A rare opportunity to join a multi-award winning financial trading business with beautiful offices in the city as their Technology Risk Manager.
Reporting to the Head of Operational Risk & Compliance and working at a Global level, you will monitor and report on the groups technology risk management, implementing a technology risk framework to mitigate risks within the group.
You will understand the internal IT risk landscape and will ensure you identify existing controls - ensuring they remain effective and robust, identifying areas of weakness and control failures - instigating process improvements to strengthen control and risk mitigation, as well as also understanding current and emerging technology threats and the potential effect and impact of those to the business.
This is a great opportunity for someone with a technical risk background to step up into a Management role and implement risk framework strategies in a truly global financial business.
Day to day you will:
Perform 2nd line defence activities to monitor and report on the groups technology risks
Develop and maintain technology risk management frameworks, methodologies and independent assurance activities.
Support, advise and partner with the '1st Line of Defence' technology stakeholders to implement risk management tools, processes and methodologies to help identify and manage risks associated with technology and ensure they are used effectively.
Drive improvements in risk culture across business functions and technology stakeholders
Lead, plan and conduct workshops to perform Technology risk assessments and gain an understanding of the area being reviewed.
Document processes and key controls, highlighting risks and issues as well as suggesting improvements to match business processes and rules, reducing cost where possible.
Develop and maintain regular technology risk reporting (KRI's) and MI (Dashboards and reports) that will be used for various committee and board meetings and also to provide assurance for regulators.
The person to secure this role will be a considered and positive individual, with a diplomatic approach and excellent relationship and communication skills. They will demonstrate strong relationships with their team, line manager, across the business and with external parties, working well under pressure and with a logical and analytical approach.
You must be adept at understanding technology risk management, that includes in depth knowledge and understanding of Information security risks (DOS, Cyber, phishing, virus, secure development etc.) and technology operational risks (availability, latency, change, QA, headroom resilience etc.)
You will be confident performing technical assessments and identifying technology risks by applying business, technical and industry knowledge, critically assessing technology practices and recommending improvements where necessary.
Knowledge of Technology frameworks and standards (ISO27001, ISO22301, PCI DSS, MAS TRM) and / or professional qualifications that demonstrate applied knowledge such as CISA, CISM, CISSP, CRISC would all be advantageous, but not essential. Experience of working within a regulated industry or financial organisation or technology firm, is preferred.
This role attracts a salary of between £50,000 - £70,000, depending on the skills and experience you bring. It also offers you one day a week working from home and a fantastic flexible benefits package and 10% bonus.