SENIOR RISK AND RESILIENCE MANAGER | ref.MF80
An interesting new job has arisen with our client to join them as Senior Risk and Resilience Manager.
KEY RESPONSIBILITIES INCLUDE:
To represent the department at internal and external working groups in response to proposed legislation as necessary.
Manage the implementation of any updates or changes to Group risk policies.
Report to the relevant Group Company Boards on risk items at the quarterly Board meetings as and when necessary.
Liaise with Group Internal Audit and any External Auditors, assisting in the smooth execution of audit processes including the initial agreement of audit Terms of reference.
Work with and monitor the Group Companies clearance of audit actions within agreed timeframes.
Provide education and training to staff to strengthen risk awareness and to maintain a healthy risk-based culture.
To establish and chair the Group Resilience forum (combining business resilience and information security monitoring and reporting), reporting into the Group Risk Committee.
Identify all business risks (including financial crime risk) in conjunction with the businesses and manage and monitor these risks in line with the Group’s Risk Appetite statement.
To ensure that the effective operation of risk management can be evidenced and provide confidence of appropriate risk management of all the Group Companies to internal and external stakeholders.
Assess, in conjunction with the Group Companies, any implementation changes in the regulatory environment and resultant impact on the business.
Provide independent detailed, ongoing reviews and comprehensive maintenance of KPIs, Risk & Control Self Assessments and Dashboards.
Perform deep dive risk reviews as required by the relevant businesses from time to time.
Establish and mature an operational risk framework across the group, in addition to the Enterprise Risk Management (ERM) framework.
RESILIENCE - BUSINESS CONTINUITY
To co-ordinate crisis management team meetings and provide administration where required.
Establish a Group wide Business Resilience framework.
Enable consistency of business continuity plans (BCP’s) across the Group and ensure regulatory standards of compliance for BCP’s are met.
Co-ordinate business continuity plan testing.
Develop the ISMS and internal infrastructure to ensure information is handled securely, efficiently, and transparently.
Assist in establishing a comprehensive framework of procedures and best practices for handling information that will help achieve regulatory compliance, legal transparency, and operational efficiency across the Group.
Develop a more efficient and streamlined policies of best practices for operational processes and controls that successfully mitigate any information security risks and ensure compliance with ISO27001 standard.
Work with the managed security operations centre to help identify and manage threats and vulnerabilities to the information systems and assets.
Monitor and challenge the Information Security program, enabling accreditation and compliance with mandatory requirements and reporting standards.
Oversee and coordinate the investigative and reporting actions of all actual and suspected incidents of security significance.
Prepare and deliver basic information security training, education, and awareness to the rest of the Group.
SKILLS AND EXPERIENCE:
Professional qualification in Risk Management, and/or experience in a similar role.
Analytical, problem solving and solution focuses approach.
Commerciality and knowledge of business operations.
Demonstrated ability to work with multiple, competing deadlines, with excellent attention to detail.
Ability to communicate with all levels of business leadership and staff and experience with continuous improvement cycles and analytical methodology.
To discuss this role further or to apply, email your CV to email@example.com. You can call us on 01624 698900 quoting reference MF80.