Join us as a Technology Risk & Controls Manager We’ll look to you to apply effective risk management and decision-making capability, anticipating and assessing the potential impacts of risk associated with technology across the relevant business area You’ll partner with our business and Service Management teams to manage our risks and controls within agreed risk appetite, using our risk framework to make sure bank objectives are achieved This is a chance to enjoy a varied and extensive breadth of work in this fast-paced and varied role, and you’ll gain valuable exposure across a broad range of senior level stakeholders What you'll do As a Technology Risk & Controls Manager, you’ll support the risk framework execution and apply effective risk management within our risk appetite, predominantly for the Commercial & Institutional (C&I) Chief Digital & Information Office business area, providing support and oversight as a technology risk and control SME. This includes strengthening the level of ownership, identifying, and calling out areas of weakness and sharing best practices. In this key role, you’ll make sure impacts of strategic technology and digitisation initiatives on the operational risk and control profile are evaluated, managed and mitigated. We’ll look to you to provide support on framework execution as a technology risk and control expert, including risk and controls assessments, control design and articulation, control testing and policy compliance. To do this, you’ll be working closely with the Control Testing team, Franchise and Function Control teams and second line risk. Additionally, you’ll: Create a culture of continuous improvement, increasing efficiency and productivity through great people leadership, coaching, engagement and development of skills Produce and review risk committee packs articulating risk profile, control gaps and using the operational risk framework and material risk measures Escalate emerging risks in a timely manner, making sure actions are quickly defined and owned along with delivering all aspects of risk management within the policy framework and operational risk requirements Develop risk awareness, contributing to the prioritisation, design, and implementation of controls in line with the operational risk principles Support with the design of control automation Liaise with the business, internal audit, second line of defence and other functions, as well as the wider risk and controls teams Support the business in developing a cost-effective and automated controls environment that meets regulatory and policy expectations, bringing risks within the appetite The skills you'll need To succeed in this role, you’ll need an extensive understanding of the C&I business, specifically key products, and technology risks, to enable informed discussions of risk. You’ll also bring knowledge of risks and controls associated with Technology, including industry frameworks such as COBIT, CRISC, IT General Controls, SOx and risks associated with technology outsourcing. We’re looking for a highly skilled individual with a proven ability to deliver high quality outcomes and experience of applying technology, risk and control assessments in an operational and strategic context. Additionally, you’ll need stakeholder management skills involving people, process, and technology issues, along with a proven understanding and practical application of risk management principles. You’ll also have: Knowledge of C&I banking businesses areas, associated products, processes, and technologies Strong experience in technology risk management and audit or control frameworks and a strong understanding of IT General and Automated Controls as well as experience of working in a fast paced technology risk or audit environment where priorities shift rapidly Experience in producing corporate governance and risk committees, formulating and articulating technology and digital related risk profiles using an operational risk framework The ability to provide an aggregated view of the control environment for the relevant technology and digital business areas Strong senior stakeholder management skills with the ability to communicate complex ideas and solutions to support risk management An understanding of how to design IT general and automated controls to mitigate risks