Technology Risk and Controls Lead
On-site · London, England, United Kingdom
Job Summary
Lead and transform technology risk and controls across GRC programs. Define and promote best practices for technology risk and controls; design, implement, and continually enhance risk management frameworks and taxonomies (e.g., NIST, ISO 27000, COBIT). Uplift and transform controls, partner with product, engineering, and control teams to embed standards, and oversee governance, reporting, and issue management for senior leadership insights. Drive continuous improvement in risk management practices, and communicate program status and risks to stakeholders. Proficiency with service management tooling (ServiceNow) and experience across Technology Operations, cybersecurity, and 3LoD auditing is highly valued.
Required Qualifications
- Deep understanding of end-to-end GRC and Technology Risk ecosystem and lifecycle
- Experience in Technology Operations or Service Management, specifically service transition, incident management and problem management
- Experience in technical program management, cybersecurity, and technology controls roles
- Experience in 3LoD as Technology Auditor. Professional qualifications of CISA, CRISC, CISM, CIA are most welcome
- Ability to ensure decisions or constraints affecting program delivery are effectively escalated and addressed in a timely manner
- Competent user of service management tooling, in particular ServiceNow
- Strong verbal and written communication skills to translate technical risks into business impacts and engage with stakeholders at all levels
- Strong analytical skills to dissect complex challenges, conduct thorough root cause analysis, and develop effective solutions
- Proven ability to apply critical thinking and structured problem-solving techniques to address issues and drive continuous improvement in risk management practices
- Experience in designing, implementing, and operating industry-standard frameworks such as COBIT, ITIL, NIST
- Experience working in 1LoD Technology Risk and Control function
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.