Technology Risk Manager

Recruiter
IQ ESM
Location
Manchester
Salary
£55k - £65k pa + car allowance, bonus, etc.
Posted
10 Nov 2017
Closes
16 Nov 2017
Contract Type
Permanent
Hours
Full Time
Job Offer
A truly unique IT Risk Manager position, with excellent work-life balance and competitive package based in Manchester. The IT Risk Manager would be required to be in the office one to two days a week, so this is very much an agile role (home/flexible working) majority of the time.
Base salary: £55,000 - £65,000 Car Allowance: £7,000 Discretionary Bonus: 10-55% Industry leading other additional benefits.

IT Risk | Technology Risk | Information Security | Three Lines of Defense | 3LoD | IT Controls | Audit | Risk Management | Governance | Compliance | Policies | Procedures | COBIT | Operational risk | Framework | Disaster Recover | Business Continuity | Vendor Management | Service Delivery

Role Purpose: To assess the adequacy of the existing controls framework relating to Finance processes and data interfaces. To lead on the refinement or development of appropriate controls to mitigate key risks and ensure the effective operation of these controls. To help coach control owners on the effective design and operation of controls. To design and implement reporting of data quality and data provider controls.

working alongside operational risk and in parallel to the wider Group IT function and the business. The IT Risk Manager, acts as the subject matter expert, and advisor to management concerning risks involving or affecting technology (particularly but not exclusively IT).
Although technology and other risks are owned by individual managers throughout the organisation, the IT Risk Manager owns and is responsible for the technology risk management policies, procedures and guidelines, and is expected to ensure that technology risks are appropriately measured and prioritised.

Profile Accountabilities -
Risk
*Ensure IT Risk standards align to the latest COBIT standards
*Implement and chair an IT Risk Committee with an appropriate IT Risk Log
*Ensure IT risk and controls are aligned with regulatory and compliance requirements
*Ensure IT risk and controls are aligned to Group IT standards (Security/Governance/Data Protection) and Group Risk controls
*Ensure all IT Risk documentation and controls are relevant and updated as and when necessary
*Act as the 1st line of defence for IT Risk
*Responsible for working with Operational Risk team and Conduct Risk to ensure, where and when appropriate, risks are reported, shared and escalate
Audit
*Accountable for ensuring all IT audit actions are logged and action owners and plans are in place to remediate the audit issues within the appropriate timescale
*To assess, impact and document the impact of the IT Risk(s) identified from audit actions
*To try and pre-determine areas of weakness that may introduce audit actions and remediate where possible
Compliance
*Ensure the IT function, across internal and external suppliers, aligns to the relevant compliance standards
*To understand and disseminate the existing and any new compliance standards
DR (Disaster Recovery)
BCP (Business Continuity Planning)
Vendor Management

Profile Experience -
*In-depth knowledge and experience of BCP/DR plans
*In-depth knowledge and experience of managing suppliers
*Knowledge and experience of aligning to IT Security, Governance and policies and procedures
*Proven experience in software or database systems development and/or support with experience of project life cycles and complex product installation, customisation and commissioning
*Strong experience of managing Service Delivery and BAU
*Strong experience of architecture principles across business, infrastructure and technical architecture
*In-depth knowledge and experience of creating a risk control framework and the appropriate reporting
*Understanding of contract negotiation and contract/supplier management best practice
*Minimum Practitioner and be a qualified COBIT Practitioner.

IT Risk | Technology Risk | Information Security | Three Lines of Defense | 3LoD | IT Controls | Audit | Risk Management | Governance | Compliance | Policies | Procedures | COBIT | Operational risk | Framework | Disaster Recover | Business Continuity | Vendor Management | Service Delivery



Interquest Group PLC is acting as an Employment Agency in relation to this vacancy.
This job was originally posted as www.jobsite.co.uk/job/959512392