Technology Risk and Controls Lead

Collinson is the global privatelyowned company dedicated to helping the world to travel with ease and confidence. The group offers a unique blend of industry and sector specialists who together provide marketleading airport experiences loyalty and customer engagement and insurance solutions for over 400 million consumers.

Collinson is the operator of Priority Pass the worlds original and leading airport experiences programme. Travellers can access a network of 1500 lounges and travel experiences including dining retail sleep and spa in over 650 airports in 148 countries helping to elevate the journey into something special. We work with the worlds leading payment networks over 1400 banks 90 airlines and 20 hotel groups worldwide.

We have been bringing innovation to the market since inception from launching the first independent global VIP lounge access Programme Priority Pass to being the first to sell direct travel insurance in the UK through Columbus Direct and creating the first loyalty agency of its kind in the travel sector with ICLP. Today we still invest heavily in innovation to ensure that we continue to deliver superior customer experiences.

Key clients include Visa Mastercard American Express Cathay Pacific British Airways LATAM Flying Blue Accor EasyJet HSBC Chase HDFC.

Our mission is focused on doing good beyond profit which for us means we seek out opportunities for our people to share in our success and that we give back to the communities and people within which we work.

Never short of ambition the success of our business is delivered through the diverse and talented team of over 1800 global colleagues.

Purpose of the job

We are looking for a Technical Risk and Controls Lead to join our global technology team and help usmanage the IT risks and controls across our diverse portfolio of products and services. You willcreate and manage KPI dashboards implement monitor and report technology risks and controlswithin a framework and ensuring compliance with internal policies and external regulations.

Reporting to the Director of Architecture you will work closely with our leadership team businessstakeholders and external auditors to provide assurance and guidance on IT risk and controlmatters. This role requires risk management expertise along with excellent communication skills toeducate and influence SMEs and inform and seek decisions from senior leaders.


Key Responsibilities

Develop an automated control centre to check our controls implementation to monitorkey performance indicators and to automatically alert of any deviation or anomaly.

Track report and evolve technology control KPIs including cost management service andsecurity metrics.

Support teams in ensuring all internal and external policies and standards are followed.

Lead regular meetings with senior management and SMEs to review progress and compliance with the Collinson Risk Management Framework including incident management issue management and root cause analysis.

Coordinate and support the leadership team to proactively manage the remediation of Issues including Policy deviations and risk acceptance process and obtain relevant approvals where issues meet these requirements.

Ensure all technology risks have remediation plans and / or support any necessary Risk Acceptance in line with the set risk appetite.

Participate in major tech projects to ensure that risk management and control considerations are integrated from the outset.

Evaluate the impact of new technologies or changes in existing systems on the companys risk profile.

Continuously monitor the tech risk landscape and update risk management practices accordingly.

Assist in internal and external audits providing necessary documentation and explanations.

Knowledge skills and experience required

You have a bachelors degree in computer science information systems or a related field orequivalent work experience.

You have at least five years of experience in IT risk and control management preferably in aglobal and complex environment.

You have a strong knowledge of IT risk and control frameworks such as COBIT ISO 27001NIST PCIDSS.

You have a certification in IT risk and control.

You have excellent communication and people skills with the ability to influence and
collaborate with senior stakeholders and auditors.

You have strong analytical and critical thinking skills with the ability to identify and mitigateIT risks and issues.

You have an initiativetaking and flexible attitude with the ability to adapt to changingpriorities and deadlines.

You can collaborate with senior stakeholders effectively to establish relationships and

become a trusted advisor providing pragmatic proportionate advice on security riskmanagement.

You are initiativetaking and with a desire to continually learn.

Experience of risk matrix management.

Collinson is an equal opportunity employer and welcomes differences in all their forms including: colour race ethnicity gender identity sexual orientation neurodivergence family status age individuals with disabilities and people from all backgrounds cultures and experiences as we strongly believe this contributes to our ongoing success.

We are focused on continually evolving our purpose driven high performing culture providing an environment where our people have the opportunity to achieve their full potential and do interesting and meaningful work. Our company values are: Act smarter Do the right thing One team and Be insight led. These help guide everything we do internally in terms of how we think act and interact right through to how we deliver value to our customers and clients.

In your application please feel free to note which pronouns you use (For example she/her/hers he/him/his they/them/theirs etc).

If you need any extra support throughout the interview process then please email us at