Technology Risk Manager
Salary £70,000 - £80,000 per annum
Location London
FULL_TIMEConsultant Darius Goodarzi
JobRef 50812453/001
Date posted 08 July 2022
london information-technology/information-security 2022-07-08 2022-09-06 banking London London GB GBP 70000 80000 80000 YEAR Robert Walters https://www.robertwalters.co.uk https://www.robertwalters.co.uk/content/dam/robert-walters/global/images/logos/web-logos/square-logo.png
My client, an international FinTech organisation, are looking for a Technology Risk Manager to join their growing team in London.
About the Technology Risk Manager Role:
The Technology Risk Manager is a key member of the Risk Management team and provides expertise as a specialist to manage operational risk related to information technology. The role is responsible for leveraging and supporting the ORM framework designed by my client to identify, assess, mitigate, and report on operational and project risk. The successful candidate serves as a second set of eyes to management to provide review and credible challenge of the effectiveness of technology processes and controls. This position is highly engaged with the firm-wide Technology teams who provide solutions as well as all corporate departments that own technology risk.
|
Essential Function / major duties and responsibilities of the job |
- Review and Challenge – Provide independent review and credible challenge of the Technology risk profile and all associated framework components, e.g., risk and control self-assessments, control testing, incident management, metrics and indicators, risk appetite, issues management, and reporting
- Risk Identification - Identify and assess Technology risks and incidents related to key systems supporting my client' services and the broader impact to the financial ecosystem
- Risk Assessments - Assess whether new/existing Technology activities and controls utilized by my client are designed and implemented effectively to verify that risks are mitigated to targeted levels.
- Mitigation - Provide subject matter expertise to business units to drive ownership and progress of correction action plans
- Monitoring - Review metrics, external events, and escalation reports to monitor risk and control-related developments, issues, and trends in the management of Technology risks for my client.
- Governance – Actively present to various committees and forums to keep management educated on changes to my client's risk appetite
- Project Oversight – Embed in various projects to challenge design, requirements, and go-live criteria to reduce impact of transformation risk
- Relationship Management – Be a respected point of contact to stakeholders across the business and technology functions in providing operational risk coverage for Technology risk
- Advisory Services – Be a trusted advisor and provide guidance to stakeholders on the evolving technology risk landscape
- Policy & Procedures - Maintain and oversee relevant policies, standards, and procedures related to my client's security processes.
Experience required:
- At least five years of experience specifically related to Technology governance, operations, and risk management
- Broad-based technology experience at substantial scale and complexity in a global, highly regulated, high-volume transaction environment. Experience must include time operating within transaction services environments characterized by the need for continuous availability and the highest levels of security
- Comfortable working in a complex matrixed organization, ideally in a global firm with a dynamic and rapidly changing environment
- Experience operating within a highly regulated environment, with a preference for experience at the international and federal levels. Deep knowledge of policy frameworks and a strong understanding of policies, procedures, guidelines, and structure
- Functional expertise, with operational knowledge of and exposure to various current and emerging Technology areas such as, but are not limited to:
|
|
|
|
|
|
Education:
- B.S. in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent)
- Relevant certification is desirable, e.g., AWS CCP, CISSP, CISM, CISA, CRISC, CCNP, MCSE
- Working knowledge of Risk Management life cycles based on an established framework: NIST CSF, NIST SP 800-53, ISO 27001, SANS, CERT, ENISA, CSA, OACA, ISACA, FFIEC
- Proficiency in MS PowerPoint and Excel
- Experience in Archer GRC and broader MS Office suite, including Project and Visio is a plus
If the above is of interest to you please apply to this job ad or call me on 0207 509 8040 to find out more.
Get in touch
Similar jobs
-
Salary: £55,000 - £65,000 per annumLocation: LondonDate posted: 26 July 2022My client, a global Investment bank, are looking for an IT Audit Analyst to join their growing team in London.
-
Salary: £75,000 - £87,000 per annumLocation: LondonDate posted: 15 July 2022My client, an international bank, based in London, are looking for a Principal IT Auditor to join their growing team.
-
Salary: £75,000 - £85,000 per annumLocation: LondonDate posted: 01 July 2022My client, an international bank, based in London, are looking for a Principal IT Auditor to join their growing team.
-
Salary: £50,000 - £60,000 per annumLocation: LondonDate posted: 13 July 2022My client, an international FinTech, based in London, are looking for an Information Security Analyst to join their growing team.
-
Salary: £70,000 - £90,000 per annumLocation: LondonDate posted: 15 June 2022My client, a Global Investment Bank, are looking for a Cyber Security Operations Manager to join their growing team in London.
