Technology Risk Senior Manager

Our Business Services team is a collective of creative, strategic, forward-thinking business enablers. Together the People & Culture, Clients & Markets, IT, Operations, Change Management, Innovation, Finance and Quality & Risk Management teams make it their mission to ensure Forvis Mazars has the right tools, technology, strategies, and services in place to deliver exceptional client service and future-proof our growing business.

As an Enterprise Risk Management (ERM) – Technology Risk Senior Manager, you will play a key role in overseeing the maintenance and continuous improvement of an appropriate and resilient technology and cyber risk management framework. You will provide independent and proactive oversight, challenge and advisory support to technology stakeholders to identify, assess, manage and monitor technology risks. As a Senior Manager within ERM, you will have the opportunity to help develop and embed effective firmwide enterprise risk processes, risk culture, and maturity across the firm across all Service Lines by delivering proactive, high quality and value-added service as part of a maturing central Risk Function at Forvis Mazars.

• Evaluate and document cyber security, technology and data governance control compliance according to Service Line, Firmwide, and Regulatory Policies and Standards.
• Lead the oversight and challenge of Information Security risk management, ensuring alignment with strategic objectives and regulatory expectations, e.g. ISO27001 and Cyber Essentials +.
• Develop risk measurement methodologies to model and continually enhance the technology and cyber risk profile.
• Conduct oversight assessments of technology change and AI related projects to identify potential vulnerabilities, compliance issues, and ethical considerations.
• Stay up to date with relevant regulatory requirements, data protection laws, and industry standards, ensuring that all technology and AI change initiatives adhere to these requirements.
• Oversee the ethical implementation of AI, ensuring that concerns regarding bias, fairness, and transparency in AI algorithms and decision-making are appropriately addressed.
• Provide regular reports and updates to senior management and relevant stakeholders regarding technology risk management activities, including identified risks and mitigation strategies.
• Maintain relationships with stakeholders to facilitate oversight and effectiveness of the technical control environment.
• Validate that technology Key Risk Indicators are accurately captured and included in prioritisation activities.
• Provide strategic risk management advice and guidance on technology and cyber risks, identifying emerging risks and required actions associated with advances in technology and digital capabilities.
• Provide oversight, advice and guidance around the development of a robust data governance framework, ensuring high data quality and regulatory compliance.
• Support the Director of Enterprise Risk Management in promoting risk management practices and risk culture aligned with the firm's risk appetite and strategy.
• Provide people management responsibilities within the Enterprise Risk Management team.

• Expertise in technology, data governance, information security, and AI risk management, including experience working within regulated industries.
• Professional/industry certification, or technology specific certifications such as CISSP, CISM, CRISC or CISA.
• Experience engaging with and presenting to senior stakeholders, and challenging rationales as part of an independent function.
• Knowledge of legal and regulatory requirements related to technology, cybersecurity, data privacy, and AI.
• Strong understanding of AI technologies, machine learning, and data analytics.
• Self-motivated with the ability to manage multiple tasks while maintaining high delivery standards.
• Excellent written and verbal communication and presentation skills.

and

At Forvis Mazars we value inclusivity and diversity. We recognise that being an inclusive and diverse organisation makes us stronger as a business. We seek to attract and recruit people who reflect the diverse nature of our clients and communities, regardless of gender, ethnicity, faith or belief, social background, and other characteristics. Mazars selects candidates based on skills, knowledge, qualifications, and experience.