Join us as a Technology Controls Specialist, IT Resilience
- In this crucial role, we’ll turn to you to drive and facilitate IT risk assessments with a focus on IT resilience and change risk across the bank, through the effective application of technology risk framework
- This is an opportunity to gain exposure as you build and maintain relationships with stakeholders across Technology and the Wealth Chief Digital Information Office (WCDIO) business, ensuring management engagement with operational risk objectives
- You can join us on a full-time or part-time basis, which means you’ll work fewer hours a week than someone on a full time contract, either by working on fewer days, or for fewer hours each day, minimum of 30 hours per week
What you'll do
As a Technology Controls Specialist, IT Resilience, we’ll look to you to apply effective risk management thinking in an IT environment, anticipating and assessing the potential impact of IT stability and disruption risks across the bank You’ll be in charge for the first line risk oversight, over IT resilience and IT change controls by identifying and assessing material risks, along with managing the key controls for IT resilience and IT change risk.
You’ll also be:
- Acting as a key contact for the WCDIO Resilience Service forum and ensuring that criticality of IT assets are adequately assessed
- Supervising IT Disaster Recovery activities and support disaster recovery strategy and IT resilience maturity increase
- Representing Tech Risk & Controls in the various architecture boards and support cloud strategy from an IT resilience perspective
- Supervising the IT change portfolio and key initiatives and represent risk in our change board
- Pro-actively support external audits from a first line IT risk perspective and put potential findings in risk context
- Owning the IT resilience and change risk reporting
The skills you'll need
To succeed in this role, you’ll need experience of IT control environments and frameworks, as well as practical experience in risk management methodologies. In addition, you’ll need a solid understanding of the application of operational risk in a technology environment with a focus on IT resilience, and experience in a risk or control technical role in the financial services industry.
You’ll also demonstrate:
- A fundamental understanding and knowledge of IT resilience, disaster recovery, IT architecture principles and general IT controls
- A good understanding of operational resilience regulation in financial industry, especially PRA SS1/21
- Experience in high-available cloud architecture and cloud disaster recovery mechanisms
- Solid experience in IT risk management practices and reporting
- Experience in IT auditing