I am a Job Seeker looking for work

Signup with our easy to use form and keep us up to date with your details so we can find the right job for you

Register now →

I am an Employer looking for talent

Let us know your exact requirements and we will find you a perfect candidate for your role

Get in contact ↓

Search our job database


IT Risk Specialist (O910103)

Douglas, Isle of Man

Assurance & Insurance

£40000 - £45000 per annum

Full time / Permanent

Add to shortlist + Remove from shortlist

Job description


Our leading Douglas-based Finance Sector Client is expanding its Technology, Operations and Financial Risk Team as they progress an ambitious transformation programme. They are now seeking an IT Risk Specialist to join and play a leading role.

Role Profile

This is an important role at the heart of our Client's Risk Strategy because it is fundamental to providing constructive oversight, challenge and support to the approach to how their Group IT operations and strategic change projects are directed and controlled. This includes the Group IT strategy and decision making, how it achieves its aims, and ensuring that all activities undertaken are within risk appetite and comply with legal, ethical and regulatory requirements, and protected from internal and external risk as far as possible.

Strategic Projects & Change Management

  • Provides strategic and tactical direction and consultation on IT risks and compliance for key strategic projects
  • Constructively oversee, challenge and validate risk assessments, providing Line 2 opinion to key governance bodies

Governance Arrangements (Policies, Procedures and Standards)

  • Develops processes and procedures for overseeing, challenging and validating IT risk governance, including control effectiveness reviews, Line 1's self-assessment preparation and findings, helping Line 1 control owners with remediation plan development, tracking findings through remediation, progress monitoring, reporting, and escalation
  • Recommends changes and improvements to IT risk and policies and procedures
  • Reviews, challenges and validates Line 1 IT Risk Policy compliance assessments

Risk Governance (Identification, Assessment, Management, Monitoring, Reporting)

  • Works collaboratively with other teams to facilitate up-to-date IT risk analysis and risk management processes and to identify threats, vulnerabilities and acceptable levels of residual risk. This includes emerging risks with due consideration of external events and case studies
  • Participates in the development, embedding and maintenance of our Risk Framework
  • Reviews Line 1 risk and control self-assessments (RCSAs), analyses the effectiveness of IT risk control activities from a Line 2 perspective, and reports on them with practical and commercial recommendations that ultimately protect the infrastructure and information assets of the Group
  • Evaluates IT risks and identifies and defines compliance strategies in accordance with policies and standards
  • Provides advice and training to support Line 1 with managing risks associated with critical issues/incidents that may affect customer, or information security objectives
  • Where required provides Line 2 review, challenge and insight into new security products or as part of a security risk assessment process
  • Assist with or oversee the identification of suitable risk management solutions (GRC), risk management information (i.e. dashboard) and automation of risk processes

Team and Culture

  • Take personal responsibility for agreeing clear objectives which reflect and support the delivery of the business plan
  • Take personal responsibility for the identification and implementation of a personal development plan of training needs
  • Proactively monitor and manage own performance through regular reviews / appraisals with Line Manager
  • Personally support the Group Risk Director to implement the Group-wide Risk Target Operating Model
  • Flexibility and support other members of the team as required - lives and breathes, believes in and supports team culture, displays behaviours and values
  • Demonstrate a full understanding of the fair treatment of customers and be risk aware
  • Mentor and develop team to reach full potential

Person Profile

  • Degree in Computer Science or related field
  • CISSP, CISM, CISA or CRIS certification, or equivalent work experience
  • In depth knowledge and experience of IT related risks, IT risk change, techniques and implications across platforms
  • Broad commercial experience with experience in the financial services sector preferable, operating in a multijurisdictional environment
  • Experience of working in a business going through continuous upgrading, change and growth
  • Understanding of market knowledge and regulations/legislation within industry and expert on IT risk governance, risk management and risk response
  • Demonstrable track record of working with Audit, Risk, Change and IT teams

Personal Strength

  • Problem Solving Analyses situations, identifies solutions and present complex problems in a clear manner
  • Influencing Develops sustainable relationships and partnerships, persuasive, articulates information well, challenges ideas constructively and insightfully, deals with stakeholders with humility and respect - a trusted advisor and credible subject matter expert
  • Adaptable Enjoys new challenges, embraces change, resolves conflict, flexible support to the wider team
  • Results Driven Organises resources, establishes priorities, puts planning and governance structures in place, establishes risks, well developed self-planning and organisation skills including ability to work interdependently, prioritise activities, meet commitments, and proactively manage time and workload
  • Reliable - Delivers on commitments and upholds standards and principles
  • Leadership - Mentors and coaches other team members to develop and reach their potential
  • Team work - comfortable in a team environment, with strong group dynamics awareness and collaboration skills, combined with the ability and willingness to communicate with a wide variety of individuals and differing functional accountabilities
  • Independence - the ability to conduct the role independently and with integrity and to exercise professional judgement

Apply for this job

Required fields




Recommended fields

Choose a CV from your account

  • No resume attached

Maximum filesize 10mb. Allowed file types: .pdf,.doc,.docx,.wpf,.xls,.txt

Required field