Senior Technology Risk Manager, Permanent, Hybrid, London
The purpose of this role is to represent 2nd line risk as a technology subject matter expert, supporting the maintenance and delivery of our risk frameworks, processes, and reporting to help us better understand and manage the risks arising from our use of Technology. Responsible for oversight of critical infrastructure and technology partners, together with ensuring new architecture meets our standards, while also meeting the regulatory Operational Resilience requirements by March 2025.
You will be the 2nd line partner for the Chief Operating Office (COO), providing relevant expertise, advice and independent challenge around their risk and control environment. This role reports directly into the Director of Security & Technology.
Key Accountabilities
* Be a trusted 2nd Line partner to the Chief Operating Office, cultivating effective relationships and networks ensuring rapid escalation of risks/issues across Pay.UK.
* Oversee and challenge infrastructure providers from a technology and security perspective, ensuring they have appropriate controls to maintain their robustness & resilience.
* Support the development and delivery of the risk strategy, frameworks and policies in line with regulatory requirements and industry good practice, such as COBIT5 / ITIL etc.
* Oversee and challenge the COO risk & control environment, including both their Principal and Directorate Risk & Control Self-Assessment (RCSA) processes, ensuring accurate, complete, timely and meaningful reporting to the relevant risk management committees.
* Drive Risk Maturity within the COO and regularly assess against the Risk Maturity Model, reporting outcomes / areas of focus.
* Conduct targeted assurance reviews where necessary, and collaborate with the Head of Change Risk to provide technology SME input and oversight of our innovative technology projects and report in accordance with broader integrated assurance plans.
* Support technology issue management and risk acceptance processes together with associated aggregation and reporting activities.
* Support Pay.UK incident & event reporting processes, ensuring that issues are fixed and root cause analysis is reported accurately and timely to internal management and our regulators.
* Make risk meaningful and relevant to your stakeholders through training and awareness materials, sharing best practice in clear and easy to understand language.
* Maintain full awareness of and conformance to the Risk Management Framework as well as other relevant Technology, Information System related frameworks.
Skills, Experience & Qualifications
* Educated to degree level in a relevant subject, or hold an equivalent technology professional qualification.
* Significant experience of technology & change/operational risk in either a first or second defence capacity (2LoD preferable).
* Experience of working within Financial Services, Fintech or similarly highly regulated industry.
* Experience of changing and building and/or operating industry good practice Technology Risk Management Frameworks.
* Knowledge and experience of technology practices/frameworks such as ITIL, COBIT, NIST.
* Ability to interface with senior stakeholders effectively to establish relationships and become a trusted advisor.
* Ability to produce Board and Executive level risk reports.
* An ability to apply technical knowledge in a practical and balanced manner.
* Independently minded and able to challenge constructively and professionally.
* Proven ability to plan and manage own workload in a challenging environment.
At Pay.UK, we value diversity and inclusivity. We encourage all qualified candidates to apply, regardless of how closely their skills and experience match the requirements. We are committed to supporting accessibility needs and creating a welcoming environment for all employees.
About Us
Pay.UK maintains and develops the UK retail payment systems and standards that are core to the economy being able to function on a day-to-day basis.
From Bacs to Faster Payments and cheques – we act as the single operator for all UK retail payments. We put the needs of consumers and businesses at the heart of everything we do, working in the public interest to ensure that the systems the country relies on for its banking transactions are safe, open, innovative and resilient.
Benefits & Additional Information
* 12% Non-contributory pension
* Discretionary annual bonus
* 30 days annual leave (excluding bank holidays)
* Employee assistance programme
* Cycle to Work Scheme
* Season ticket loan
* Annual fitness subsidy of up to £500 per annum
* Working from home policy - minimum 40% in the office (eg. 2 days in the office over a 5 day working week)
#J-18808-Ljbffr