Vice President, Risk and Control - Digital Engineering in London

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

• Accountable for defining, creating and governing the Digital Engineering Risk and Control strategy in accordance with the wider EMEA Technology IT Risk and Control vision and strategy and risk appetite.
• Accountable for defining the Digital Engineering Solutions and Services risk appetite and framework in accordance with the overall Technology departments risk appetite and tolerance framework, managing the departments operational, regulatory and financial risk.
• Define and evolve the Digital Engineering Services and Solutions Key Risk Indicators' and Controls and govern accordingly.
• Present the department's risk landscape, providing proactive oversight and prioritisation to ensure timely closure of issues.
• Run the departments Risk/Control/ Audit monthly forum committee presenting high quality risk reports and insights to Head of Digital Engineering Services and Solutions and the Extended Leadership Team.
• Responsible for providing visibility of the Extended Leaderships Teams EOL roadmap, the departments position and Product Owners remediation plan and progress.
• Primary contact for all risk, control and audit issues across all Digital Engineering Solutions and Services teams.
• Provide assurance over the department's controls design and effectiveness, ensuring controls are proportionate and embedded in day‐to‐day department activity.
• Provide proactive assurance around risk management through appropriate data driven monitoring and through the implementation of structured sampling techniques to validate that controls are functioning as intended before failure.
• Educate and lead the Digital Engineering Staff defining best practice operations and governance in line with industry and company standards.
• Work in partnership with the Digital Engineering Solutions and Services Product and Platform owners, challenging and advising on risk management for new products, processes and change programmes.
• Drive and adhere to strategic direction of accountable pillars, while supporting the rest of the department.
• Responsible for managing Issue Management on behalf of Digital Engineering Services and Solutions department.
• Handle potential sensitive information relating to Cyber Security events and assessments on behalf of Digital Engineering Services and Solutions.
• Work across all areas of the Digital Engineering Services and Solutions department to ensure the Digital Engineering Control & Governance team provides necessary support services, oversight function and governance capabilities to all other extended leadership teams and stakeholders.
• Responsible for building strong relationships across the Bank and Securities functions, underpinned by trust and the core values of the bank.
• A senior role, that plays a pivotal part in strengthening a proactive, inclusive risk culture leading with example of the right leadership, culture and behaviours that are required in the bank.

• Support development of team with a strong focus on building future capabilities.
• Lead and champion MUFG's inclusive, diverse, and values-led culture while fostering a growth mindset to embrace new technologies, industry advancements, and innovative use cases.
• Ensure appropriate risk awareness training is in place across the department to fulfil current and future requirements.
• Lead and promote a dynamic, delivery driven culture that works alongside business units to provide responsive resolutions and value driven solutions.
• Build and nurture strong relationships with internal and external stakeholders, including business teams, to promote collaboration, understand industry's best practices, and influence positive change across the organization.

• Extensive experience leading and managing risk and control and teams across multiple regions within a regulated environment.
• Extensive proficiency in scenario analysis and developing mitigation strategies.
• Experience representing risk and control on behalf of a large Technology department to an Executive level audience.
• A strong track record of engaging credibly with Executives providing confident challenge and clear, decision‐ready insight.
• Experience of working alongside network, server, database, desktop; asset management and storage functions.
• Experienced in dealing with vendors and third-party suppliers.
• Strong track record of managing teams and building effective partnerships with peers.
• Experience with comprehensive disaster recovery architecture and operations, including storage area network and redundant, highly available server and network architectures.
• Experience with regulatory compliance issues as they apply to Infrastructure.

• Extensive experience leading a risk & control function in a financial services organisation.
• Extensive experience working with Risk Management tools e.g Open Pages.
• Understanding of the COBIT, NIST 2 framework.
• Extensive experience leading internal audit and external audit bodies.
• Proven track record of managing risk related issues for large departments, through the lifecycle of creation, reporting and remediation.
• Experience with industry-specific regulatory requirements and their impact on operational risk.
• In-depth understanding of compliance obligations related to AML, data privacy, cybersecurity, and FCA regulations.
• Excellent knowledge of regulations such as SOX and external assessments such as CBEST.
• Extensive prior experience working within Infrastructure environment and high-level understanding of the environment, platforms and technology.
• Solid Understanding of threat & vulnerability management processes and technologies.
• Extensive exposure of Incident Management and Problem management and root cause analysis.
• Proven ability to communicate effectively with Senior Management providing governance oversight.
• Ability to balance strategic goals with practical risk management solutions.
• Prior experience of managing people and leading a Risk and Control team with line management responsibilities.

• Knowledge of authentication services technology.

• ITIL Expert.
• CRISC.
• CISA / CISM.
• Educated to a degree level or equivalent.

• FRM.
• PRM.
• CFA.
• MBA.
• Prince 2 Foundation.

• Excellent communication skills with strong leadership and people management skills to manage a team of technical specialists, inspiring trust and motivation.
• Ability to manage constructive conflict effectively.
• Ability to build strong and lasting relationships across the bank.
• Results driven, with a strong sense of accountability, focused on business outcomes.
• Strong decision-making skills, the ability to demonstrate sound judgement.
• A structured and logical approach to work.
• A creative and innovative approach to work.
• Excellent interpersonal skills.
• The ability to manage large workloads and tight deadlines.
• Excellent attention to detail and accuracy.
• A calm approach, with the ability to perform well in a pressurised environment.
• A confident approach, with the ability to provide clear direction to your team.
• Ability to lead a high performing team.
• A strategic approach, with the ability to lead and motivate your team.
• Conscientious, methodical and logical approach to work.

We are open to considering flexible working requests in line with organisational requirements.