Senior Control Adviser
Aberdeen, GB
Since its creation in 2014, Harbour has grown to become one of the world’s largest and most geographically diverse independent oil and gas companies. Today, Harbour is producing between 475,000 and 485,000 barrels of oil equivalent per day with significant production in Norway, the UK, Germany, Argentina and North Africa. Harbour benefits from competitive operating costs and resilient margins, and a broad set of growth options including near-infrastructure opportunities in Norway, unconventional scalable opportunities in Argentina and conventional offshore projects in Mexico and Indonesia. With low GHG emissions intensity and a leading CO2 storage position in Europe, Harbour remains committed to producing oil and gas safely and responsibly to help meet the world’s energy needs. Harbour is headquartered in London with approximately 5,000 staff and contractors across its operations and offices.
Ours is an inclusive workplace where individuals can bring their whole selves to their job and feel recognised for the value they add. We are committed to creating a genuinely inclusive and supportive working environment to ensure everyone has a positive experience at work.
At Harbour Energy, we aim to recruit, retain and promote our people based on their unique skills, regardless of race, gender or background. We need excellent people to help shape and develop the future of our company. Could this be you?
If so, we want to hear from you.
Purpose of the Role:
• Lead & support the effective operation, testing, and continuous improvement of IT controls across Financial Systems.
• Provide assurance that IT controls are designed and operating effectively to meet internal governance and regulatory requirements.
• Ensure consistent documentation and evidence capture to support internal and external audits.
• Contribute to strong IT governance practices by working closely with control owners, auditors, and system teams.
• Promote a culture of accountability, risk awareness, and compliance within the IT Products function.
Critical Responsibilities (MAE/MATTE/HSES):
Ensuring that all activities are carried out in a safe manner complying with all regulatory requirements, legislation and Harbour Energy HSES Procedures
Ethics and Compliance Responsibilities:
Ensure that all activities and behaviours are carried out in accordance with Harbour Energy’s Ethics and Compliance Policies and Procedures, and to complete any compulsory compliance training as required
Areas of Accountability, Responsibility and Competence:
• Works with the Control Owner to scope, define, deliver and support the management of ITGCs.
• Define and conduct independent testing of IT controls, including periodic reviews of control design and operational effectiveness.
• Maintain comprehensive evidence libraries and audit trails for all controls and governance activities.
• Track issue remediation actions and verify closure evidence in collaboration with control owners and process stakeholders.
• Support control risk assessment activities and periodic compliance reviews within the IT Products function.
• Be a stakeholder in the control improvement initiatives and participate in governance forum reporting.
• Responsible for the design and delivery of governance for timely reporting of testing results, deviations, and follow-up actions to management.
• Ensure evidence collection adheres to internal standards, data integrity, and audit-readiness requirements.
• Draft and maintain control process documentation, including narratives, flowcharts, and RACI matrices.
• Support implementation and tracking of key performance indicators (KPIs) for control compliance
• Lead, coach and develop team members in effective control operation and evidence gathering
• Interacts with internal and external auditors as required to assist with fieldwork related to financial product controls
Critical Skills, Qualifications, Experience, etc.:
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate GRC related concepts to technical and nontechnical audiences.
• Substantial relevant experience in control management for governance, compliance, IT audits, IS assurance and risk management programmes.
• CISA, CISM, ISO27001 or equivalent preferred
• 5+ years relevant IT work experience
• Expert knowledge in control design and operation, with a view to satisfying audit and regulatory requirements
• Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act, UK Corporate Reform) and industry-specific regulations
• Proficient in IT governance and quality standards
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
• Excellent stakeholder management skills
• High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity
Inclusive recruitment is a vital part of our diversity, equity and inclusion strategy. Whatever your background, if you feel you need an adjustment during our selection process to suit your needs, please let us know, and we will be happy to help.