At a Glance
- Tasks: Manage IT risks, conduct assessments, and support governance activities.
- Company: Join a forward-thinking organisation focused on IT & Operations risk management.
- Benefits: Enjoy flexible working options and opportunities for professional development.
- Why this job: Be part of a dynamic team shaping risk strategies and making a real impact.
- Qualifications: 5+ years in IT risk management; relevant certifications are a plus.
- Other info: Engage with stakeholders at all levels and present to executives.
The predicted salary is between 43200 - 72000 £ per year.
The IT Risk Manager role serves as a best practice/quality contributor supporting the organisations’ IT & Ops Risk Management Programme. The individual will act as first line of defence providing RCG risk assessments and other risk management activities including risk identification, profiling, assessment, response, evaluation and advising on issues and remediations to support the overall IT & Ops organisation. This position supports the risk management activities in alignment with the Risk and Controls Governance framework.
Strategy and Transformation:
- Align with Group RCG target state program based on the planned roadmap including governance, risk management methodologies, technology enablement and automation, metrics, and reporting.
- Collaborate with the three lines of defence and other risk functions on behalf of IT & Operations to support, enable and align the Risk and Controls Governance strategy within the broader risk functions.
- Engage stakeholders at all levels across businesses and divisions to ensure effective communication and sufficient stakeholder input and buy-in.
- Help develop education, training, and awareness campaign materials regarding IT & Operations risks as well as critical communications to help provide clarity and adoption.
Operational Activities:
- Execute Risk and Controls Governance operational activities including: Risk profiling (inherent risk assessment), risk assessments for processes, applications, and infrastructure, risk and scenario analysis for IT & Operations risks, risk metrics and reporting.
- Document and develop materials for leadership to review issues identified through these activities.
- Help the business create, direct governance channels, and monitor execution of the risk response plans in alignment with methodology.
- Act as the point of contact to assist and respond to questions from key stakeholders and the business; manage required escalations and communication.
- Provide IT & Operational guidance and risk advisory support to key initiatives.
- Develop materials to provide regular updates to Executives on the overall health of the functional areas including preparing necessary information to facilitate management discussion and decision making.
- May prepare and present training materials using methods appropriate to the audience.
- Update management on the progress of owned tasks.
- Escalate issues as appropriate.
- Perform other duties as directed by the Performance & Governance Director, or CIO & Head of Transformation.
- May perform other duties as assigned.
Person requirements:
- Proven experience (5+ years desirable) with IT & Operations Governance and risk functions with a focus on identifying, assessing, and mitigating risks.
- IT Risk and Compliance, Audit, or Quality certifications desirable (e.g. CISSP, CISM, CISA, CIA, CRISC, CGEIT, CIAC, ISO, etc.).
- Ability to develop and maintain risk registers, control libraries, and compliance documentation.
- Strong analytical skills to assess complex risks and recommend appropriate risk mitigation strategies and controls.
- Experience in collaborating with cross-functional teams, including Operations, IT, security, compliance, and business units, to drive risk management initiatives.
- Strong interpersonal skills to support stakeholder communication and engagement across departments.
- Experience with technology process, risk and control frameworks.
- Excellent interpersonal, consultative and communication skills.
- Ability to interact effectively at all levels with clients, consultants, vendors, peers, and IT management and staff.
- At ease presenting to large audiences.
Information Technology Risk Manager employer: JSS Search
Contact Detail:
JSS Search Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Technology Risk Manager
✨Tip Number 1
Familiarise yourself with the latest IT risk management frameworks and methodologies. Understanding these will not only help you in interviews but also demonstrate your commitment to staying updated in the field.
✨Tip Number 2
Network with professionals in the IT risk management space. Attend industry events or webinars where you can meet potential colleagues and learn about their experiences, which could give you insights into what we value at StudySmarter.
✨Tip Number 3
Prepare to discuss specific examples of how you've identified and mitigated risks in previous roles. We appreciate candidates who can articulate their hands-on experience and the impact of their actions on organisational safety.
✨Tip Number 4
Showcase your ability to communicate complex risk concepts clearly. As an IT Risk Manager, you'll need to engage with stakeholders at all levels, so practice explaining technical details in a way that's easy for non-technical audiences to understand.
We think you need these skills to ace Information Technology Risk Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in IT risk management, governance, and compliance. Use keywords from the job description to demonstrate that you meet the specific requirements of the role.
Craft a Compelling Cover Letter: In your cover letter, explain why you are passionate about IT risk management and how your background aligns with the responsibilities outlined in the job description. Be sure to mention any relevant certifications and your experience with cross-functional teams.
Showcase Analytical Skills: Provide examples in your application that showcase your analytical skills, particularly in assessing complex risks and developing mitigation strategies. This could be through specific projects or initiatives you've led in previous roles.
Highlight Communication Abilities: Since the role requires strong interpersonal and communication skills, include instances where you've effectively communicated with stakeholders at various levels. Mention any experience presenting to large audiences or creating training materials.
How to prepare for a job interview at JSS Search
✨Understand the Risk Management Framework
Familiarise yourself with the Risk and Controls Governance framework that the company uses. Be prepared to discuss how your experience aligns with their methodologies and how you can contribute to their risk management initiatives.
✨Showcase Your Analytical Skills
Be ready to provide examples of how you've assessed complex risks in previous roles. Highlight specific strategies you've implemented for risk mitigation and how they benefited your past employers.
✨Engage Stakeholders Effectively
Demonstrate your ability to communicate and engage with stakeholders at all levels. Prepare to discuss how you've collaborated with cross-functional teams to drive risk management initiatives and ensure buy-in from various departments.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think of examples where you've had to respond to IT risks or compliance issues, and be ready to explain your thought process and actions taken.