• Experienced at managing risks across in financials services
• Experienced at working at a group level and in an international context and leading virtual teams and working towards cross-market deliverables
• Excellent influencing style with senior management all levels within the business
• French language skills will be highly advantageous
• Preference for professional certification (e.g., CISA, CISSP, GCCC)
• Knowledge and appreciation of business processes, data structures, IT applications and infrastructure, IT processes, and governance and security control principles
• Familiarity with regulatory compliance in the context of security, and related regulations, industry standards and guidance
• Certified Information Systems Aud (CISA)

I submit this application to express my sincere interest in the IT risk & assurance position.

In the previous role, I was responsible for wood Gundy Portfolio Managers with market insights and commentary on how the current industry trends, macroeconomic environment, security liquidity and concentration risk impact portfolio exposure and results.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Thorough understanding of effective operational risk management
• Managing risks across Financial Services
• Experienced at working at a group level and in an international context
• Leading virtual teams and working towards cross-market deliverables
• Experienced at leading an d delivering cultural change
• Recognised by the Institute of Risk Management (or equivalent level of qualification)
• Relevant industry certifications , CISA, CISM, CISSP, CCSP, CEH, SSCP, Security+, MCSA(Sec), MCSE(Sec)
• Working knowledge of ISO27001, Sarbanes Oxley, HIPAA, GDPR, MDSAP Quality System Regulation and CSA’s Cloud Control Matrix

In response to your job posting for IT risk & assurance, I am including this letter and my resume for your review.

Previously, I was responsible for periodic reports on industry and technical trends to peers, subordinates, and the IT leadership team.

Please consider my experience and qualifications for this position:

• Preferred experience in areas of audit, risk management, governance, information security and/or compliance
• Preferred experience in information risk and security-related best practices, policies, standards, and regulations (e.g., ISO 27001, Information Security Form (ISF), Payment Card Industry (PCI) Data Security Standard, and data privacy)
• Preferred experience with the emerging risk and threat landscape in the power utilities, retail energy, or oil and gas industries
• Preferred experience in areas of IT audit, IT risk management, IT governance and/or IT compliance
• Preferred experience in information risk related best practices, policies, standards, and regulations (e.g., ISO 27001, Information Security Form (ISF), Payment Card Industry (PCI) Data Security Standard, and data privacy)
• Questioning approach
• Coaching others involved in audits
• Status reporting and presentation