Enable job alerts via email!
Manager, ICT GRC and Digital Operational Resilience (DORA)
Raymond James Financial
United Kingdom
On-site
GBP 70,000 - 90,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A financial services company is seeking a Manager for ICT Governance, Risk, and Compliance (GRC) and Digital Operational Resilience (DORA). The ideal candidate will be responsible for developing and managing ICT risk management programs, ensuring compliance with regulations across the UK, Germany, and France. Strong technical guidance and coordination across jurisdictions are required, along with project management and communication skills. This position offers an opportunity to work in a dynamic environment and make substantial impacts on organizational resilience.
Qualifications
- Ability to coordinate across business units and jurisdictions.
- Strong communication and influencing skills.
- Experience in creating reports and recommendations for stakeholders.
Responsibilities
- Design ICT risk management frameworks and compliance policies.
- Coordinate resilience testing programs for ICT and third parties.
- Prepare reports for regulators and manage audit reviews.
- Monitor regulatory updates and adjust program design.
Skills
Responsible for designing, structuring, and overseeing ICT Risk Management programme, including the Digital Operational Resilience Act (DORA) program across Germany, France, and the UK. Ensures the organization is compliant with EU/UK operational resilience requirements and aligned to industry best practices.
Develop, implement, and manage the organization’s ICT risk management program within the Governance, Risk & Compliance (GRC) function, including fulfilling DORA requirements. Ensure compliance with regulatory requirements in Germany, France, and the UK, with a focus on ICT risk, third-party oversight, and operational resilience testing.
Collaborate with the Business, 1LOD (Technology teams), and 2LOD (Risk, Compliance, Information Compliance Risk Management ‘ICRM’) to embed resilience controls into processes and reporting, and to monitor effectiveness of the above programs.
- Establishing ICT risk management and governance frameworks, policies, standards and procedures to comply with DORA and related regulations.
- Designing and coordinating resilience testing programs, including ICT and third-party testing.
- Partnering with vendor management to ensure compliance with third‑party oversight obligations including oversight of controls and testing.
- Preparing reporting for regulators, senior management, and governance committees, coordinating for internal and external audit reviews.
- Monitoring regulatory updates across multiple jurisdictions and adjusting program design accordingly.
- Serving as a liaison with German, French, and UK business units to ensure alignment and consistency.
Works independently and provides technical guidance when required on regulatory compliance, operational resilience, and ICT risk management. Strong ability to coordinate across business units and jurisdictions. Applies project management, communication, and analytical skills to structure and oversee complex regulatory programs. Demonstrates clear communication, influencing skills, and ability to create effective reports and recommendations for stakeholders at multiple levels.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
