Location: iRemote, but regular travewl required to the head office in the Isle of Man - weekly / bi weekly
Sector: Financial Services, Risk Management, Technology
Salary £70,000-£80,000
Overview:
An exciting opportunity to join the Risk, Legal & Compliance team within a dynamic and growing organisation. This role plays a pivotal part in overseeing and guiding the IT risk management strategy and ensuring alignment with the organisation’s legal, regulatory, and ethical obligations. The position supports and challenges IT operations and change initiatives to ensure that risk exposures are effectively managed and remain within appetite.
Key Responsibilities:
- Provide strategic and operational guidance on IT risk and compliance for major transformation initiatives.
- Offer independent Line 2 oversight, challenge, and validation of IT risk assessments and controls.
- Support the quarterly Technology Risk Forum with insights and analysis.
- Develop and manage Line 2 oversight processes for IT risk governance, including reviewing control effectiveness, supporting remediation planning, and tracking findings to resolution.
- Recommend updates to IT risk policies and procedures based on review outcomes.
- Validate and challenge Line 1 IT policy compliance assessments and self-assessments (RCSAs).
- Collaborate across functions to ensure accurate risk identification and robust mitigation strategies, including analysis of external threats and emerging risks.
- Participate in embedding and maintaining the organisation’s Group Risk Management Framework.
- Advise on incident response and assist with risk impact assessments tied to IT security events.
- Contribute to the evaluation of new security technologies and assess related risks.
- Support the identification and implementation of Risk Management solutions, including dashboards and automation tools (e.g., GRC systems).
- Strong expertise in IT risk management, with a thorough understanding of risk methodologies, change risk, and technology environments.
- Experience in the financial services industry, ideally within a multi-jurisdictional or regulatory-heavy context.
- Background in organisations experiencing transformation, growth, or technology modernisation.
- Knowledge of regulatory standards and industry best practices in IT governance and risk.
- Proven ability to work with cross-functional teams including Audit, Risk, Change, and Technology.
- Relevant professional qualifications in IT and Risk Management, or equivalent work experience.
- Independent thinker with solid problem-solving abilities and integrity in decision-making.