Job Description:
IT Risk and Assurance Manager
Salford Quays, Brighton or Staines
Hybrid Working Options
Full time (37.5hrs pw) - Permanent
From £79,500 + Excellent Benefits
We make health happen
The IT Risk and Assurance Manager role is responsible for leading work to implement the risk management framework across a wide range of information technology related risks affecting the business. This includes Information Security, technology failure, information governance, cyber, data protection, privacy and business continuity, so the business operates within risk appetite. Within this framework, they will lead the oversight and challenge of IT related risks across both business as usual activity, projects and other developments.
The IT Risk & Assurance Manager is part of the IT Risk & Assurance team and reports into the Head of IT Risk & Assurance. The role will build positive and open relationships with wider IT community and with other business areas where these risks manifest.
You’ll help us make health happen by:
1. Working closely with the appropriate Information Systems (IS) and business teams to foster a high-achieving, well-controlled organisation which can achieve growth targets safely
2. Developing, maintaining and promoting the information risk and resilience components of the appropriate Risk Management Framework (RMF) including risk appetites, emerging risks and incident capture and analysis
3. Supporting IT and business teams in consistently applying the RMF to identify, assess, manage, monitor and report all material risks using appropriate tools (e.g. risk registers) and key performance and risk indicators and thresholds
4. Supporting management in other functions to enhance risk management practices in the related areas of Information Risk and Cyber Security;
5. Providing oversight and challenge of the firms systems and controls in respect of risk management;
6. Providing oversight and validation of the firms reporting of risk;
7. Fostering a positive culture of confident and informed risk-taking through training, communication and promotion of the agreed risk framework
8. Delivering to the Enterprise Risk team annual plan
9. Developing an accurate view of the business IT risk profile and the effectiveness of risk control activities through the Internal Controls & Risk Management Assessment (ICRMA) process
Key Skills needed for this role:
10. Experience of leading or materially contributing to IT Strategy, IT Project delivery and technology architecture
11. Exposure to IT risk management and associated governance frameworks, methodologies, and emerging practice, with a desire to develop a deeper appreciation of this topic
12. Skilled communicator and report writing with the ability to influence and motivate others
13. Experience of financial services regulatory environment and key regulatory regimes
14. Experience of working at senior levels and able to present, influence and to advise senior management including boards
Benefits
Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health – from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits.
15. 25 days holiday, increasing through length of service, with option to buy or sell
16. Bupa health insurance as a benefit in kind
17. An enhanced pension plan and life insurance
18. Annual performance-based bonus
19. Onsite gyms or local discounts where no onsite gym available
20. Various other benefits and online discounts
Bupa
We’re a health insurer and provider. With no shareholders, our customers are our focus. Our people are all driven by the same purpose – helping people live longer, healthier, happier lives and making a better world. We make health happen by being brave, caring and responsible in everything we do.