Role Title: IT Risk and Controls Lead
Duration: 12 Months
Location: Sheffield / Hybrid (2-3 days on site)
Rate: £565/d - Umbrella only
Would you like to join a global leader in consulting, technology services and digital transformation?
Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms.
Role purpose / summary
This role will be accountable for governance of System Development and Deployment controls, Data Movement controls, Identity and Access Management controls and support wider technology controls as a risk and control subject matter expert.
- Act as trusted advisor for the senior management to properly manage their operational risk and all items related (Control environment, issues management).
- Manage the promotion of accountable risk and control decision-making based on quality data.
- Monitor system development, deployment, data movement, identify and access management control activities to ensure compliance with policies and procedures.
- Conduct regular reviews of system development, deployment, data movement controls, identify and access management control processes to identify and remediate any vulnerabilities or areas for improvement.
- Collaborate with cross functional teams, including Cybersecurity, IT, and business units, to ensure system development, deployment, data movement, access and identify management control strategies align with organisational goals and requirements.
- Have detailed knowledge of IT risk and control management frameworks and methodologies and collaborate with IT Service Line Leads, IT Service Owners, and Development Teams to develop control enhancement solutions and enforce control compliance.
- Stay current on industry trends and advancements in risk management and controls to identify opportunities for enhancement, automation, and innovation.
Key Skills/ requirements
- Deep knowledge and experience of Risk Management Frameworks in a financial services organisation.
- Expert knowledge of Non-Financial Risk management and a track record of IT risk and control experience with knowledge of system development, data management, Identity and Access management (IDAM).
- Effective influencing skills and a collaborative team working approach. Ability to develop trusted advisor status and be an accomplished influencer with key stakeholders.
- Strong analytical and critical thinking skills, with a demonstrated ability assimilate information rapidly.
- Awareness of external (regulatory and audit) requirements for IT risk and controls.
- Strong risk aware mind-set to ideate and design control solutions for complex and interlinked IT processes.
- Experience and proven track record to influence /manage functionally and work independently at a senior level.
- Strong communication skills and a proven track record of senior executive engagement.
- Actively challenge poor, inefficient, or excessive controls, related tasks and behaviours while proposing solutions and recommendations.
- Ability to work in a multi-country, culturally diverse and time-zone separated management role.
- MS Excel to interrogate large data sets.
- SharePoint, Microsoft Teams, and Confluence.
All profiles will be reviewed against the required skills and experience. Due to the high number of applications, we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!