Risk Specialist

Want to support Exact with identifying its key risks and help management with designing, maintaining, and monitoring their control frameworks? As a Senior Risk Specialist, you have a direct impact on improving Exact’s governance, risk and control. At Exact, you can think and act proactively and see your good ideas come true. And where is your career heading? That’s up to you. The career opportunities are unprecedented. 2,050 enterprising colleagues have already paved the way. Are you on board?

This = the job you are looking for

As Senior Risk Specialist you support management with a wide range of activities from enterprise risk management, to compliance, to financial reporting risk assessments. You help management in designing, implementing, and monitoring Exact’s key control frameworks and product certification schemes. And that's not all. We can rely on you as a Senior Risk Specialist to:

• Support the head of GRC with defining, implementing, and applying Exact’s risk methodology
• Independently facilitate risk workshops on senior management level
• Help increasing risk awareness within Exact and its subsidiaries
• Continuously improve the control frameworks of different departments to manage the key risks within Exact and its subsidiaries
• Perform control framework monitoring (evaluation and escalation of control deficiencies)
• Develop/Improve the metrics for measuring and reporting control effectiveness
• Prepare periodic risk and monitoring reports for Exact’s governance bodies
• Coordinate the annual external audits and certifications of Exact’s products, from planning to managing the question logs up to professional practice discussions with the external auditors.

This = your team

You will join the 7 colleagues in the Governance Risk & Control department and work closely together with the risk specialists at our subsidiaries and other 2nd line functions, like Compliance and Exact’s Data Protection Officer. They are known for their drive, professionalism, and cooperation. Asking for help if necessary and offering help if possible is part of their DNA. We have few predefined paths, which gives you plenty of room to choose your own. The GRC department is known for its knowledge of all relevant risk categories, her knowledge of the industry in which we operate and the organisation and products of Exact. This is particularly evident in the risk-based risk management approach which is based on both proven risk management frameworks as well as practical experience. The main responsibilities of the department are:

• Design, implement, apply, and monitor Exact’s risk management processes and framework, including Exact’s Enterprise Risk Management framework
• Support management to design, monitor and improve internal controls to ensure external assurance can be given on our products and services.
• Set and monitor compliance with Exact’s information security policies and increase risk awareness.

This = what you bring

With us, you can be yourself, and we would love to discover what sets you apart. For the position of Senior Risk Specialist, it's helpful if you have a suitable level of professional skepticism. And preferably you also have strong communicative skills. What's more, you bring:

• a higher professional education level of working and thinking.
• minimum seven years of work experience in risk or process management or similar experience
• knowledge of security and data privacy related controls
• proven experience with designing/implementing risk control frameworks (e.g. SOC2, ISAE3402, SOX, COSO, ISO27001/2) and implementing enterprise risk management processes.
• Experience in leading and/or coordinating internal and external audits (SOC2, ISO27001, ISAE3402), preferably acquired through working at a Big 4 firm.
• Affinity with one or more risk areas which are relevant for Exact including strategic, information security, data privacy, financial reporting and/or compliance risks

This = what you get

At Exact we work hard. And there is something in return. We find the balance between effort and relaxation very important. This way you can work up a sweat in our own gym. Or take a moment of rest at the coffee bar. Just clear your head and then throw yourself back into your daily tasks with new energy. And of course that's not all. You can also count on:

• A competitive salary package incl. a 13th month and of course 8% holiday allowance
• An international, innovative and hybrid working environment, with the flexibility to work from home or any of our offices
• 27 vacation days and in addition, loyalty days; one for each year in service with a max of 5
• 3 Giving back days, which can spend on giving back to (local) community
• A modern pension scheme
• All the room your ambition needs and to further develop your skills we facilitate training via our learning and development center to help you to fulfill your career potential
• Friday afternoon drinks at our bar “Bits & Bytes”

About Exact

Exact develops cloud software for small and medium-sized companies and their accountants. The products automate business processes in areas such as Finance and HR and provide specific ERP solutions for wholesale distribution, manufacturing, projects and construction. This saves time and provides insight. It enables customers to work efficiently, make informed decisions and continue growing. More than 675,000 companies primarily in the Netherlands, Belgium and Germany already rely on Exact's software.