This job has been posted for more than 30 working days and has expired.

Senior IT Risk and Assurance Manager

Role:       Senior IT Risk and Assurance Manager

Skills:      IT Risk, Audit, Compliance, CISA or similar 


Purpose of the Role:

The Senior IT Risk and Assurance Manager is required to partner with all levels of the  business and support teams to ensure Risk Management Policies and Frameworks are fully, and effectively, embedded into both the company culture and working practices.

The individual provides independent assurance that the company continues to effectively operate controls and mitigate risks. 

Person required:

My client is a financial services organisation, and although it would be beneficial to have experience in financial services, it is not essential.

The person will have a strong technical understanding of technology risks and have good IT auditing skills, ideally in a technology as a service organisation.

You will be a self-starter, who will take the initiative and be able to build relationships with internal and external stakeholders.

Key Responsibilities include:

• Partner with Technology and the CISO team to ensure proactive identification and evaluation of existing

and emerging operational, technology and cyber risks.

• Lead and undertake technical IT/Cyber assurance, rapid response and follow up reviews to ensure

adherence to Unisys and internal policies; external regulations; procedures; client requirements and the

effective mitigation of risks through application of an appropriate internal control framework.

• Examine, review and test internal IT and Cyber controls, evaluate the design and operational

effectiveness, determine exposure to risk, provide mitigating recommendations and support

development of remediation actions or strategies.

• Communicate complex technical issues in simplified terms to the relevant staff.

• Develop detailed and expert understanding of the company's technology infrastructure and applications together

with cyber risk threats / controls within the company.

• Support the development of risk management capability within the business to ensure business

management are empowered, and enabled, to meet their risk management obligations.

• Lead risk assessments to help the business manage their technology, cyber and operational risk


• Provide line management to assigned direct reports to include regular reviews, team development and

associated administrative tasks.


Knowledge, Skills and Experience:

• Experience in a similar risk, compliance monitoring or audit role preferred, and experience or

qualification in cyber risk, technology or service delivery is advantageous.

• Strong relationship building and maintenance skills, with the ability to gain buy-in, trust and understanding, as well as being able to influence and negotiate.

• Experience of communicating various issues to internal and external stakeholders in a clear and concise manner.

• Strong knowledge and proven ability in Operational Risk Management activities and techniques.

• Self-starter, able to work on own initiative and without direction.

• Confident in facilitating risk based reviews involving both internal and external stakeholders.

• Able to present risk based management reports to management and external stakeholders.

• Relevant risk, finance or audit qualification CIMA/ACCA/MIIA/FCA/ or professional membership IRM,

MBCI (desirable)

• Previous experience in an IT Auditor capacity


This is a permanent position, with opportunities to develop and take on direct reports once settled into the role.

You will have a mixture of working from home and being in the office (2 days a week), post COVID. 

  • Start: 20/04/2021
  • Rate: £50000 to £60000 per annum Benefits: Car allowance, Health
  • Location: Midlands,England
  • Type: Permanent
  • Industry: IT
  • Recruiter: BPM Tech Limited
  • Contact: James Symonds
  • Tel: 01484 717739
  • Email: to view click here
  • Reference: V-36258-1
  • Posted: 2021-04-20 09:45:44 -

  • View all Jobs from BPM Tech Limited