IT Risk Manager

The role of anIT Risk Manager encompasses a broad set of responsibilities, with primary responsibilities to maintain the IT Risk Framework, develop and administer risk policies/procedures for the organization and performing risk and control assessments. This is a role within Jefferies Technology in London, while being an integral part of the Global Technology team.

• Maintain the IT Risk Framework. In support of this, develop, establish, and implement policies and frameworks for IT risk and security management
• Perform risk and control assessments, which comprise analyzing, identifying, describing, and quantifying risks that impact all business risks
• Monitoring risk trends, areas of concern and develop mitigation plans with Jefferies’ IT stakeholders. Challenge risk mitigation decisions as appropriate
• Maintain engagement with Jefferies’ senior IT risk managers, and run/support relevant risk forums
• Develop and maintain good communication channels with other risk partners, such as Enterprise Risk Management, Operational Risk Management, etc.
• Raise risk awareness, provide education and training to employees inside the organization

• At least five to seven years of relevant work experience in fields of IT Risk Management, IT Audit or Operational Risk with Technology/Cyber focus.
• Experience in the financial service industry.
• Familiarity with Technology and Cyber risk assessment and prevention
• Ability to analyse large sets of data and communicate complex information
• Ability to distill risk information for non-technical profiles throughout the company
• Ability to brief, train and direct staff in the application of new processes and controls
• Ability to formulate constructive feedback to a wide array of different stakeholders
• Ability to work autonomously as well as to collaborate in team