Business Resilience & Regulatory (DORA) Specialist

Business Resilience & Regulatory (DORA) Specialist

We are seeking a Business Resilience & Regulatory Specialist to play a key role in ensuring compliance with the Digital Operational Resilience Act (DORA) and supporting the transition to business-as-usual (BAU) processes. This role is strategically critical in strengthening our operational resilience, ensuring regulatory compliance, and mitigating potential operational disruptions. The successful candidate will have a strong regulatory background and be pivotal in meeting program delivery requirements while coordinating with various stakeholders.

Experience in managing key stakeholder relationships and a solid technical understanding are essential.

Responsibilities:

1. Regulatory Compliance & Framework Development:
2. Support the implementation of a comprehensive business resilience framework aligned with DORA and other regulatory requirements (e.g., NIST, ISO 22301, ISO 27001).
3. Develop training materials, policies, controls, and risk assessment methodologies to ensure adherence to regulatory standards.
4. Support key pillars of the DORA program, including ICT Risk Management, Digital Resilience Testing, and Third-Party Risk Management (TPRM).
5. Stakeholder Coordination & Engagement:
6. Design and execute DORA-related workshops to support the successful delivery of the DORA program.
7. Ensure all stakeholders are engaged and informed during the DORA compliance implementation and transition to BAU.
8. Facilitate program delivery requirements and track progress towards compliance objectives.
9. Work closely with SMEs, legal teams, and business functions to ensure seamless regulatory adherence.
10. Develop and deliver training programs to educate employees on resilience and risk management practices.
11. Foster a culture of preparedness and continuous improvement across ION Markets.

Experience, Skills, and Qualifications:

• Bachelor's or Master's degree in Business, Risk Management, Cybersecurity, Information Technology, or a related field.
• Minimum 5 years of experience in cybersecurity, operational resilience, systems architecture, or related fields, with extensive exposure to Operational Resilience, particularly DORA.
• Strong understanding of UK regulatory requirements and frameworks such as DORA, NIST, ISO 22301, and ISO 27001.
• Proven experience conducting risk assessments, regulatory compliance reviews, and resilience testing.
• Ability to translate regulatory requirements into actionable plans and track them to completion.
• Strong stakeholder management and ability to work with cross-functional teams in a fast-paced, regulatory-driven environment.
• Proficiency in risk management tools, business continuity software, and regulatory reporting systems.
• Certifications such as CISSP, CISM, CRISC, or CBCP are highly desirable.
• Experience in Agile environments and managing multiple priorities efficiently.
• Strong analytical, problem-solving, and organizational skills.
• Excellent communication and presentation skills, with the ability to convey complex regulatory information to diverse stakeholders.
• A collaborative mindset with the ability to work effectively in complex environments.

If you are passionate about operational resilience, regulatory compliance, and risk management, we encourage you to apply and contribute to strengthening our organization's resilience framework.