Leave us your email address and we'll send you all the new jobs according to your preferences.
IT Risk Manager
Posted 7 hours 57 minutes ago by Phoenix Group
£70,000 Annual
Permanent
Part Time
Banking & Financial Services Jobs
Midlothian, Edinburgh, United Kingdom, EH120
Job Description
We have an incredible opportunity to join us here at Phoenix Group as an IT Risk Manager within Group Risk.
Job Type: IT Risk Manager, Permanent, Tech & Cyber Specialist Band 1, UK
Location: Hybrid: this role could be based in either our Edinburgh, London or Wythall/Birmingham offices, with time spent working weekly in both the office and at home. The amount of time working from the office is variable based on business need.
Flexible working: All of our roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process. You can read more about Phoenix Flex here.
Closing Date: Tuesday 8th July 2025
Salary and benefits: Up to £70,000, dependent upon experience, plus 16-32% bonus potential, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.
Who are we?
We want to be the best place that any of our 6,600 colleagues have ever worked.
We're Phoenix Group, we're a long-term savings and retirement business. We offer a range of products across our market-leading brands, Standard Life, SunLife, Phoenix Life and ReAssure. Around 1 in 5 people in the UK has a pension with us. We're a FTSE 100 organisation that is tackling key issues such as transitioning our portfolio to net zero by 2050, and we're not done yet.
The role
Non-Financial Risk is part of Group Risk and has a fantastic opportunity for a talented individual to join the team as an IT Risk Manager within the newly forming IT/IS/Resilience and Supplier Risk Oversight Team. The role is to provide Second Line Subject Matter Expert (SME) advice, oversight and challenge on Line 1's design and operation of their Technology and Artificial Intelligence (AI) related standards, risks and controls.
The role holder will, in addition to regular oversight of the Tech and AI risk and controls environment, both lead and support the delivery of a rolling programme of Thematic and Risk based, Technology & AI focused reviews, following a structured methodology. This will involve shaping the scope of reviews, preparing for and performing field work, validation of proposed findings and provision of insightful recommendations to Line 1 through clear written reporting.
Key Accountabilities:
- Provide ongoing oversight and challenge to Line 1 led Technology/AI risk and control management
- Analyse and interpret key risk indicators and risk and control reporting to help determine where Line 2 effort is best focused, and to develop formal Line 2 opinions on Technology & AI matters
- Provide insight, oversight and challenge within assigned monthly Technology Risk and Issue Forums, and other relevant Technology & AI Governance forums
- Lead Line 2 led Tech/AI focused Thematic/Risk Reviews throughout the full lifecycle, including Planning/Terms of Reference, Fieldwork, Findings Validation and Reporting stages
- Provide Technology/AI Risk oversight and challenge on material Projects and Programmes
- Oversee Line 1 activity to ensure adherence to the Group's Risk Management Framework, providing advice and guidance as required
- Support the broader team with assigned Line 2 activity relating to Information/Cyber Security, Operational Resilience and Third-Party Management
- Develop and build relationships with Line 1 and Line 3 peer stakeholders
What are we looking for?
- Essential: Proven experience managing Technology Risk (including third party oversight), in either a first or second-line capacity, within a high regulated UK industry such as Financial Services
- Essential: Strong stakeholder, relationship management and influencing skills. An accomplished communicator who is comfortable, respectful and calm during sometimes challenging situations where differences of risk opinion need to be clearly positioned and justified. Able to analyse situations in a timely manner, producing clear, insightful and succinct written reports.
- Preferred: Knowledge of Artificial Intelligence (AI) - naturally curious about AI and the advantages it can bring to organisations, in balance with controlling risks
- Preferred: Knowledge of cloud computing, shared responsibility models and associated common risks
- Preferred: A career background of having worked in IT for large UK corporations, either in Service Operations, Architecture or Engineering, with a solid baseline understanding of IT Risk Management, ITIL and COBIT frameworks
We want to hire the whole version of you.
We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds. If your experience looks different from what we've advertised and you believe that you can bring value to the role, we'd love to hear from you.
If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.
Please note that we reserve the right to remove adverts earlier than the advertised closing date. We encourage you to apply at the earliest opportunity.
Find out more about
- Guide for Candidates:
- Find or get answers from our colleagues:
Job Type: IT Risk Manager, Permanent, Tech & Cyber Specialist Band 1, UK
Location: Hybrid: this role could be based in either our Edinburgh, London or Wythall/Birmingham offices, with time spent working weekly in both the office and at home. The amount of time working from the office is variable based on business need.
Flexible working: All of our roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process. You can read more about Phoenix Flex here.
Closing Date: Tuesday 8th July 2025
Salary and benefits: Up to £70,000, dependent upon experience, plus 16-32% bonus potential, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.
Who are we?
We want to be the best place that any of our 6,600 colleagues have ever worked.
We're Phoenix Group, we're a long-term savings and retirement business. We offer a range of products across our market-leading brands, Standard Life, SunLife, Phoenix Life and ReAssure. Around 1 in 5 people in the UK has a pension with us. We're a FTSE 100 organisation that is tackling key issues such as transitioning our portfolio to net zero by 2050, and we're not done yet.
The role
Non-Financial Risk is part of Group Risk and has a fantastic opportunity for a talented individual to join the team as an IT Risk Manager within the newly forming IT/IS/Resilience and Supplier Risk Oversight Team. The role is to provide Second Line Subject Matter Expert (SME) advice, oversight and challenge on Line 1's design and operation of their Technology and Artificial Intelligence (AI) related standards, risks and controls.
The role holder will, in addition to regular oversight of the Tech and AI risk and controls environment, both lead and support the delivery of a rolling programme of Thematic and Risk based, Technology & AI focused reviews, following a structured methodology. This will involve shaping the scope of reviews, preparing for and performing field work, validation of proposed findings and provision of insightful recommendations to Line 1 through clear written reporting.
Key Accountabilities:
- Provide ongoing oversight and challenge to Line 1 led Technology/AI risk and control management
- Analyse and interpret key risk indicators and risk and control reporting to help determine where Line 2 effort is best focused, and to develop formal Line 2 opinions on Technology & AI matters
- Provide insight, oversight and challenge within assigned monthly Technology Risk and Issue Forums, and other relevant Technology & AI Governance forums
- Lead Line 2 led Tech/AI focused Thematic/Risk Reviews throughout the full lifecycle, including Planning/Terms of Reference, Fieldwork, Findings Validation and Reporting stages
- Provide Technology/AI Risk oversight and challenge on material Projects and Programmes
- Oversee Line 1 activity to ensure adherence to the Group's Risk Management Framework, providing advice and guidance as required
- Support the broader team with assigned Line 2 activity relating to Information/Cyber Security, Operational Resilience and Third-Party Management
- Develop and build relationships with Line 1 and Line 3 peer stakeholders
What are we looking for?
- Essential: Proven experience managing Technology Risk (including third party oversight), in either a first or second-line capacity, within a high regulated UK industry such as Financial Services
- Essential: Strong stakeholder, relationship management and influencing skills. An accomplished communicator who is comfortable, respectful and calm during sometimes challenging situations where differences of risk opinion need to be clearly positioned and justified. Able to analyse situations in a timely manner, producing clear, insightful and succinct written reports.
- Preferred: Knowledge of Artificial Intelligence (AI) - naturally curious about AI and the advantages it can bring to organisations, in balance with controlling risks
- Preferred: Knowledge of cloud computing, shared responsibility models and associated common risks
- Preferred: A career background of having worked in IT for large UK corporations, either in Service Operations, Architecture or Engineering, with a solid baseline understanding of IT Risk Management, ITIL and COBIT frameworks
We want to hire the whole version of you.
We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds. If your experience looks different from what we've advertised and you believe that you can bring value to the role, we'd love to hear from you.
If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.
Please note that we reserve the right to remove adverts earlier than the advertised closing date. We encourage you to apply at the earliest opportunity.
Find out more about
- Guide for Candidates:
- Find or get answers from our colleagues:
Phoenix Group
Related Jobs
Internal Audit Manager - Public & Social Sector
- Cheshire, Stockport, United Kingdom, SK1
Internal Audit Manager - Public & Social Sector
- Lancashire, Oldham, United Kingdom, OL1
Internal Audit Manager - Public & Social Sector
- Manchester, City, United Kingdom, M2 3DE
Internal Audit Manager - Public & Social Sector
- Lancashire, Bolton, United Kingdom, BL1
Finance Manager
- £40,000 Annual
- Northamptonshire, Kettering, United Kingdom, NN141