Technology Risk Manager

London - UK

Monthly Salary: Not Disclosed

Posted on: 17 hours ago

Vacancies: 1 Vacancy

Job Summary

At OakNorth were on a mission to empower the UKs most ambitious businesses. Since 2015 weve lent over $18 billion across the UK and US helped create more than 58000 new homes and 36000 new jobs and supported hundreds of thousands of personal savers all while fuelling the UK economy.

This is a fantastic opportunity to join a fast-paced growing bank with a reputation for doing things differently. We dont want another cog in the machine were looking for self-starters and bold thinkers who want to pave their own career. OakNorths Risk team provides guidance and oversight for technology and cyber related risks across the OakNorth Bank plc Group.

In a nutshell this exciting and high-performing role will play a pivotal part in ensuring OakNorths adherence to security related regulatory requirements aligned to global standards and frameworks and bring enhanced risk visibility automation and continuous assurance mechanisms across technology and security domains.

Are you ready to step up to the challenge

The Role

Advance the Technology and Cyber Risk capability: The individual will provides oversight review and challenge of the cyber risk profile and cyber control environment. Contribute towards the development/enhancement of technology risk framework and ensure alignment with evolving regulatory expectations and adoption of newer technologies and architecture patterns.

Perform risk-based deep-dives: Perform risk based deep dives to identify and understand technology and cyber security related risk drivers and work in partnership with the First Line(s) to identify key programmes/tasks to address these. This is expected across core technology risk domains of resilience and continuity cloud and third-party data governance and protection generative AI and broader AI adoption and technology delivery and change.

Cyber risk reporting: Ensure precise articulation of inherent and residual risks along with comprehensive evaluation of control effectiveness. Provide oversight of issue management Key Risk Indicators (KRIs) and adherence to policy requirements. Additionally review KRIs and other risk telemetry to identify emerging themes cyber risk trends and potential control deficiencies.

Proactive risk engagement and early intervention: Engage early during solution design procurement and PoC phases to assess technology and cyber risks. Continuously evolve domain focus areas to reflect changes in the threat landscape and regulatory environment(s) across operating geographies.

Strong focus on automation: Help in building continuous assurance programmes automate control testing and feed results directly into established enterprise risk frameworks to support reporting and regulatory requirements.

Stakeholder Management: Regular effective stakeholder management is key this will include teams like Cyber security Engineering Product and Internal Audit.

Experience

4-6 years experience in regulated financial or fintech environments or with technology risk focused consulting firms preferred.
A deep understanding of IT security and technology risks principles with specific focus of operating in a cloud-native and SaaS heavy environment is essential for this role.
Demonstrated experience with cyber risk frameworks and a solid understanding of best practices within a well-managed cyber environment.
Effective communication with both internal and external stakeholders.
Experience with cloud platforms risk management cloud security and compliance including domains of Identity and Access Management Infrastructure and Data security Detection and Incident Response and Governance.

How we expect you to behave

We embrace difference and know that when we can be ourselves at work we are happier more motivated and creative. We want to be able to bring our whole selves to work have our own perspectives and know that we belong. As such through your behaviours at work we expect you to reflect and actively sustain a healthy engineering environment that looks like this:
A wide range of voices heard to the benefit of all
Teams that are clearly happy engaged and laugh together
Perceivable safety to have an opinion or ask a question
No egos - people listen to and learn from others at all levels with strong opinions held loosely

What makes working here better

This is a truly hybrid role offering engineers the flexibility to work from home while also providing opportunities to collaborate in person with the team when it adds value. Theres no fixed requirement for days in the office instead we focus on creating space for engineers to engage meaningfully whether thats in-person for whiteboarding sessions or remote for deep focus work.
Work-life balance - 25 days holiday (plus bank holidays) each year and enhanced family leave allowances.
Competitive salary & equity - We want people to have a serious stake in the business.
Good kit - Your choice of the best laptop running macOS or Ubuntu.
Team socials - The opportunity to get to know each other outside of work.
Company socials - A chance to catch up and meet new colleagues weekly over informal office breakfasts and dinners on OakNorth - or at our free barista bar every day.
Commuter support - We offer the cycle to work & EV scheme.

We may use artificial intelligence (AI) tools to support parts of the hiring process such as reviewing applications analyzing resumes or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed please contact us.

Required Experience:

Manager

Are you ready to step up to the challenge

The Role

Advance the Technology and Cyber Risk capability: The individual will provides oversight review and challenge of the cyber risk profile and cyber control environment. Contribute towards the development/enhancement of technology risk framework and ensure alignment with evolving regulatory expectations and adoption of newer technologies and architecture patterns.

Perform risk-based deep-dives: Perform risk based deep dives to identify and understand technology and cyber security related risk drivers and work in partnership with the First Line(s) to identify key programmes/tasks to address these. This is expected across core technology risk domains of resilience and continuity cloud and third-party data governance and protection generative AI and broader AI adoption and technology delivery and change.

Cyber risk reporting: Ensure precise articulation of inherent and residual risks along with comprehensive evaluation of control effectiveness. Provide oversight of issue management Key Risk Indicators (KRIs) and adherence to policy requirements. Additionally review KRIs and other risk telemetry to identify emerging themes cyber risk trends and potential control deficiencies.

Proactive risk engagement and early intervention: Engage early during solution design procurement and PoC phases to assess technology and cyber risks. Continuously evolve domain focus areas to reflect changes in the threat landscape and regulatory environment(s) across operating geographies.

Strong focus on automation: Help in building continuous assurance programmes automate control testing and feed results directly into established enterprise risk frameworks to support reporting and regulatory requirements.

Stakeholder Management: Regular effective stakeholder management is key this will include teams like Cyber security Engineering Product and Internal Audit.

Experience

4-6 years experience in regulated financial or fintech environments or with technology risk focused consulting firms preferred.
A deep understanding of IT security and technology risks principles with specific focus of operating in a cloud-native and SaaS heavy environment is essential for this role.
Demonstrated experience with cyber risk frameworks and a solid understanding of best practices within a well-managed cyber environment.
Effective communication with both internal and external stakeholders.
Experience with cloud platforms risk management cloud security and compliance including domains of Identity and Access Management Infrastructure and Data security Detection and Incident Response and Governance.

How we expect you to behave

We embrace difference and know that when we can be ourselves at work we are happier more motivated and creative. We want to be able to bring our whole selves to work have our own perspectives and know that we belong. As such through your behaviours at work we expect you to reflect and actively sustain a healthy engineering environment that looks like this:
A wide range of voices heard to the benefit of all
Teams that are clearly happy engaged and laugh together
Perceivable safety to have an opinion or ask a question
No egos - people listen to and learn from others at all levels with strong opinions held loosely

What makes working here better

This is a truly hybrid role offering engineers the flexibility to work from home while also providing opportunities to collaborate in person with the team when it adds value. Theres no fixed requirement for days in the office instead we focus on creating space for engineers to engage meaningfully whether thats in-person for whiteboarding sessions or remote for deep focus work.
Work-life balance - 25 days holiday (plus bank holidays) each year and enhanced family leave allowances.
Competitive salary & equity - We want people to have a serious stake in the business.
Good kit - Your choice of the best laptop running macOS or Ubuntu.
Team socials - The opportunity to get to know each other outside of work.
Company socials - A chance to catch up and meet new colleagues weekly over informal office breakfasts and dinners on OakNorth - or at our free barista bar every day.
Commuter support - We offer the cycle to work & EV scheme.

Required Experience:

Manager

Key Skills

Arm
Risk Management
Financial Services
Cybersecurity
COSO
PCI
Root cause Analysis
COBIT
NIST Standards
SOX
Information Security
RMF

Apply Now

About Company

OakNorth

OakNorth Credit Intelligence Suite transforms commercial lending, giving banks 360° views of borrowers, with deeply granular, forward-looking insight, to improve efficiencies, lower credit risk, and drive profitable growth through economic cycles. Banks lend smarter, lend faster, and ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click

AI Resume Builder

Create an ATS-ready CV in minutes

AI Cover Letter

Write a personalized letter instantly

Technology Risk Manager

London - UK

Job Summary

The Role

Experience

How we expect you to behave

What makes working here better

The Role

Experience

How we expect you to behave

What makes working here better

Key Skills

About Company

Related Jobs