Job Title : IT Risk and Controls Lead
Job Location : Sheffield, UK
Job Type : Contract(Inside IR35)
For a complete understanding of this opportunity, and what will be required to be a successful applicant, read on.
Job Description
We are currently seeking an experienced professional to join our team in the role of IT Risk and Controls Lead for Colleague Experience Technology (CET).
The Colleague Experience Technology consists of multiple internal functions supporting internal workplace processes and systems. It brings together employee and supplier facing functions to support and implement efficiencies in systems, system integrations and processes. The functions covered in responsibility for this role include HR IT, Corporate Services IT, Procurement IT, Group Management Systems IT, Digital Workflow IT, and Global Communications & Brands IT.
This role will be accountable for governance of System Development and Deployment controls, Data Movement controls, Identity and Access Management controls and support wider technology controls as a risk and control subject matter expert.
Act as trusted advisor for the senior management to properly manage their operational risk and all items related (Control environment, issues management).
Manage the promotion of accountable risk and control decision-making based on quality data.
Monitor system development, deployment, data movement, identify and access management control activities to ensure compliance with policies and procedures.
Conduct regular reviews of system development, deployment, data movement controls, identify and access management control processes to identify and remediate any vulnerabilities or areas for improvement.
Collaborate with cross functional teams, including Cybersecurity, IT, and business units, to ensure system development, deployment, data movement, access and identity management control strategies align with organisational goals and requirements.
Have detailed knowledge of IT risk and control management frameworks and methodologies and collaborate with IT Service Line Leads, IT Service Owners, and Development Teams to develop control enhancement solutions and enforce control compliance.
Stay current on industry trends and advancements in risk management and controls to identify opportunities for enhancement, automation, and innovation.
To be successful in this role, you should meet the following requirements:
Deep knowledge and experience of Risk Management Frameworks in a financial services organisation.
Expert knowledge of Non-Financial Risk management and a track record of IT risk and control experience with knowledge of system development, data management, Identity and Access management (IDAM).
Effective influencing skills and a collaborative team working approach. Ability to develop trusted advisor status and be an accomplished influencer with key stakeholders.
Strong analytical and critical thinking skills, with a demonstrated ability to assimilate information rapidly.
Awareness of external (regulatory and audit) requirements for IT risk and controls.
Strong risk aware mind-set to ideate and design control solutions for complex and interlinked IT processes.