This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.
Operational Resilience Manager
Location: London
Job Summary:
We are seeking an experienced Manager to oversee CBRE's compliance to Digital and Operational Resilience standards e.g. the European Digital Operational Resilience Act (DORA) and lead its implementation and maintenance across the organisation. This role will be pivotal in ensuring CBRE's operations meet regulatory requirements, mitigates prevalent IT risks, enhances resilience against digital disruptions whilst fostering a culture of compliance and continuous improvement, and ensuring adherence to industry best practices.
Key Responsibilities:
* Chair the Digital Operational Resilience risk management committee and lead cross-functional teams to implement regulatory requirements, ensuring adherence to internal standards and industry best practice.
* Perform Business Impact Analyses (BIA) to identify critical and important functions. Work with stakeholders to document recovery strategies whilst evaluating risks and controls.
* Monitor and report on the effectiveness of compliance to regulatory standards, reviewing lessons-learned and recommending improvements.
* Provide training and guidance to staff and conduct annual testing of ICT-related and operational resilience business continuity plans.
* Work closely with internal I.T. teams in the development and maintenance of ICT assets and with Procurement for the oversight of ICT service providers.
* Collaborate with internal and external stakeholders, including regulatory bodies, to stay updated on emerging regulation.
* Prepare and present compliance reports to senior management and the Board.
* Manage compliance audits and assessments, ensuring timely resolution of identified issues.
Experience:
* Minimum of 7 years of experience in business continuity, I.T. disaster recovery, risk management, or a related field, with a focus on operational resilience and/or technology.
* In-depth knowledge of DORA regulation, ICT risk management frameworks and assessing ICT risks and controls.
* Chairing and leading risk management committees.
* Familiarity with and adherence to industry best practices e.g. ISO 22301, ISO 27001 and international regulation on information security and operational resilience.
* Strong analytical, problem-solving, and decision-making skills.
* Excellent communication and interpersonal skills, with the ability to deliver and publish risk assessments/business impact analyses, influence and engage stakeholders at all levels.
* Experience with management reporting and external auditor communications.
Equal Opportunities
We are an equal opportunities employer and do not discriminate on the grounds of gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
#J-18808-Ljbffr