Senior Technology Risk Specialist

Rev & Regs are now recruiting for a new Technology Risk Specialist position, on behalf of a leading Financial Services company (Investment Management) in Edinburgh / Glasgow.

This role will support the Head of Operational Risk with the development, implementation and embedding of the IT and security Risk Framework.

Key Responsibilities:

• Support the execution of IT and cybersecurity risk strategies, procedures, and controls aimed at identifying, evaluating, managing, and reporting on risk exposure.
• Collaborate on building and refining the enterprise risk management framework, including defining risk appetite in coordination with first and second-line teams.
• Assist in handling IT incidents, conducting root cause analysis, and capturing key takeaways to minimize future risk.
• Provide independent review and constructive challenge on IT and security risk matters in collaboration with business stakeholders. This includes activities like risk and control self-assessments (RCSAs), focused risk evaluations, issue tracking, and incident reviews.
• Help monitor and analyze both current and emerging technology and security-related risks through operational risk scenario testing and other tools.
• Prepare and deliver clear, concise, and timely risk updates and reports for internal governance groups and committees.
• Contribute input for calculating annual operational risk capital requirements.
• Advocate for a strong risk awareness mindset throughout the organization while cultivating productive working relationships across teams.
• Participate in ad-hoc investigations and assessments, including reviews of relevant external risk events.
• Deliver user support and training for the enterprise risk management (ERM) software platform.
• Apply appropriate methodologies and maintain up-to-date documentation to ensure the Operational Risk team’s responsibilities are met efficiently and effectively.

Experience required:

• 5+ years’ experience within an IT or security risk role.
• Strong IT literacy and proficient in using Microsoft applications
• Financial services experience preferred.
• CRISC, CISSP, CISM or similar
• Relevant tertiary education i.e. BCom/BSc Degree or similar.
• Demonstrates knowledge of operational and other non-financial risk management.
• Keeps up to date with developments in the industry, including emerging risks and regulation.
• Demonstrable effective organisational skills and ability to work well under pressure, with commitment to meet deadlines.
• Good communicator in delivery of management information and reports.
• Effective collaboration skills sharing pertinent information and ideas.

Location: Edinburgh / Glasgow

Salary: £60,000-£70,000 + benefits package