Principal IT Risk Control Executive Director ID13
Posted on :
13-11-2023
Employer Active
The job posting is outdated and position may be filled
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Principal IT Risk & Control – Executive Director
ID13
Overview:
IT Risk and Control plays a leading role in delivering a forward-looking and robust risk management framework across Technology globally. We are accountable for overseeing and challenging our Technology functions on the effective management of risk, and our role is pivotal from a regulatory perspective - influencing, for example, how regulators perceive Technology’s risk management framework.
This is a ED role, offering great potential for involvement across the IT organisation - IT Business units, and within our IT Risk and Control team globally – as well as interfacing closely with the Operational Risk department, Legal, Compliance, Regulatory Affairs, Vendor Management, Internal and External Audit and our UK regulators, the PRA and FCA.
If you are looking for an opportunity to be at the heart of the Technology risk management, leveraging your hands-on experience in senior IT and IT risk management role, and sound knowledge of risk and controls principles, this may be an ideal opportunity for you.
You will work with our IT Business Units and IT senior management to fully understand and actively manage the Firm’s Technology risk profile. In your risk management oversight role you will be able to navigate a landscape of competing priorities – understanding where to strike the balance between managing risks and acknowledging or accepting certain risks. In this capacity you will be advising Technology management on those matters requiring their attention and those which are of lesser importance.
You will be a leader and role model within the ITRC and you will need to leverage your leadership and influencing skills to continue to develop a strong working relationship across our Technology teams globally and Business stakeholders.
Key Areas of Oversight and Engagement
What you will bring to the role
Qualifications, Skills & Experience Required:
ID13
Overview:
IT Risk and Control plays a leading role in delivering a forward-looking and robust risk management framework across Technology globally. We are accountable for overseeing and challenging our Technology functions on the effective management of risk, and our role is pivotal from a regulatory perspective - influencing, for example, how regulators perceive Technology’s risk management framework.
This is a ED role, offering great potential for involvement across the IT organisation - IT Business units, and within our IT Risk and Control team globally – as well as interfacing closely with the Operational Risk department, Legal, Compliance, Regulatory Affairs, Vendor Management, Internal and External Audit and our UK regulators, the PRA and FCA.
If you are looking for an opportunity to be at the heart of the Technology risk management, leveraging your hands-on experience in senior IT and IT risk management role, and sound knowledge of risk and controls principles, this may be an ideal opportunity for you.
You will work with our IT Business Units and IT senior management to fully understand and actively manage the Firm’s Technology risk profile. In your risk management oversight role you will be able to navigate a landscape of competing priorities – understanding where to strike the balance between managing risks and acknowledging or accepting certain risks. In this capacity you will be advising Technology management on those matters requiring their attention and those which are of lesser importance.
You will be a leader and role model within the ITRC and you will need to leverage your leadership and influencing skills to continue to develop a strong working relationship across our Technology teams globally and Business stakeholders.
Key Areas of Oversight and Engagement
- Further develop, enhance and oversee the implementation of the IT policies, procedures, standards and risk management methodologies;
- Ensure the firm’s Operational Risk Management Framework, including the Firm’s Risk Management Enhancement Programme (RMEP), is demonstrably embedded with the IT Division and that Management Information (MI) is available to verify that;
- Conduct controls testing and advise where control enhancement are required;
- Oversee the annual Internal and External audits of the IT Division;
- Participate in the firm’s risk management forums and committees as necessary , e.g.
- Regulatory Affairs Forum, Operational Risk Management Forum, SWAP Dealer Forum etc.;
- Liaise with the second and third lines of defence to ensuring that their requirements are
- taken into account within the IT Division’s IT risk management framework;
- Monitor the effectiveness of the IT Division’s IT Disaster Recovery testing
- programme.
- Provide an IT risk advisory service to the IT Division and the firm generally;
- Assess and advise on the risk management requirement for new and emerging technologies, e.g., Cloud.
What you will bring to the role
- You will have worked in the financial services industry and will have experience in
- technology and / or technology risk management.
- You will also have experience of working in a dynamic technology environment and an
- understanding of risk management principles, frameworks and methodologies.
- Strong leadership and people management skills are essential and you will preferably
- have operated in a matrix management structure where planning and interpersonal skills
- were critical.
- This is a hybrid role requiring knowledge of risk management frameworks, e.g. CoBIT and
- their application, a broad understand of the various and diverse technology disciplines
- and their management processes, and an understanding of key technology risks.
- Previous exposure to UK and global regulators would be an advantage.
- The seniority of some of your stakeholders means that strong stakeholder
- management skills are essential and you will need to be able to challenge at
- executive level. As a skilled communicator and influencer, you will be able to
- articulate technical and complex concepts simply, presenting with impact and
- gravitas to the most senior level stakeholders.
Qualifications, Skills & Experience Required:
- Leading on Global IT Risk Management
- Risk management qualification, e.g. CISA, CISM, CRISC, CISSP
- Accuracy and attention to detail
- Strong communication skills - written and verbal
- Confident and able to work at all levels within the organisation
- Able to think laterally and take a pragmatic approach, when necessary, to issue resolution
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
