Manager - D&A DORA Risk Assurance

• Leadership & Culture: Lead the day-to-day management and scheduling of the DORA Customer Audit program, ensuring that all internal partners are briefed, logistics organized and evidence collated, serving as the Customer Audit representative with the client.
• Champion integrity, transparency, and continuous learning.
• Mentor junior members of staff, provide real-time feedback and collaborative learning to support growth.
• Support the team in adapting to new auditing standards and digital transformation initiatives.

• Audit and Attestations: Own the planning and execution of attestation programs (e.g. SOC 2, ISAE 3000).
• Maintain a library control narrative, process flows, and risk/control matrices.
• Prepare and deliver responses to findings.
• Own the end-to-end governance process across the department.
• Deputize for the leadership team, delegate and manage workload across the team, and provide mentorship and career counselling to team members.

• Control framework: Support the design and implementation of control frameworks over technology platforms from each Business Unit.
• Present the control framework, objectives, and provide advice to product managers, engineers, architects and other partners in embedding controls for attestations.
• Lead the end-to-end risk control self-assessment and maturity reviews.

• Client Engagement: Work directly with customers and account teams to proactively address queries based on trends and common themes observed in assigned requests.
• Act as primary point of contact or escalation for Business Unit Product Managers, Business Control Owners, Architects and others.
• Educate business leaders and technical teams on attestation readiness and the control framework.
• Maintain and collaborate with partners – including Legal, Compliance, Infrastructure & Cloud, D&A Tech Services teams, product teams, customer-facing teams and external auditors.

• Risk and Compliance: Collaborate with Information Security, Privacy, Legal, and other internal Program teams to align on regulatory expectations.
• Monitor emerging standards in financial market infrastructure assurance and recommend adoption where required.

• Crucial: Proven track record in audit, attestation, or risk assurance in a Big 4, consulting or financial services environment.
• Solid understanding of DORA, SOC, ISAE3402/3000 and IT Risk control frameworks.
• Experience in assessing technology, data, or market infrastructure environments.
• Excellent documentation skills (process maps, RCMs, audit reports etc.).
• Good interpersonal skills with the ability to influence collaborators at all levels.
• Understanding of risk management and effective Information Security strategy, practices, technologies and controls frameworks.

• Desirable Criteria: Professional qualifications (CISA, CRISC, CISM, CISSP, CIA etc.)
• Exposure to regulatory audits (FCA, SEC, ESMA) and other operational resilience requirements

LSEG (London Stock Exchange Group) is a global financial markets infrastructure and data business committed to excellence in delivering services to our customers. We enable businesses and economies around the world to fund innovation, manage risk and create jobs. LSEG employs 25,000 people across 65 countries and operates in multiple regions worldwide.

Join us and be part of a team that values innovation, quality, and continuous improvement. If you\'re ready to take your career to the next level and make a significant impact, we\'d love to hear from you.

LSEG is an equal opportunities employer. We do not discriminate on race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. We can accommodate applicants\' and employees\' religious practices and beliefs, and health-related needs where required by law.

You will be part of a collaborative culture where we encourage new ideas and sustainability across our global business. Our privacy notice explains what personal information London Stock Exchange Group (LSEG) may hold about you, how it\'s used, and your rights as a data subject. If you are submitting as a Recruitment Agency Partner, you are responsible for ensuring candidates are aware of this privacy notice.