Technology Risk & Controls Manager, 1st Line Controls

Join us as a Technology Risk & Controls Manager in a 1st Line Controls function.

• You’ll be a subject matter expert to our Technology stakeholders, in execution of our Enterprise Wide Risk Management Framework, guiding them and influencing them in key risk and control design decisions, in order to help them effectively manage their technology related risks and controls.
• You’ll enjoy a varied, fast-paced work environment, and you’ll gain valuable experience from a wide range of stakeholders across the organisation.

What you\’ll do

As a Technology Risk & Controls Manager, 1st Line Controls, you’ll collaborate with a variety of technology stakeholders, supporting them with understanding and managing their risks and controls, and applying effective risk management decisions.

You’ll be a trusted advisor to our Technology stakeholders, guiding them on managing day-to-day risks, controls, and remediation plans to ensure compliance with our risk framework. This involves collaborating with Business Controls Partners, franchises, and functions to understand the impact of risk materialization or control weaknesses. You’ll also engage with specialist technology stakeholders across NatWest Group, including second and third line of defence, and other relevant parties.

You’ll support risk framework execution as a Technology Risk and Control Subject Matter Expert, including Risk and Controls Assessments, Control Design and Articulation, and Risk Policy Compliance, particularly related to technology risks. You’ll work closely with the Control Testing team, Franchise & Function Control teams, and second line Risk.

Additionally, you’ll:

• Manage stakeholder relationships and support them in managing their risk, control, and issues profiles.
• Produce governance and risk committee packs, analyze MI, and challenge risk appetite related to technology disruption, information security, operational resilience, change, and external outsourcing.
• Guide stakeholders on risk framework aspects such as identifying key controls, articulating controls, drafting remediation plans, and linking controls and issues to business risks. Support them with control testing failures identified by the Control Testing teams.
• Identify opportunities to simplify or automate controls, reducing operational costs.
• Monitor stakeholder compliance with risk standards, SOX testing, and other regulatory requirements like external outsourcing and cloud usage.
• Assist stakeholders in designing cost-effective, automated controls environments that meet regulatory and policy standards.

The skills you\’ll need

Understanding of financial crime or digital channels is essential for informed risk discussions. Knowledge of 1st line risk frameworks, IT General Controls, external outsourcing risks, and industry standards such as COBIT, CRISC, and SOX is crucial.

We seek a highly skilled individual with a proven track record of delivering high-quality outcomes and applying technology, risk, and control assessments in operational and strategic contexts.

You’ll also have:

• Extensive experience in 1st line risk management or audit.
• Knowledge of control testing frameworks to support and guide stakeholders.
• Ability to adapt quickly in a dynamic environment with shifting priorities.
• Problem-solving skills for complex issues.
• Strong communication skills to convey complex ideas to senior or challenging stakeholders.
• Capability to produce high-quality deliverables and risk committee packs.

#J-18808-Ljbffr