- Managing IT Risk & Controls environment including related policies, standards and processes
- Implementing the IT Risk and Control framework within 1st line Technology
- Work closely with all areas to ensure clear visibility of Risk with all IT staff
- Enact the department's strategy and roadmap
- Ensure strong relationship is built with both 2nd line (ORM) and 3rd line (Audit)
- Be constantly aware of costs and ensure that opportunities to optimise them are applied
- Ensure Risk and Control reporting internationally is accurate and timely
- Work with 2nd line to populate the risk system accurately for IT
- Ensure FFIEC is thoroughly prepared for and managed
- Ensure that all security regulatory requirements are fully complied with across EMEA IT, including SOX and that internal IT assessments and appropriate defences and controls are in place to deal with all cyber risks.
- Lead the audit process for technology, working closely with all areas, especially the Infrastructure team for alignment of controls
- Manage the risk portfolio to include linking risk to controls, acceptance of risk and managing remediation plans; conducting control testing when appropriate.
- Manage the end to end Security by Design process
- Manage the annual (and ad-hoc) risk assessments
- Manage regulatory change monitoring and impact assessments
- Manage the EUC framework including central register, annual attestation, control testing and reporting
- Manage reporting requirements for Technology and executive committees
- Structured and logical approach
- Attention to detail
- Self- motivated
- Ability to work accurately under demanding timescales
-
Cyber Security Risk Manager
6 days ago
Akkodis London, United Kingdom**Role**:Cyber Security Risk Manager · **Salary**:£55k to £72k (negotiable) · **Location**:Birmingham or London · Monday & Friday work from home - Tuesday, Wednesday & Thursday on site · **Benefits**:Disc Bonus, Private Healthcare, 30 days holidays, 8% Contributory Pension · **Re ...
-
Cyber Security Risk Lead
3 days ago
Parliamentary Digital Service London, United KingdomEmployer 1 · - Parliamentary Digital Service · Directorate 1 · - Cyber Security · Band / Grade 1 · - B1 · Salary 1 · - £41,340 - £47,975 · Contract Type 1 · - Permanent · Location 1 · - Hybrid (on-site and remote) · Security Level 1 · - Security Check (SC) · Interview Format 1 · ...
-
Traded Risk of Securities Financing
6 days ago
HSBC London, United KingdomOur Global Risk function, led by the Group Chief Risk Officer, oversees a comprehensive risk management framework that is applied throughout the Group. We focus on creating an environment that encourages our people to speak up and do the right thing. This responsibility includes ...
-
Information Security Risk Manager
6 days ago
Experis LTD London, United Kingdom**Information Security Risk Manager** · **Location: City of London** · **Salary: £80,000** · An exciting opportunity for an **Information Security Risk Manager** to join one of our clients, who are a multinational reinsurance company and number one in their space You will be resp ...
-
Security and Information Risk Advisor
1 day ago
McKinsey & Company London, United Kingdom**Who You'll Work With**: · - You'll work with and support our Client Services Teams in our UK offices. You will come from a public sector and/or defense background with experience in relevant areas such as Security Policy Framework (SPF), Government Functional Standard 007 (Secu ...
-
Citi London, United Kingdom**Responsibilities** · Reporting into the Head of Enterprise Technology and Cyber Risk (ETCR), the Enterprise Technology & Cyber Risk - Operations Lead will have oversight responsibility for a significant portfolio of the Enterprise Operations & Technology (EO&T) organization. Th ...
-
Bupa London, United Kingdom**Head of Information Security Risk** · **London / Manchester** · **Flexible / Hybrid working available** · **Permanent** · Here you'll be welcomed. We champion diversity and we understand the importance of our people representing the communities and customers we serve. You'll fi ...
-
Bank of China London, United KingdomGeneral Administration department strategy is to deliver excellent general administrative services to the whole bank covering different functions including project management, facilities, logistic and events, admin and central filing, systems, commercial property and security ope ...
-
Junior Cyber Security Risk Associate
1 day ago
Department for Business and Trade London, United Kingdom**Details**: · **Reference number**: · **Salary**: · - £25,661 - £32,500- £25,661 to £32,500 - London: £29,282 to £32,500/National: £25,661 - £28,617 (including allowance)- A Civil Service Pension with an average employer contribution of 27%**Job grade**: · - Executive Officer**C ...
-
UBS London, United KingdomUnited Kingdom · - Information Technology (IT) · - Group Functions · **Job Reference #** · BR · **City** · - London · **Job Type** · - Full Time · **Your role** · - Do you have a strong technical background and experience working within the web and cloud security team? If so, we' ...
-
Cyber and Information Security Risk Officer
3 days ago
UBS London, United KingdomUnited Kingdom · - Information Technology (IT) · - Group Functions · **Job Reference #** · BR · **City** · - London · **Job Type** · - Full Time · **Your role** · - Partnering both within CISO, Technology Services and with other stakeholders across the firm to ensure on-track rem ...
-
Security Governance, Risk and Reporting Lead
1 week ago
IAG GBS London, United KingdomFull-time · - Directorate: IAG Tech · - Contract Type: Permanent · **Company Description**: · **About IAG Tech** · IAG Tech is a community of IT and digital professionals from across the International Airlines Group (IAG). We drive the technology behind some of the biggest and mo ...
-
UBS London, United KingdomUnited Kingdom · - Information Technology (IT) · - Group Functions · **Job Reference #** · BR · **City** · - London · **Job Type** · - Full Time · **Your role** · - We're looking for Cyber & Information security professional to: · - perform risk assessments and control access to ...
-
NHS England London, United KingdomTo support the delivery of its duties and responsibilities, the NHS England Board established a Cyber Security and Risk Committee, as a sub-committee of the Audit and Risk Assurance Committee (ARAC), which forms a core part of NHSE's internal control and risk management system, p ...
-
eFinancialCareers London, United Kingdom**Organization Overview**: · Citi Markets Operations is currently at a pivotal point in its evolution and journey to implement a target operating model. We take pride and are passionate about our People and our culture. We are invested in our People and their development. We are ...
-
Security Risk
5 days ago
Meta London, United KingdomMeta's Integrity, Security, Support & Operations Global Risk and Compliance (ISSO GRC) serves as the primary hub for risk management and compliance across the company, providing support to Meta and its family of apps. Within ISSO GRC, the European Security Office (ESO) is specifi ...
-
Security Risk Assessor
1 day ago
Willis Towers Watson Reigate, United KingdomSecurity Risk Assessor · - Reigate, GB · May 12, 2023 · We are looking for a Cyber Risk Assurer to support the Technology division of the Insurance Consultancy and Technology (ICT) business unit in managing cyber security risk, particularly in its expanding SaaS portfolio. You wi ...
-
Security Risk Manager
6 days ago
Locke and McCloud Greater London, United KingdomJob Description · Security Risk Manager – London hybrid - £60,000 - £80,000 + Benefits · Locke & McCloud are looking for an experienced Security Risk professional to join our clients growing Cyber Security function. Our client is looking for candidates who have a proven track re ...
-
Security Risk Consultant
6 days ago
enteles Search London, United KingdomJob Description · This position is tailored for individuals at the early to mid-level of their career, ideally with 2 to 3 years of experience in security risk consulting. Candidates beyond this experience level may not be suitable for the role. · As a Risk Consultant your primar ...
-
Security Risk Manager
1 week ago
Locke and McCloud Greater London, United KingdomSecurity Risk Manager – London hybrid - £60,000 - £80,000 + Benefits · Locke & McCloud are looking for an experienced Security Risk professional to join our clients growing Cyber Security function. Our client is looking for candidates who have a proven track record in managing s ...
Assistant Vice President, Head of Risk and Control- IT Risk, Security - London, United Kingdom - MUFG
Description
Do you want your voice heard and your actions to count?
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 7th largest financial group in the world. Across the globe, we're 160,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
Overview of the Department/Section:
Mitsubishi UFJ Financial Group (MUFG) is one of the world's leading financial groups. Headquartered in Tokyo and with approximately 350 years of history, MUFG has a global network with 1,100 offices in over 40 countries. The Group has over 140,000 employees, offering services including corporate banking, commercial banking, retail banking, wealth management, investment banking, capital markets, personal and corporate trust, and transaction banking.
The Group's operating companies include Bank of Tokyo-Mitsubishi UFJ, Mitsubishi UFJ Trust and Banking Corporation (Japan's leading trust bank), and Mitsubishi UFJ Securities Holdings Co., Ltd., one of Japan's largest securities firms.
MUFG conducts securities business internationally through its overseas subsidiaries MUFG Securities EMEA plc, MUFG Securities Americas Inc., MUFG Securities Asia Limited. and MUFG Securities Asia (Singapore) Limited. With each member of the group working in partnership with one another, MUFG provides best in class service and products to corporate and institutional clients.
MUFG Securities EMEA plc is the European hub of MUFG's securities business. Headquartered in London we have just over 600 employees and are active throughout the international capital markets, focusing on debt, equity, derivatives and structured products. Due to the diverse nature of our business we require a clear unifying vision for all of our people. It is this vision and our corporate values that reflect who we are and guide how we behave. We therefore strive to recruit individuals who share our vision and values, and who have the motivation and commitment to help us move our business forward.
Main purpose of the role :
To ensure effective management of technology risks and controls, liaising with all Technology departments and some business functions within the MUS international business and MUFG group as necessary.
Strong organisational skills are required as this role will cover a variety of IT process assurance and produce monthly reports to the senior management.
Key responsibilities:
In this role, you will be responsible for IT Risk, Controls and Secury by Design across MUFG's banking arm and Securities business under a dual-hat arrangement. Under this arrangement, you will act and make decisions on behalf of both the bank and the securities business, subject to the same remit and level of authority, and irrespective of the entity which employs you:
Skills and experience:
Strong technical background with years' experience in risk and control management with proven IT controls, and/or IT risks and/or IT governance skills.
Certified CRISC / CISA / CISM / CISSP or other relevant qualifications.
Knowledge of cyber security controls and tooling desirable.
Ability to make sense of complex situations and rapidly prioritise issues to take effective decisions in a commercial manner.
Ability to manage multiple tasks to tight deadlines without sacrificing quality.
Ability to build relationships with stakeholders at all levels.
Ability to communicate complex information to a variety of audiences.
Ability to work on own without direction.
Has strong planning, communication (both written and oral) and presentation skills.
Able to work in a cross-cultural and cross-functional environment.
Personal requirements:
We are open to considering flexible working requests in line with organisational requirements.
MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.
We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.
Assistant Vice President, Head of Risk and Control- IT Risk, Security professionals in London
-
Sarah-Jayne Flowers
Self-Motivated, Target & Goal Oriented at Heart! · ______________________ · • Self-motivated • Ambi ...
-
Pavlinka Taseva
Finance Officer
-
Michael Clayworth
Senior Financial Controller and Finance Lead
-
Abraham Buitrago Arenas
Lecturer and/or researcher
-
Daniel Herring
Research Manager | Data and Policy Analyst
-
Angelo Teall
Maintenance manager