IT & Security Governance, Risk and Compliance

Harvey Nash
London, United Kingdom
GBP500 - GBP650 per day + None
06 May 2022
24 May 2022
Job Function
Risk Management
Industry Sector
Finance - General
Employment Type
Full Time
IT & Security Governance, Risk and Compliance

A Leading Financial Services firm are looking to hire a Governance and Risk Analyst

* £500 to £650 per day (Inside IR35 - Umbrella)

* Initial 6 Month contract - scope to roll

* London based but very much remote for now and in the future Key

Aspects of the Role

* Managing end to end Risk Governance and Legal and Compliance - 2LOD function - assessing controls environment and operating effectively (vs threats)

* Policy management and training and awareness In this role, you will lead, challenge and support in the owning, maintaining and improving the business's operational risks & controls and operational resilience governance, activities and deliverables (regulatory or otherwise), ensuring the ability to safeguard our clients, people and assets. The role will be instrumental to provide oversight, guidance and support the business to minimise the impact of disruptions through pro-active risk management, preparation and effective responses to incidents and risk events.

* Working proactively with Real Assets Senior Leadership and Management teams to provide oversight and lead the management and delivery on a broad range of initiatives and BAU activities that will help Real Assets manage its risks and controls environment, reduce risk profile, increase maturity in operational resilience, and improve robustness and scalability of our operating model for future growth.

* Establishing policies and processes for Real Assets to ensure they are fit for purpose and regularly reviewed and adapted to changing environment.

* Developing and maintaining close working relationships with Real Assets teams to drive, facilitate, challenge and be part of their delivery, to improve processes and reduce operational risk profile.

* Providing insight to Group Risk and wider Risk team in the formation of wider Group Risk framework, policies and standards.

* Leading and taking ownership of the Risk Map across Real Assets and, working closely with Senior Management, ensure that controls recorded in the Risk Management System to mitigate the risks are appropriate, proportionate, effective and auditable.

* Ensuring each team in Real Assets has ownership and awareness of their key risks and that they can identify key areas of potential errors and exposures, and that these are reviewed regularly.

* Ensuring errors/incidents/events are reviewed and resulting actions identified and managed through to completion and in accordance with agreed policy and procedures, including ensuring that risk events and issues are raised in a timely fashion and that actions are appropriate, proportionate and effective.

* Oversight of Real Assets resilience controls (business continuity/recovery plans, incident management processes, team contacts etc) and documentation repository/portal. Ensure they are regularly updated in conjunction with the relevant business functions, and that they are aligned with the relevant frameworks, standards, and policies, industry best practice, and regulatory requirements.

* Ensuring that business resilience is designed into any new changes/supporting systems that are introduced and that the associated resilience controls reflect the changes introduced.

* Defining and running effective test schedules based on realistic scenarios to validate that the resilience controls and documentation address the potential threats.

* Managing a threat identification and vulnerability analysis process to identify key resilience risks and establish how those outside of risk appetite are to be addressed.

* Support business teams through partnering and consistently applying the Risk Management Framework (RMF) to identify, assess, manage, monitor and report all material risks using appropriate tools (e.g. risk registers, controls analysis, incident management, emerging risks analysis, key risk indicators, risk appetite, etc)

* Support and challenge incident capture and analysis

* Undertake and support the wider Enterprise Risk Team in its programme of thematic reviews as required on risks, issues and uncertainties within operational risk areas including projects.

* Responsible for coordination and operation of the Actions Panel covering Internal Audit and Operational Risk and Compliance Monitoring activities/assurance reviews.

What we're looking for

* Strong academic background. Preferably a professional certificate, e.g. IMC, IAQ, CFA.

* A professional qualification is desirable but not essential; e.g accounting, Internal audit, Risk management or Compliance qualification.

* Excellent understanding of risk and regulatory issues for Financial Services/Payments business

* Excellent knowledge of risk and control frameworks and resilience risks relating to business operations, technology platforms, digital channels, third parties and cloud based services

* Awareness of risk management and control

* Awareness of risk governance, oversight, and controls

* Awareness of regulatory framework, requirements, and expectations

* Basis familiarity with a 2LOD or 3LOD model

* Experience in Investment Management, ideally Real Assets

* Ability to get buy-in at senior levels, including senior management/Board engagement

* Commercial and strategic approach to management of risk and regulatory matters

* Effective at making decisions and delivering great outcomes

* Pragmatic approach and good understanding of business issues and pressures

Similar jobs

Similar jobs

  • You need to sign in to save