Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the Bank's IT risk strategy and ensure compliance with regulations.
- Company: A leading financial institution focused on risk management and security.
- Benefits: Competitive salary, career growth, and a dynamic work environment.
- Why this job: Make a significant impact on the Bank's cybersecurity and risk governance.
- Qualifications: Degree in IT or Computer Science, with extensive experience in IT risk management.
- Other info: Join a collaborative team dedicated to safeguarding data and enhancing security culture.
The predicted salary is between 43200 - 72000 £ per year.
The Risk Management department is responsible for developing, maintaining and promoting the Bank’s Enterprise Risk Management Framework (ERMF) and activities, and for providing independent second line of defence (2LoD) oversight for Traded Market Risk, IRRBB & FX Risk, Operational Risk and Model Risk, Climate Risk and Strategic Risk management activities in the Bank.
As a Vice President - Information Technology Risk and Control, you will be responsible for leading the Bank’s information security and technology risk strategy, ensuring robust governance and PRA/FCA compliance across all business lines. You will safeguard the confidentiality, integrity, and availability of the Bank’s data by implementing technical and organisational controls to mitigate internal and external cyber threats. This is a full-time permanent role.
Key responsibilities:
- Develop and maintain an IT Risk Management Strategy that aligns with Head Office standards, local Enterprise Risk Management Frameworks (ERMF) and unique risk profiles of the Bank’s branches and subsidiaries.
- Act as the primary point of contact for the PRA, FCA, and auditors regarding all IT risk, cybersecurity and infrastructure matters.
- Provide robust challenge and quality assurance for IT risk areas, including tracking and evidencing remediation plans within the Risk and Control Self Assessment (RCSA).
- Own and embed local IT risk policies and control standards across all technology functions and business lines.
- Monitor the threat landscape and ensure regular risk assessments are conducted across infrastructure, applications and cloud environments.
- Present material risk updates and control effectiveness to the Operational Risk & Resiliency Committee (ORRC) and Executive Management.
- Define and maintain IT-related Service Level Agreements (SLAs) and governance accountabilities between the Bank’s UK entity, Head Office, and external providers.
- Foster a high-standard security awareness culture and support the CRO in the holistic oversight of Bank-wide technology risks.
Requirements:
- Degree educated in Information Technology, Computer Science or relevant subject.
- Relevant certifications.
- Proven track record of engagement with regulators (PRA & FCA), including reviews, thematic audits and/or remediation programmes.
- Extensive experience in IT risk management, information security and technology governance in regulated financial institutions, preferably in a Banking environment.
- Proven experience in development and implementation of IT Risk Management framework and policies, governance structures and control standards to be aligned with industry frameworks, such as ISO27001.
- Experience in facilitating cross-border collaboration within a branch and subsidiary operating model, ensuring seamless coordination with Head Office on all technology and information security risk initiatives.
- Proven skills in translating technical risks into business impact and presenting risk insights to the Boards and Executive Committees.
- Excellent communication, presentation and negotiation skills with the ability to influence senior stakeholders.
- Attention to detail.
- Highly organised.
Vice President – Information Technology Risk and Control in London employer: Bank of China
Contact Detail:
Bank of China Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Vice President – Information Technology Risk and Control in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who work in risk management or IT. A friendly chat can lead to insider info about job openings and even referrals.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of the PRA and FCA regulations. Show that you’re not just familiar with the requirements but also passionate about compliance and risk management.
✨Tip Number 3
Don’t underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express your appreciation and reiterate your interest in the role. It keeps you fresh in their minds.
✨Tip Number 4
Apply through our website! We’ve got a streamlined process that makes it easy for you to showcase your skills and experience. Plus, it shows you’re genuinely interested in joining our team.
We think you need these skills to ace Vice President – Information Technology Risk and Control in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the role of Vice President – Information Technology Risk and Control. Highlight your experience in IT risk management and any relevant certifications. We want to see how your background aligns with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Share specific examples of your past achievements in IT risk and governance that relate to the job description. We love a good story!
Showcase Your Communication Skills: Since this role involves presenting risk insights to senior stakeholders, make sure your application reflects your excellent communication skills. Use clear and concise language, and don’t shy away from showcasing your ability to influence and negotiate.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Bank of China
✨Know Your Risk Management Frameworks
Familiarise yourself with the Bank’s Enterprise Risk Management Framework (ERMF) and how it aligns with industry standards like ISO27001. Be ready to discuss how you would develop and maintain an IT Risk Management Strategy that fits within these frameworks.
✨Engage with Regulators
Prepare to talk about your experience with regulators like the PRA and FCA. Highlight specific instances where you've engaged in reviews or audits, and be ready to discuss how you managed remediation programmes effectively.
✨Showcase Your Communication Skills
Since you'll need to present risk insights to senior stakeholders, practice articulating complex technical risks in a way that's easy to understand. Use examples from your past roles to demonstrate your ability to influence and negotiate with executive management.
✨Stay Updated on Cyber Threats
Research current trends in cyber threats and be prepared to discuss how you would monitor the threat landscape. Bring examples of risk assessments you've conducted in previous roles, especially in cloud environments, to show your proactive approach to safeguarding data.
