Key Skills and Competencies

• IT security or compliance professional with 10+ years experience in Risk Management, Financial Regulations, and Governance,
• Legal & Regulatory knowledge with a focus on financial regulations – specifically DORA. SOX/NIS2/DORA an advantage
• Drive adoption of new global resilience requirements based on existing groupwide business and functional framework and processes, with a specific focus on DORA.
• Provide SME knowledge and guidance to drive consistent adoption of Group frameworks to meet legal requirements in a highly matrixed business
• Ensure alignment of business continuity and resilience oversight and reporting capabilities for intercompany IT services
• Experience in Third Party Risk Management, identifying, and assessing the criticality of third-party vendors,
• Broad understanding of provisioning of IT solutions and services (Infrastructure and applications)
• Able to communicate / engage with wide range of stakeholders
• Working level knowledge of risk and compliance in a regulated financial services organisation (desirable)
• Articulate complex or technical concepts in a concise, simple, and understandable way
• Experience in audit management/audit assurance an advantage
• Associated Cybersecurity/Information Risk certifications (e.g. CISM, CGRC) an advantage
• Ability to work independently and collaboratively in a fast-paced and dynamic environment
• Experience in delivering change through influencing, without formal authority.
• Experience in working with competent authorities in the financial sector is an advantage