Technology Governance Lead in London

Reporting to the Technology Governance Manager within the Data & Technology Risk Assurance Team, the Technology Governance Lead is responsible for developing and implementing an enhanced Data & Technology Governance framework covering all SMF24 areas including cybersecurity, information technology, business resilience and third‑party risk management. The Governance Lead works alongside the Technology Governance Manager to oversee Data & Technology risk governance initiatives, engaging with key stakeholders.

Responsibilities include designing and implementing governance processes, as well as overseeing and driving improvements to these processes through automation and tooling to ensure a single source of truth. This includes preparing reports for EUI and Technology Risk and Compliance Committees. The role requires close collaboration with Subject Matter Experts to achieve effective outcomes.

The successful candidate will be responsible for advancing the maturity of the Data & Technology Controls Framework, as well as overseeing the Policy and Standards suite. This individual will serve as the primary authority and advisor on matters relating to exceptions to standards. Duties also involve overseeing compliance activities, ensuring responses are validated, communicated, and documented accurately. The role provides specialized expertise and strategic guidance within the team and supports the Data & Technology department and business units as required across all SMF24 areas.

Main Duties

• Lead the ongoing development of and improvements to data, technology and resilience policies, standards, and controls.
• Monitor emerging legislation and regulatory requirements for SMF24 areas, providing impact assessments to EUI.
• Prepare reporting documentation for EUI and Technology Risk and Compliance Committees.
• Offer guidance on policies, standards, and controls as needed.
• Advise stakeholders on relevant matters.
• Design and implement effective governance processes and oversee improvements to these processes through automation and tooling, ensuring a single source of truth.
• Coach and mentor Technology and GRC Governance Analysts.
• Provide mentorship to users on governance processes.
• Embed governance processes throughout EUI.
• Make recommendations regarding exceptions and ensure associated risks are reported and tracked.
• Oversee responses to third‑party and regulatory questionnaires.
• Review attestations related to Data & Technology Group and EUI Policies.
• Ensure readiness for internal audits and supervise action tracking and reporting.

Key Skills, Qualifications and Experience

Essential:

• Subject matter expertise: Possess extensive knowledge of Data & Technology governance frameworks, earning recognition as an expert within the organisation. At least five years' experience is required in a Technology Governance, Risk, and Compliance position.
• Demonstrated ability to design and implement governance frameworks.
• Familiarity with widely accepted best practice frameworks such as COBIT, ISF, ITIL, and ISO.
• Proven experience in developing Data & Technology controls, policies, and standards.
• Initiative and proactivity: Make effective decisions independently, grounded in a thorough understanding of business challenges and issues.
• Communicate clearly and appropriately across all employee levels; capable of explaining technical topics to both technical and non‑technical audiences, and presenting governance advice, often in technical terms, directly to key customer stakeholders.
• Planning and organising: Apply clear, efficient, and logical strategies to address problems step by step. Able to collaborate effectively and work autonomously within a rapidly growing organisation.
• Customer focus: Understand customer priorities and demonstrate a commitment to meeting their expectations.

Desirable:

• Demonstrated experience operating within a regulated environment, particularly in the financial services sector.
• Possession of one or more pertinent qualifications, such as CISSP, CRISC, or CISM.

We take pride in being a diverse and inclusive business. It's a place where you can Be You, and show up as you are. We're committed to fostering a people‑first culture where everyone is accepted, supported, and empowered to be brilliant. You can Grow And Progress at a pace and direction that suits you, Make A Difference for our customers and each other, and Share in Our Future with all colleagues eligible for up to £3,600 of free shares each year after one year of service. Everyone receives 33 days holiday.