Overview
You'll join AXA UK's Chief Operations Office (COO) Risk Office, helping to drive a strong risk-led culture across Technology, Security, Data and Change. As Head of Risk Partnership, you\'ll provide First Line Risk, Control and Audit leadership across Technology, Security, Data and Change, reporting to the COO Risk Director. You\'ll lead risk, control and assurance activities, advise executive leadership on risks and issues, and embed governance while shaping a forward-looking lifecycle to identify and quantify new and emerging risks and develop target risk appetites for evolving platforms and infrastructure. You\'ll build and lead a team by hiring dedicated SMEs in technology, data and change, all united by delivering robust First Line risk management. AXA supports flexible working; you\'ll work at least two days a week (40%) away from home, increasing to three days a week (60%) in the future, with arrangements to discuss flexibility with Talent Acquisition.
Responsibilities
* Define and implement the risk management strategy aligned to the company\'s risk appetite and business objectives across Technology, Security, Data and Change.
* Build, lead and develop a high-performing team of risk professionals, including SMEs in tech, data and change, delivering 1st line risk management.
* Orchestrate the risk lifecycle: identification, assessment, monitoring and remediation; provide guidance to issue/action owners on remediation plans.
* Partner with Enterprise Risk Management, Internal and External Audit, and other stakeholders; act as a trusted advisor to COO leadership on emerging risks.
* Establish key risk indicators (KRIs) and oversee regular reporting to senior management; embed risk insights into governance forums.
* Ensure risk management is embedded into change programmes; apply security and resiliency by design principles.
* Engage service delivery partners to ensure maturity in risk management, controls, governance and reporting; ensure gaps/remediation are clearly governed.
* Drive continuous improvement across the COO risk landscape, including identifying and quantifying new and emerging risks (e.g., Agentic AI) and setting target risk appetites for evolving platforms and infrastructure.
Qualifications
* Strong leadership experience in a senior technology risk management role.
* Proven track record developing and overseeing technology, security and data risk management strategies aligned to business objectives.
* Deep knowledge of risk management methodologies and frameworks (ISO 31000, NIST, COBIT).
* Expertise in cybersecurity frameworks (ISO 27001, NIST CSF, CIS, COBIT).
* Demonstrated experience working with internal audit, external audit and regulatory bodies (FCA, PRA, ICO).
* Knowledge of Digital Operational Resilience Act (DORA) and other operational resilience requirements.
* Experience embedding risk frameworks and controls into change programmes.
* Broad understanding of modern technology environments, including cloud, APIs, Agentic AI and DevSecOps, with excellent stakeholder management and ability to translate technical risks into business language and reports for the Executive Committee.
Additional requirements
As a precondition of employment for this role, you must be eligible and authorised to work in the United Kingdom.
Benefits & Inclusion
* Competitive annual salary and annual company & performance-based bonus
* Contributory pension scheme (up to 12% employer contributions)
* Life Assurance (up to 10 x annual salary)
* Private medical cover; 28 days annual leave plus Bank Holidays; option to buy/sell up to 5 days leave
* Wellbeing services & resources; AXA employee discounts
AXA is an Equal Opportunities Employer and is recognised as a Disability Confident Leader. We actively encourage applications from all backgrounds and provide support to applicants with disabilities or long-term health conditions.
EEO & Accessibility
You\'re encouraged to report concerns in good faith; contact details are provided in the job advert for accessibility support. Screening & Conduct: all successful candidates will be subject to pre-employment checks in line with regulatory requirements.
#J-18808-Ljbffr