IT Process & Security Analyst


Location : Geneva

Duration : Permanent & Full Time

Job responsibilities

The IT Process & Security Analyst is highly customer-focused, outward and upward, and that these are consistent with Mercuria’s expectations.

The analyst must also ensure that the operational issues of the GRC tool are managed and communicated to IT leaders and process owners.

In addition, the analyst participates in IT security projects and helps ensure they are well documented from a project management point of view.


Critical Work Functions

  • IT GRC operation (use of the IT GRC site as the go-to place for documents, procedures and policies)
  • IT Security analysis
  • IT tasks (as requested by IT management)


Key Activities

  • IT Security Governance
  • Participate in the creation of IT policies and procedures to ensure controls are adequately established to align with the IT governance framework (COBIT 5)
  • Participate in the implementation of security controls on trading systems


IT Risks

  • Run IT risk assessments on GRC tool
  • Communicate risk results
  • Develop IT Security assessment documentation on new projects


IT Compliance

  • Participate in IT control self-assessments on GRC tool
  • Interact with “Internal Audit” and “Compliance” and “IT” teams to ensure on-going compliance with company policies and standards



  • Bachelor degree in information systems or in engineering (optional)
  • 1-3 years of IT and business work experience
  • 1 year of requirements engineering experience
  • 1 year experience with IT GRC tools (optional)
  • Fluent in English & French (mandatory)
  • Swiss nationality or valid B/C/G working permits only


Other tasks

  • Communicate with a team of contractors
  • Manage and deploy IT GRC administrative initiatives
  • Monitor compliance surveillance tools
  • Develop and deliver presentations, training sessions and demos (if requested)


Apply now