Technology Risk & Controls Manager

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

Job Description

Job Summary:

As a Technology Risk & Controls Manager within Chase UK, you will be providing full support to various engagements including audit preparation, operational audit support, and post-audit action management. You will be responsible for staying up-to-date with regulatory requirements and ensuring effective identification and management of technology risk. This role offers the opportunity to develop robust relationships and influence executive-level strategic decision-making, while proactively monitoring and enhancing control effectiveness.

Job Responsibilities

1. Providing full support to Audit, CCOR, and Reg engagements including pre-audit preparation guidance, operational audit support, and post-audit action/issue management.
2. Remain up to date with applicable regulatory requirements and publications relating to compliance.
3. Ensure effective identification, quantification, communication, and management of LOB technology risk, focusing on root cause analysis and resolution recommendations.
4. Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals.
5. Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work.
6. Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance.

Required qualifications, capabilities, and skills

1. 5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation.
2. Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements.
3. Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
4. Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives.

Preferred qualifications, capabilities, and skills

1. CISM, CRISC, CISSP, or other industry-recognized risk certifications.