Title and Summary
Director, Controls & Issue Advisory
Director, Controls and Issues Advisory, Controls Office
Job Description Summary
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships, and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realise their greatest potential. This role is based at Vocalink Limited, a Mastercard Company operating within the UK domestic payments industry.
Overview
This position provides leadership for the Controls and Issues Advisory team within the Vocalink Controls Office. The Director will ensure operations are compliant with relevant policies, procedures and regulations, identify and address control weaknesses, and oversee the implementation of remedial actions. The team supports the secure and seamless delivery of services to more than 60 million citizens and 11 billion transactions annually.
Responsibilities
* Lead the team’s approach to analysing existing controls, identifying gaps and providing control and issue advice to 1LOD functions in line with Vocalink Limited’s Enterprise Risk Management Framework.
* Review new and amended controls and issues to ensure fitness for purpose ahead of implementation, following agreed processes.
* Drive the Controls Issue and Advisory team to deliver proactive support and constructive challenge to 1st line teams to promote continuous improvement on controls and issues.
* Support the implementation of applicable procedures to enable effective 1LOD adoption of Vocalink’s control and issue management policies and processes.
* Manage and maintain the focused Controls Library domain (L1‑L3) on behalf of Vocalink.
* Complete control effectiveness assessments to provide continuous assurance.
* Provide issues triage, track and monitor issues management (including internal and external audits) and undertake closure validation.
* Recommend and support the implementation of improvements to the control environment, including exploring control and control testing automation.
* Develop and maintain strong, collaborative working relationships with stakeholders at all levels of the organisational hierarchy.
* Develop and implement strategies to enhance the management of issues and controls across all first line teams.
* Participate in Risk and Control Self‑Assessment (RCSA) processes to ensure required actions on controls and issues are identified and progressed.
* Work with 2nd line risk teams to collaboratively deliver continuous improvement across 1st line teams.
* Support the Head of Controls Office: drive delivery of priorities requiring support, deputise as appropriate, and participate in key senior committees (e.g. operational resilience and corporate security).
Essential Knowledge, Skills and Experience
* Proven record as a risk and controls leader in a risk partnering or similar capacity.
* Significant experience in applying operational risk frameworks and risk assessment methodologies.
* Detailed understanding of internal controls frameworks.
* Experience managing or leading the RCSA process, ideally within banking, financial services, IT or payments.
* Experience working with disciplines such as technology, operations, information security, or operational resilience.
* Excellent written and verbal communication skills.
* Ability to engage, influence and challenge stakeholders at all levels of an organisation.
* Strong analytical, reporting and presentation skills.
* Ability to motivate, inspire and lead people effectively, both for BAU and change initiatives.
* Effective prioritisation and time‑management skills.
* Ability to remain calm and focused under pressure.
* Proven record of driving robust and timely delivery of activities.
Desirable
* Deep understanding of key technology risk and information security industry frameworks (e.g., ISO/IEC 27001, ISO/IEC 27002, COBIT, ITIL, NIST).
* Experience working across various lines of defence.
* Experience across the key pillars of the Controls Office – Controls Governance, Controls Management, Controls Testing, Assurance, and Issues Management.
* Experience within Critical National Infrastructure‑responsible organisations.
Corporate Security Responsibility
* Abide by Mastercard’s security policies and practices.
* Ensure the confidentiality and integrity of all accessed information.
* Report any suspected information security violation or breach.
* Complete all mandatory periodic security trainings in accordance with Mastercard’s guidelines.
#J-18808-Ljbffr