Technology Risk Management
Position Summary
This second-line leadership role is focused on strengthening Technology Risk Management practices and aligning with evolving regulatory expectations. The position supports the development and execution of a robust review and challenge function, ensuring effective oversight of IT controls and risk mitigation strategies. The individual will contribute to risk assessments, control testing, issue tracking, and reporting, while serving as a key resource for internal audit, enterprise risk, and compliance teams.
Key Responsibilities
Partner with IT process owners to identify material risks and establish procedures and technical standards to mitigate those risks in alignment with enterprise policies.
Provide review and challenge of risk frameworks and controls, ensuring they are effectively designed and implemented.
Act as a liaison between second and third lines of defense, supporting audit and regulatory exam readiness.
Guide and challenge control designs, risk self-assessments (RCSA), and risk acceptances; perform control testing and identify opportunities for improvement.
Monitor enterprise-wide risk trends and promote cross-functional alignment and efficiency.
Qualifications
Minimum of 8 years of experience in risk or audit functions, ideally within the financial services sector.
Bachelor's degree required; advanced degree preferred.
Professional certifications such as CISA, CRISC, or CISSP are strongly preferred.
Proven expertise in enterprise or operational risk, internal audit, or information security risk management.
Ability to communicate risk concepts clearly to operational teams and synthesize complex data into actionable insights.
Strong understanding of technology and emerging regulatory trends.
Excellent interpersonal and communication skills, with the ability to collaborate across all levels of the organization.
Core Competencies
Problem Solving: Demonstrates curiosity and creativity in addressing audit and regulatory needs.
Adaptability: Thrives in dynamic environments with shifting priorities; detail-oriented with strong organizational skills.
Initiative: Proactively drives progress and identifies opportunities for improvement without needing direction.
Communication: Translates technical concepts into clear business language for diverse audiences.
Project Management: Capable of leading multiple complex initiatives and ensuring timely completion.
FAQs
Congratulations, we understand that taking the time to apply is a big step. When you apply, your details go directly to the consultant who is sourcing talent. Due to demand, we may not get back to all applicants that have applied. However, we always keep your CV and details on file so when we see similar roles or see skillsets that drive growth in organisations, we will always reach out to discuss opportunities.
Yes. Even if this role isn’t a perfect match, applying allows us to understand your expertise and ambitions, ensuring you're on our radar for the right opportunity when it arises.
We also work in several ways, firstly we advertise our roles available on our site, however, often due to confidentiality we may not post all. We also work with clients who are more focused on skills and understanding what is required to future-proof their business.
That's why we recommend registering your CV so you can be considered for roles that have yet to be created.
Yes, we help with CV and interview preparation. From customised support on how to optimise your CV to interview preparation and compensation negotiations, we advocate for you throughout your next career move.