Senior IT Risk Manager - Director Level - 1LoD - FS


Premium Job From Michael Page

Recruiter

Michael Page

Listed on

11th November 2019

Location

City Of London

Salary/Rate

£90000 - £120000

Type

Permanent

This job has now expired please search on the home page to find live IT Jobs.

Senior IT Risk Manager - Director Level - 1LoD - FS I am working with a Financial Services firm, who are looking to build out the first-line of defence IT & Cyber Risk maturity and looking to recruit a Senior IT Risk Manager , providing subject matter expertise in IT & Cyber Risk oversight and resilience. There is an increased focus from the regulator on IT Risk, Cyber Risk and Operational Resilience. A core component of this focus is centred on ensuring that IT has in place cohesive Risk policies, processes and frameworks (Governance) - essentially ensuring that full L1 Control functions are embedded, enforced and enhanced on a continual basis.This role reports directly into the CIO and you will have day a high board interaction, coupled with regulatory engagement. This is a stand-alone Director level role and develop overtime as the L1 controls functions are imbeded. Why? Excellent agility to working from home, if needed Newly established greenfield role Great opportunity to join a function, where you can 'shape' the role and make a real impact from day one.Client DetailsFinancial Services. DescriptionI am working with a Financial Services firm, who are looking to build out the first-line of defence IT & Cyber Risk maturity and looking to recruit a Senior IT Risk Manager , providing subject matter expertise in IT & Cyber Risk oversight and resilience.

There is an increased focus from the regulator on IT Risk, Cyber Risk and Operational Resilience. A core component of this focus is centred on ensuring that IT has in place cohesive Risk policies, processes and frameworks (Governance) - essentially ensuring that full L1 Control functions are embedded, enforced and enhanced on a continual basis.

This role reports directly into the CIO and you will have day a high board interaction, coupled with regulatory engagement.

This is a stand-alone Director level role and develop overtime as the L1 controls functions are imbeded.

Accountabilities:

Be responsible for identification, management and monitoring of Technology operational risks within risk appetite and tolerance.Act as the relationship manager for Risk in all Technology risk management engagementIndependently assessing, reporting and as necessary escalating operational risks generated by Technology as well as Technology risks across the firm to established governing bodiesProvide SME knowledge and assistance with maintaining a risk and control library for technology risks or other operational risks (e.g. Business Continuity, Third party, business processes or data riskPerform, coordinate and document independent cross functional risk assessments, aggregate risk assessments, evaluate effectiveness of internal controls, and review with appropriate level of challenge control enhancementsExert influence to ensure that the Operational Risk lifecycle activities are properly adhered to: from risk identification (RCSA), risk assessment (5x5 risk rating grid), risk reporting and monitoring (KRIs; Risk Acceptance; Events; Breaches and Top Risks).Oversee outsourcing governance and risk in relation to providing and receiving outsourcing services/ functions together with other relevant 2LoD functions.ProfileIn-depth, knowledge of IT Risk or Cyber Risk management.Good knowledge of IT controls and frameworks including ISO 27001, COBIT, ITIL and NIST Cyber Security FrameworkExceptional stakeholder relationship management, at an executive (C) level.Ability to articulate technical language, to the business.Experience of working in highly regulated environments, ideally within UK Financial Services.Experience in design and implementation of a robust risk management framework.Design and implement risk management IT & IS policies, standards and processes using recognised standards (e.g. ISO 27000 family)Main external interfaces - PRA and FCA with other regulators in EMEA as requiredRecognise security/risk qualification (CRISC, CISSP, CISM, CISA, CCSP, CCSK) would be desired but not essential.Job OfferLocation: City of LondonRemuneration: Circa 90,000 - 120,000 + Bonus + Excellent additional benefitsWhy? Excellent agility to working from home if needed Newly established greenfield role Great opportunity to join a function, where you can 'shape' the role and make a real impact from day one.IT Risk | Cyber Risk | Information Security | Technology Risk | | Three Lines of Defence | 3LoD | IT Controls | Risk Management | Governance | Assurance | ITIL | COBIT | NIST | Resilience | Framework |

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: