Third-Party Technology Risk and Controls Manager
Third-Party Technology Risk and Controls Manager
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Were recruiting for a Third-Party Technology Risk and Controls Manager to join us.
The Third-Party Technology Risk and Controls Manager is the subject matter expert for third-party technology risks across L&G. The role ensures consistent effective control design and operation supports assurance and due diligence activities and provides expert insight to Business Technology Risk Partners. It also monitors emerging threats and technologies to strengthen risk management across the organisation.
What youll be doing:
- Providing expert guidance on third-party technology risk identification analysis and mitigation to ensure alignment with L&G risk frameworks and evolving threat intelligence
- Leading the implementation and continuous improvement of third-party technology controls across systems and applications to ensure effectiveness and proportionality
- Ensuring compliance with third-party technology procurement and risk management policies standards and regulatory requirements
- Managing and overseeing controls testing assurance reviews and audit preparation and providing subject matter expertise to ensure controls are evidenced tested and remediated appropriately
- Contributing subject matter expertise to the response and analysis of third-party technology incidents or control failures to ensure lessons are learned and systemic risks addressed
- Maintaining up-to-date knowledge of third-party technology risks and managing the SME pool to ensure effective risk and control activities aligned with current threats best practices and regulations
- Supporting IT and change initiatives with subject matter expertise to improve customer support and experience
- Managing the team in line with company policies and the Partnership Agreement to consistently achieve business objectives
Qualifications :
Who were looking for:
- Strong familiarity with technology and security frameworks such as NIST Cyber Security Framework (CSF) COBIT ISO27001/2 and COSO
- Good understanding of regulatory requirements relevant to financial services (e.g. FCA/PRA regulations UK GDPR DORA)
- Strong understanding of third-party risk management and procurement processes
- Experience designing and/or assuring third-party controls implementation controls automation risk frameworks and audit responses
- Exposure to briefing to a wide range of audiences (including technical and non-technical at all levels of an organisation) is desirable
Not essential based on role holder experience;
- Technology risk and governance related qualifications such as CRISC CGEIT or CISA
- IT related qualifications such as ITIL
- Cyber security related qualifications such as CISM or CISSP
Whatever your role we reward performance and behaviour with a package that looks after all the things that are important to you. Here are some of the benefits we offer:
- The opportunity to participate in our annual performance -related bonus plan and valuable share schemes
- Generous pension contribution
- Life assurance
- Healthcare Plan (permanent employees only)
- At least 25 days holiday plus public holidays 26 days after 2 years service. Theres also the option to buy and sell holiday
- Competitive family leave
- Participate in our electric car scheme which offers employees the option to hire a brand-new electric car through tax efficient salary sacrifice (permanent employees only)
- There are the many discounts we offer both for our own products and at a range of high street stores and online
- In 2023 some of our workspaces were redesigned. Our offices are great spaces to connect and collaborate and have your wellbeing at the heart
Additional Information :
At L&G we believe its possible to generate positive returns today while helping to build a better future for all.
If you join us youll be part of a welcoming inclusive culture with opportunities to collaborate with people of diverse backgrounds views and experiences. Guided by leaders with integrity who care about your future and wellbeing. Empowered through initiatives which support people to develop their careers and excel.
We care passionately about outcomes rather than attendance and are therefore open to discussing all kinds of flexible working options including part-time term-time and job shares. Although some roles have limited flexibility due to customer demand we accommodate requests when we can.
It doesnt matter if you dont meet every single criterion in this advert. Instead think about what you excel at and what else you can bring in terms of strengths potential and connection to our purpose.
Remote Work :
No
Employment Type :
Full-time
Employment Type
Full-time
