Team: Information Security
Work Arrangement: Hybrid - 2 days per week based in our Bournemouth office but we are open to discussing flexible working arrangements with our London office
Hours: Full-time, 35 hours per week
About the Role:
This exciting position plays a key role in shaping and overseeing the IT risk and control framework within Technology. You'll champion a proactive approach to risk, promoting awareness and accountability throughout the tech teams. In this role, you'll drive IT risk initiatives, deliver regular insights to senior stakeholders, and oversee audits, general controls, and risk assessments. Collaboration is crucial - you'll work closely with Information Security, Group Risk, and both internal and external audit teams. You'll also support policy alignment, evaluate control effectiveness, and advise on enhancements to risk controls.
Key Responsibilities:
1.
Develop, implement, and manage the IT Risk Management Framework
2.
Maintain an up-to-date IT Risk Register
3.
Oversee the creation and tracking of risk mitigation plans
4.
Provide clear, regular risk updates to IT leadership
5.
Foster a risk-aware mindset across all areas of Technology
6.
Assess and recommend investments to reduce identified IT risks
7.
Track and resolve IT risk incidents, ensuring timely closure
8.
...