drjobs Head of Technology Risk
  1. Home
  2. Jobs In Poland
  3. Jobs In Warsaw
  4. Head of Technology Risk

Head of Technology Risk

Capital.com
Posted on : 19-09-2025

Employer Active

1 Vacancy
drjobs

Job Alert

You will be updated with latest job alerts via email
Valid email field required
Send jobs
drjobs
Register to Apply Apply Now
Send me jobs like this
drjobs

Job Alert

You will be updated with latest job alerts via email

Valid email field required
Send jobs
Job Location drjobs

Warsaw - Poland

Monthly Salary drjobs

Not Disclosed

drjobs

Salary Not Disclosed

Vacancy

1 Vacancy

Posted on : 19-09-2025

Job Description

We are a leading trading platform that is ambitiously expanding to the four corners of the globe. Our top-rated products have won prestigious industry awards for their cutting-edge technology and seamless client experience. We deliver only the best so we are always in search of the best people to join our ever-growing talented team.

As the Head of Technology Risk you will take on a pivotal leadership role overseeing and directing the firms comprehensive technology risk management framework. This entails ensuring that all technology and cyber risks are not only identified and assessed but also effectively managed and monitored across all facets of the business. Your role willbe critical in safeguarding the organizations vital technology infrastructure and ensuring that the firm remains compliant with all relevant regulatory expectations including those mandated by the FCA and other pertinent global regulatory bodies.

Furthermore you will be a linchpin collaborating closely with stakeholders across multiple domains including Risk IT Security Compliance and Senior Management. Your aim will be to cultivate and embed a robust risk culture throughout the organization. This will guarantee that technology risk is managed proactively and consistently aligning with the firms overall risk appetite and regulatory obligations.

Key Responsabilities

    • Leadership & Governance
    • Own and lead the Technology Risk function: Establish theTechnology Risk function as a cornerstone of the enterprise riskmanagement framework. Drive the strategic vision andoperational execution of this function ensuring it aligns with thebroader organizational goals and risk appetite.
    • Provide strategic direction and oversight: Act as the principalauthority on all matters concerning IT and cyber risk. Guide theorganization in proactively identifying assessing and mitigatingpotential threats and vulnerabilities.
    • Represent Technology Risk at internal risk committees andboards: Serve as the primary spokesperson and subject matterexpert for Technology Risk within the company. Articulatecomplex technical risks and mitigation strategies in a clear andconcise manner to both technical and non-technical audiences.
    • Develop and maintain strong working relationships with keystakeholders: Cultivate collaborative partnerships with leadersacross IT Security Compliance Audit and the Executive team.
    • Foster a culture of open communication and shared responsibilityfor managing technology risks.
    • Own the recruitment onboarding and capacity planning of the Technology Risk function to ensure the right skills and resources are in place to deliver a comprehensive testing programme.
    • Drive a culture of accountability by setting measurable performance standards conducting regular reviews and ensuring timely recognition or corrective action to maintain high-quality outputs.
    • Establish expand and continuously improve the Technology Risk function by embedding best practice methodologies frameworks and reporting standards ensuring the wider business understands the value and importance of effective control testing.

      • Risk Framework & Policy Management
    • Design implement and continuously improve the technology andcyber risk management framework policies and standards:Establish a robust and adaptable risk management frameworkthat encompasses all aspects of technology and cyber and maintain comprehensive policies and standards thatprovide clear guidance and expectations for managing risk.
    • Ensure alignment with regulatory guidance (e.g. FCA/PRAexpectations SS1/21 SYSC requirements DORA readiness andimplementation): Maintain up-to-date knowledge of relevantregulatory requirements and industry best practices. Ensure thatthe organizations risk management practices are fully compliantwith all applicable regulations and guidelines.
    • Support risk assessments for material outsourcing cloudadoption and third-party technology providers: Conductthorough risk assessments of all significant technology initiativesincluding outsourcing arrangements cloud migrations andthird-party relationships. Identify potential risks and developappropriate mitigation strategies.

      • Risk Identification Assessment and Monitoring
    • Lead enterprise-wide technology risk assessments and ensuretimely identification of emerging risks: Proactively identify andassess potential risks across all technology domains. Stayabreast of emerging threats and vulnerabilities and developstrategies to address them before they impact the organization.
    • Oversee key risk indicators (KRIs) risk and controlself-assessments (RCSAs) and other risk monitoring activities:Implement a comprehensive risk monitoring program that utilizes a variety of tools and techniques including KRIs RCSAs andother metrics. Track the effectiveness of risk controls and identifyareas for improvement.
    • Provide regular risk reporting to the executive and boardcommittees: Prepare and deliver clear and concise risk reportsthat highlight key risks emerging threats and the effectivenessof risk mitigation strategies. Keep the executive and boardcommittees informed of the organizations risk posture.

      • Incident & Change Management
    • Provide second-line oversight of technology incidents and rootcause analysis: Review and analyze technology incidents toidentify root causes and underlying systemic issues. Ensure thatappropriate corrective actions are taken to prevent recurrence.
    • Assess the technology risk impact of major change programssystem implementations or transformation initiatives: Evaluatethe potential risks associated with major technology changes andinitiatives. Develop strategies to mitigate these risks and ensurethat changes are implemented safely and effectively.
    • Work with operational risk and technology teams on scenarioanalysis and resilience testing: Collaborate with other risk andtechnology teams to conduct scenario analysis and resiliencetesting. Identify potential vulnerabilities and develop plans toensure business continuity in the face of disruptions.

      • Cybersecurity & Resilience
    • Partner with Information Security to ensure appropriate cyber riskmanagement and regulatory alignment: Work closely with theInformation Security team to establish a unified approach tocyber risk management. Ensure that cybersecurity practices arealigned with regulatory requirements and industry best practices.
    • Provide second-line challenge and oversight of cyber securitycontrols penetration testing and security incident management:Review and evaluate the effectiveness of cybersecurity independent oversight of penetration testing and securityincident management activities.
    • Support the development and testing of IT Disaster Recoveryand Business Continuity Planning (BCP): Assist in thedevelopment and testing of comprehensive IT Disaster Recoveryand Business Continuity plans. Ensure that the organization isprepared to respond to and recover from disruptions.

      • Regulatory Engagement & Audit Support
    • Act as a subject matter expert for technology risk in regulatoryreviews and supervisory engagements: Serve as the primarypoint of contact for regulators and supervisors on matters relatedto technology risk. Provide expert guidance and support duringregulatory reviews and examinations.
    • Prepare and present responses to regulator questions thematicreviews or requests for information: Develop and deliver clearand comprehensive responses to regulatory inquiries. Representtheorganizations interests and demonstrate compliance withregulatory requirements.
    • Liaise with Internal and External Audit for audits involving IT andcyber risk: Collaborate with Internal and External Audit teams tofacilitate audits of IT and cyber risk controls. Provide necessarydocumentation and support to ensure a smooth and efficientaudit process.

      • Continuous Improvement and Risk Culture
    • Identify opportunities to enhance control testing processes byintegrating automation advanced analytics and other relevanttechnology tools. This could include automating repetitive controltests using data analytics to identify control deficiencies orimplementing technology solutions to streamline control testingprocesses.
    • Regularly benchmark the control testing framework againstindustry best practices and regulatory requirements to identifyareas for improvement and ensure the organization stays aheadof the curve. This may involve participating in industry surveysattending conferences or engaging with external consultants.
    • Promote a strong risk culture within the organization by raisingawareness of control testing and its importance in managingoperational risk. This could involve delivering presentationsorganizing workshops or developing communication materialsthat highlight the benefits of effective control testing.
    • Provide training and guidance to control owners to ensure theyunderstand the importance of effective control design andoperation and can identify and mitigate risks in their areas ofresponsibility. This could include developing training materialsdelivering workshops or providing one-on-one coaching.
    • The successful candidate will be a proactive and self-motivatedindividual with excellent communication and interpersonal skillscapable of building strong relationships with a wide range ofstakeholders across different teams business units regions andcultures.

Requirements

    • Extensive Experience in Technology Risk Management: Aminimum of 10 years of proven experience in a technology risk ITaudit or IT governance role within the financial services orfintech industry is required.
    • Comprehensive Regulatory Knowledge: Possess a deepunderstanding of global regulatory frameworks with a specificfocus on FCA PRA SYSC SS1/21 and DORA regulations.
    • In-Depth Technical Expertise: A strong knowledge of ITcontrols cyber risk cloud risk ITGCs and third-party riskmanagement is essential.
    • Framework Development and Risk Assessment: Experiencein building or enhancing technology risk frameworks and leadingrisk assessments is required.
    • Exceptional Stakeholder Engagement: Must possess excellentstakeholder engagement skills with a proven ability to influenceand communicate effectively at senior levels.
    • Leadership and Cultural Influence: Experience in leadingteams and fostering a strong risk culture within fast-paced agileenvironments is essential.
    • Relevant Certifications: While not mandatory certificationssuch as CRISC CISM CISSP CISA or ISO 27001 are highlydesirable and will be viewed favorably.

      • Additional Skills and Competencies
    • Strategic Thinking: Ability to align technology risk managementstrategies with overall business objectives.
    • Problem-Solving: Capacity to identify and address complextechnology risk issues proactively.
    • Communication and Reporting: Excellent written and verbalcommunication skills with the ability to present complex riskinformation clearly and concisely to both technical andnon-technical audiences.
    • Adaptability: Ability to thrive in a dynamic and rapidly evolvingtechnology risk landscape.
    • Innovation: A proactive approach to identifying andimplementing innovative risk management solutions.

      • Technical Skills & Knowledge
    • GRC Tool Proficiency: Expertise in using Governance Riskand Compliance tools for risk assessment monitoring andreporting.
    • Control Testing Platforms: Hands-on experience withplatforms designed to test and validate the effectiveness ofinternal controls.
    • Data Analysis: Advanced skills in Excel and data visualizationtools like Tableau and Power BI to analyze risk data andgenerate insights.
    • Risk Management Frameworks: Deep understanding ofindustry-standard risk management frameworks such as COSONIST and ISO 31000.
    • Control Testing Methodologies: Familiarity with variousmethodologies for testing and evaluating the design andoperating effectiveness of controls.
    • Regulatory Audits: Experience in managing and coordinatingregulatory audits including preparation execution and follow-up.

      • Interpersonal & Leadership Skills
    • Collaboration & Influence: Ability to work effectively withregional and global partners across different functions andcultures and to influence senior stakeholders.
    • Complex Problem Solving: Excellent problem-solving skillswith a curious mindset and a willingness to challenge existingpractices.
    • Initiative & Independence: Proven ability to take ownership ofideas and drive them forward without constant supervision andto constructively challenge others when necessary.
    • Autonomy & Decision-Making: Highly disciplined and capableof working independently with minimal supervision and makingsound decisions.

      • Organizational & Management Skills
    • Project Management & Multitasking: Strong organizational andproject management skills with the ability to manage multiplepriorities and deliver results within deadlines.
    • Expectation Management: Proven ability to set and manageexpectations and to communicate effectively with & Work Ethic
    • Professionalism & Drive: High level of professionalismself-motivation and a strong sense of urgency
What you will get in return:

Competitive Salary: We believe great work deserves great pay! Your skills and talents will be rewarded with a salary that makes you feel valued and motivated.
Work-Life Harmony: Join a company that genuinely cares about you - because your life outside of work matters just as much as your time on the clock. #LI-Hybrid
Annual Performance Bonus: Your hard work doesnt go unnoticed! Celebrate your achievements with a well-deserved annual bonus tied to your performance.
Generous Time Off: Need a breather Our annual leave policy lets you recharge and enjoy life outside of work without a worry.
Employee Referral Program: Love working here Share the love! Bring your talented friends on board and get rewarded for growing our awesome team.
Comprehensive Health & Pension Benefits: From medical insurance to pension plans weve got your back. Plus location-specific benefits and perks!
Workation Wonderland: Live your digital nomad dreams with 30 extra days to work remotely from anywhere in the world (some restrictions apply). Adventure awaits!
Volunteer Days: Make a difference! Take two additional paid days each year to support causes you care about and give back to the community.



Be a key player at the forefront of the digital assets movement propelling your career to new heights!Join a dynamic and rapidly expanding company that values and rewards talent initiative and alongside one of the most brilliant teams in the industry.

Our company has an Internal Reporting Procedure. It is available from the Human Resources Department upon You may report a violation referred to in the Procedure under the terms specified therein.

Required Experience:

Director

Employment Type

Full Time

Company Industry

Key Skills

Register to Apply
Apply Now

About Company

Capital.com
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
Start Now

Dr.Job AutoApply

3X your job search with AutoApply's AI for faster dream job results.

Similar Jobs

Head of Marketing

Hellokindred - Amsterdam

Head of LaaS

Delivery Hero - Singapore

Head of Plant Management

Continental - Nyíregyháza

Head of Visa Government Solutions, Indonesia

Visa - Jakarta

Head of Social (6 month FTC)

Asos - London

Architecture Manager (Head of Architecture – EC Colombia)

Aecom - Bogotá

Head of Engineering, Autonomous Vehicle Integrations & Deployments

Grab - Singapore

Creative Technology Lead

Cd Projekt Red - Warsaw
  1. Home
  2. Jobs In Poland
  3. Jobs In Warsaw
  4. Head of Technology Risk
About Drjobpro.com

Dr. Job is an online platform that connects employers with skilled job seekers, facilitating the search for job opportunities and top talent. Established in 2015. Dr. Job Pro has emerged as the world premier job portal, attracting thousands of job seekers every day from all over the world.

Follow Dr.Job

LinkedIn Drjobpro Facebook Drjobpro Twitter Drjobpro Instagram Drjobpro Youtube Drjobpro Tiktok Drjobpro SnapChat Drjobpro
Payment accepted icon

Dr Job FZ LLC. 2025 © All Rights Reserved

Terms of Use Privacy Policy Cookie Policy

Company

About

How it Works

SiteMap

Contact Us

Blog

Popular Searches

Popular jobs in worldwide

Employer

Post Job Free

CV Search

ATS Partners

Job seeker

Job Seeker Login

Job Seeker Register

Search Jobs

AI Job interview

AutoApply

Companies by Location

Help

Jobs by Countries

Jobs In Saudi Arabia

Jobs In Kuwait

Jobs In Qatar

Jobs In Bahrain

Jobs In Egypt

Jobs In Jordan

Jobs in USA

Jobs in UK

Jobs in India

Change Country