Job Title: Technology Change Risk Consultant
Contract Type: Permanent
Location: Edinburgh or Alderley Park
Working style: Hybrid 50% home/office based
We are looking for a Technology Change Risk Consultant to join our growing team in either Edinburgh or Alderley Park.
Our Group Risk & Compliance department is responsible for providing independent oversight and challenge over the first line’s identification, assessment, and management of all risks. The Technology & Resilience Risk team performs this role with a focus on Technology, Cyber, Change, Third-Party, and Resilience risks.
About the role
With a focus on Technology Change and Systems Development Risk, you will:
* Advise the Board and senior management in relation to strategic planning and decision-making.
* Independently oversee and challenge the Group’s strategic and business risk profiles and risk appetite assessments.
* Provide a formal independent opinion in relation to significant risks.
* Monitor and report on Group-wide risk exposures compared to risk appetite.
* Conduct risk-based independent assurance.
* Facilitate risk management activity by supporting risk-related communication and management information flows across the Group.
* Promote strong risk culture and behaviours across the Group such as communications, education, and training.
About you
* Member of ISACA.
* Relevant Professional Certifications such as, but not limited to, Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Security Professional (CISSP), Prince 2 Foundation/Practitioner, ITIL Foundation, and Certified in Risk and Information Systems Control (CRISC).
* Understanding of systems development methodologies and frameworks such as Agile, Waterfall, Hybrid and DevOps and how controls and risk management principles can be embedded in their design and operation.
* Familiarity with systems development tools and techniques, including integrated development environments, version control systems, continuous integration/continuous development, and project management tools.
* Understanding of IT Governance and methods for aligning technology change and technology strategy to business objectives and strategy.
* Understanding of process, risk and control management and assessment techniques, and how they can be applied to deliver outcomes for customers, regulators, and the business.
* Understanding and application of the 3 lines framework, risk management framework, control risk self-assessment process.
About Royal London
We’re the UK’s largest mutual life, pensions and investment company, offering protection, long-term savings and asset management products and services.
Our People Promise to our colleagues is that we will all work somewhere inclusive, responsible, enjoyable, and fulfilling. This is underpinned by our Spirit of Royal London values; Empowered, Trustworthy, Collaborate, Achieve.
We've always been proud to reward employees by offering great workplace benefits such as 28 days annual leave in addition to bank holidays, an up to 14% employer matching pension scheme and private medical insurance.
Inclusion, diversity and belonging
We’re an Inclusive employer. We celebrate and value different backgrounds and cultures across Royal London. Our diverse people and perspectives give us a range of skills which are recognised and respected – whatever their background.
#J-18808-Ljbffr