Technical Risk Specialist

Our leading Douglas-based Finance Sector Client is expanding its Technology, Operations and Financial Risk Team as they progress an ambitious transformation programme. They are now seeking a Technical Risk Specialist to join and play a leading role.

This is an important role at the heart of their Risk Strategy. It is fundamental to providing constructive oversight, challenge and support to the approach to how the Group's IT operations and strategic change projects are directed and controlled. This includes decision making around the Group's IT strategy, how it achieves its aims, and ensuring that all activities undertaken are within risk appetite and comply with legal, ethical and regulatory requirements, with the overall goal of ensuring that the Group is protected from internal and external risk as far as possible.

The Technical Risk Specialist will be responsible for:

• Providing strategic and tactical direction and consultation on IT risks and compliance for key strategic projects
  
  
• Constructively overseeing, challenging and validating risk assessments, providing Line 2 opinion to key governance bodies
  
  
• Developing processes and procedures for overseeing, challenging and validating IT risk governance, including control effectiveness reviews, Line 1's self-assessment preparation and findings, helping Line 1 control owners with remediation plan development, tracking findings through remediation, progress monitoring, reporting, and escalations
  
  
• Recommending changes and improvements to IT risk and policies and procedures
  
  
• Reviewing, challenging and validating Line 1 IT Risk Policy compliance assessments
  
  
• Working collaboratively with other teams to facilitate up-to-date IT risk analysis and risk management processes and to identify threats, vulnerabilities and acceptable levels of residual risk. This includes emerging risks with due consideration of external events and case studies
  
  
• Participating in the development, embedding and maintenance of our Group Risk Management Framework
  
  
• Reviewing Line 1 Risk and Control Self-assessments (RCSAs), analysing the effectiveness of IT risk control activities from a Line 2 perspective, and reporting on them with practical and commercial recommendations
  
  
• Providing advice and training to support Line 1 with managing risks associated with critical issues/incidents that may affect customer, or information security objectives
  
  
• Providing Line 2 review, challenge and insight into new security products as part of a security risk assessment process
  
  
• Assist with and oversee the identification of suitable Risk Management solutions (GRC), risk management information (i.e. dashboards) and automation of risk processes
  
  The ideal candidate for the role of Technical Risk Specialist will have:
  
  
• In depth knowledge and experience of IT related risks, IT risk change, techniques and implications across platforms
  
  
• Broad commercial experience with experience in the financial services sector preferable, operating in a multijurisdictional environment
  
  
• Experience of working in a business going through continuous upgrading, change and growth
  
  
• Understanding of market knowledge and regulations/legislation within industry and expert on IT risk governance, risk management and risk response
  
  
• Demonstrable track record of working with Audit, Risk, Change and IT teams
  
  
• Relevant IT and Risk Management qualifications and/or relevant equivalent work experience
  
  
• Problem solving skills, with the ability to work independently and with integrity
  
  Desirable:
  
  
• Applications from candidates with current or previous Big4 experience desired, but not essential