Technology Controls Specialist Third Party Risk London

NatWest Group

Key Responsibilities

  • Drive and facilitate IT risk assessments across the bank, focusing on TPRM, Records Management, and Risk Culture through the effective application of technology risk framework.
  • Build and maintain relationships with stakeholders across Technology and Wealth business, ensuring management engagement with operational risk objectives.
  • Apply effective risk management thinking in an IT environment, anticipating and assessing potential impact of risk across the bank.
  • Supervise TPRM controls and external outsourcing risks and respective control environments.
  • Support critical outsourcing initiatives in the Wealth Chief Digital Information Office (WCDIO) from a risk and SME perspective.
  • Support management in identifying and assessing material risks, and determining position against risk appetite.
  • Supervise 3rd party assurance findings including risk assessment and remediation plans.
  • Support business service owners with assessment of 3rd party assurance reports (e.g., ISAE and SOC).
  • Act as first point of contact from a WCDIO risk perspective for supply chain management.
  • Manage an inventory of all critical suppliers to WCDIO to track risk and control status.
  • Pro-actively support external audits in WCDIO from a first-line IT risk perspective and put potential findings in risk context.
  • Own the external outsourcing risk reporting as part of the overall WCDIO risk reporting.
  • Support the development and delivery of programmes of work to ensure compliance with regulatory requirements.

Skills and Expertise

  • Experience of external outsourcing control environments.
  • Practical experience in risk management methodologies.
  • Good understanding of the application of operational risk in a technology environment, focusing on Third Party Risk Management and Records Management.
  • Experience in a risk or control technical role in the financial services industry.
  • Risk assessor accreditation under the technology risk framework.
  • Qualification in risk, audit, or control (or working towards).
  • Fundamental understanding and knowledge of TPRM risks and respective key controls.
  • Solid experience in IT risk management practices and frameworks.
  • Experience in IT auditing.
  • Experience in risk reporting.
  • Strong communication skills, able to communicate technical concepts to non-technical colleagues and stakeholders.

Related Jobs

Showing 1 - 4 of 38594 jobs

To apply for this job please visit jobs.natwestgroup.com.

Posting date:
11 January 2025
Hours:
Full time
Closing date:
10 February 2025
Location:
London, WC2R 0QS
Company:
NatWest Group
Job type:
Permanent
Job reference:
R-00245652-OTHLOC-GBR-5FLON203