Head of IT Risk - Edinburgh, United Kingdom - Phoenix Group

Phoenix Group
Phoenix Group
Verified Company
Edinburgh, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Job Title, Grade:
Head of IT Risk & Assurance, Senior Leadership


Job Type:
Permanent


Location:

This role could be based in either our Edinburgh or Wythall offices with time spent working in the office and at home.

There will be a limited degree of UK travel to supplier sites and there may also be very occasional international travel.


Flexible working:
All of our roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process.


Closing Date:14/12/23


Salary and benefits:
bonus, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more


We have an incredible opportunity to join us here at Phoenix Group as Head of IT Risk & Assurance to join our growing business.


Who are we?
We want to be the best place that any of our 6,800 colleagues have ever worked.
We're the UK's largest long-term savings and retirement business.

We offer our 12 million customers products across our market-leading brands, including Standard Life, SunLife and ReAssure, with c.£259 billion of assets under administration.

We're a FTSE 100 organisation that is tackling key issues such as transitioning our portfolio to net zero by 2050, and we're not done yet.


The Role:


This is a key leadership role with accountability for ensuring effective risk management and assurance across all aspects of Group IT Service Provision.

Reporting to the IT Performance & Commercial Director, the role holder will be the principle champion for effective risk management across the function delivering a governance framework, processes, and culture that embeds and embodies industry best practice.


Key Responsibilities:


  • Lead the annual review and evolution of the Group IT Policy, including definition of key IT risks and key controls designed to effectively demonstrate operation of the IT Policy within risk appetite levels. Ensure the Policy is kept current and reflects appropriately the changing needs of the Group, Regulatory obligations, and general IT risk environment.
  • Effectively manage the quarterly control attestation process across Group IT and all federated IT functions across Phoenix, ensuring that all assessments and associated evidence is appropriate and fit for purpose. In doing so provide assurance that all IT functions across the Group are compliant with Policy standards, demonstrating compliance with regulatory accountabilities.
  • Lead on defining and reporting of all technology owned operational risks and mitigating actions, ensuring appropriate challenge, validation, coverage, and judgement is applied across Group IT.
  • Act as primary technology interface with all assurance activity across Line 1a, Line 2, Line 3 and External Auditors. Ensure an agreed annual assurance and audit plan is in place, influencing the focus where necessary, and that all activity is effectively sponsored, managed and resourced.
  • Support IT Senior Leaders in external accreditation activity and ensure appropriate adherence to Risk Management best practice, policies, and standards across 3rd party suppliers.
  • Organise and chair all key IT Risk leadership meetings, ensuring appropriate coverage across the Group and effective consideration of emerging risks. Ensure robust processes, governance, and tooling is in place across all aspects of Group IT Risk Management.
  • Primary and initial point of contact for any project or adhoc IT risk management activity. Adopt innovative approaches to resolve challenges and drive continuous improvement in IT Risk Management. Demonstrate positive leadership behaviours in line with Phoenix values more generally across Group IT as a key and influential member of the IT Extended Leadership Team. Lead and develop a small but highly effective and high performing team of IT risk professionals in support of delivery of key accountabilities.
-
What are we looking for?

  • A passion for and extensive experience of Risk Management
  • Strong stakeholder management and an influential and impactful leadership approach
  • Experience of IT Operations & Technology Change with the ability to think strategically, balancing risk and reward. Broad awareness of IT risk and associated control frameworks and methodologies

We want to hire the whole version of you.
We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds.

If your experience looks different from what we've advertised and you believe that you can bring value to the role, we'd love to hear from you.


If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.

Find out more about #LifeAtPhoenix #GJ-1
More jobs from Phoenix Group
See all jobs of Phoenix Group