Senior Consultant - Technology Risk

Key Role Responsibilities:

- Reporting to the Head of Divisional Controls, in this role you will be responsible for working proactively in a team supporting the a business area - in its execution of risk management accountabilities.

This role is primarily responsible for supporting the Head of, Managers and Associate Directors with the following:

- Providing risk reporting and analytics capability to uplift risk management practices

- Operational risk and regulatory obligation identification, impact assessment and change within the Division

- Advising business leaders on the application of the operational risk and compliance management framework to evaluate risks in order to achieve business outcomes

- Engaging and managing stakeholders to implement and improve business systems and processes through the use/integration of the risk and compliance framework

- Working with the business to implement systems and controls to manage the requirements of operational risk and compliance policies which apply to the business

- Risk profiling: assisting to identify key risks and design of indicators to monitor, input into Divisional Risk Setting Statements as relevant

- Designing controls: assisting to identify the right key controls to mitigate key risks and obligations applicable to the business

- Providing guidance on risk and control items including Subject Matter Expertise for the following: Risks, Obligations Events, Change, and related Policies; Remediation action plans to address any control design or operating effectiveness gaps; Requisitions on Management attestations, ensuring evidence is consolidated at a Sub-Divisional level; Relevant Risk Management Forums and/or other risk related committees as required

- Developing and maintaining compliance plans

- Completing compliance obligations assessments

- Management of control environment through design and testing of controls

- Engaging the relevant Enterprise Controls communities for expert assistance as appropriate

- Providing business specific input and context to: Risk deep dive reviews; Internal Audit reviews; Assurance reports; Action plans for ineffective operational controls

- Uplifting risk management maturity and practices

- Assisting in regulatory responses and regulatory engagement matters

- Driving consistency of effectiveness for Technology Assets assessments performed

- Supporting the Manager and Senior Consultants to ensure the control Technology Asset assessment plans are executed within agreed timeframes

- Support the design, maintenance and / or uplift team processes, tools and methodologies

- Pro-actively identifying, driving and supporting continuous improvement and evolution of other controls assessment processes and toolsets

- Participating in Enterprise Controls Communities of Practice

Risk :

Proactively manage risk, meeting all policy and compliance requirements; perform controls; adhere to process and procedures pertinent to role; and escalate events, issues or breaches as they are identified (risk accountability forms part of all roles, as everyone is responsible for managing risk and compliance

Qualification Requirements:

- Tertiary qualification in a relevant technology/business-related discipline desirable (or equivalent experience).

Experience:

- 8-15+ years' experience working in risk management/compliance/internal control or external audit or equivalent

- Thorough knowledge of risk management and compliance disciplines

- Strong level of English proficiency

- Internal control/audit techniques

- Proven ability to perform in a high performing team

- Practical approach to solving issues with strong commercial acumen

- Some knowledge of relevant industry standards and guidance

- Excellent time management and ability to multi-task and adapt to changing priorities

- Strong proficiency in MS Office Skills

- Reporting, analytics and insight production

Accountabilities:

- Providing specialist Operational Risk and Compliance Policy and Framework advice and guidance to the business

- Contribution to uplift in the Divisional control environment

- Exceptional communication with key Divisional stakeholders