IT Senior Risk Manager

Who are Just?

We help people achieve a better later life. That’s our purpose and it’s the reason we exist. We are a fast-growing FTSE 250 company helping customers enjoy the retirement they deserve. We do this through a variety of market leading, award-winning products and services, delivered by a diverse team of over 1,400 purpose-led colleagues who genuinely put the customer at the heart of everything we do.

This is a brilliant time to join our business. We are on an exciting growth journey to become the UK’s most loved retirement expert.

About the role

As the IT Senior Risk Manager you will support the Director of Enterprise Risk, the Chief Risk Officer, the Chief Digital Information Officer, and other Executives and senior management in developing and maintaining an appropriate and resilient technology and data risk management framework.

You will also provide independent and proactive advice and challenge to 1st Line identification, measurement, management, monitoring, and reporting of the Group’s technology risks, including in large change and transformation initiatives. 

Responsibilities

• You will support the Director of Enterprise Risk in developing, educating and embedding risk management practices and culture within Just that support our risk appetite and strategic goals. 

• You will act as senior risk partner to the Just Delivery organisation, including Technology and/ or Data and/ or Architecture and the attendance and support of Senior Management Team meetings and associated risk reporting for those parts of the business and associated Group entities. 

• You will provide trusted advice to key stakeholders, including the Executive and senior management and across 1st and 2nd Line colleagues, on the steps that should be taken to maintain technology, data and information security risks managed at a level that is consistent with the Group’s risk appetite and in line with legal and regulatory requirements. 

• You will support the delivery of the Group’s Internal Model for Operational Risk through the development and maintenance of technology, data, and information security risk scenarios with risk owners and other key stakeholders. 

• You will be responsible for establishing an environment of trust and open communication which will establish a cohesive spirit across 1st and 2nd Line colleagues.  

• You will oversee the adequacy of technology related risk mitigation for new and existing business activity, including large change and transformation initiatives.  

• You will develop proficiency in the use of the Group’s risk management systems and tools and in supporting the Just Delivery organisation in the identification, assessment and reporting of risks at departmental level. 

• You will take responsibility for ensuring you comply with the company’s procedures, policies, guidelines and reporting requirements as well as any relevant regulatory and statutory requirements. 

• You will provide guidance and support to other team members on IT risk management best practices. 

• You will stay up-to-date with the latest developments and trends in IT risk management. 

Skills & Experience

• Externally recognised relevant professional/ industry certification and membership (e.g. CISSP, CISM, CISA, BCI, ACII)  is essential

• Must have relevant experience in technology, data, and information security risk management, with a focus on change management, application development, Cloud and Artificial Intelligence, with proven track record especially within a regulated industry sector. 

• Experience in experience of working with digital and automated process environments, including payments processing, is preferred.

• Experience in the 2nd Line of defence is preferred, including in running reporting frameworks and understanding and meeting the risk management requirements of Executives, Risk Committees and Boards.  

• Significant breadth of experience and knowledge of Life and Pensions or broader Financial Services

• Excellent understanding of relevant legislation, standards and frameworks with regard to technology, data and information security risks and related control environment.  

• Excellent technical knowledge of hybrid network environments, specifically considering Information Security, ICT and Cloud risks. 

• Good understanding of current Application Development standards, including Artificial Intelligence/ Robotic Process Automation technologies and the associated risks. 

• Exemplary relationship management skills and knowledge.  

• Excellent communication, including presentation, and report writing.  

• Strong understanding of risk management practices and their application. Ability to identify emerging risks and to drive understanding and management.  

• Good understanding of regulatory context for operation of risk management, including FCA (Financial Conduct Authority) handbook and Solvency 2 Directive requirements relating to technology, data and information security risks.   

• Strong delivery focus and organisational/ project management skills to coordinate and deliver plans to agreed timescales.    

Company Benefits

• A Competitive Salary, Pension Scheme and Life Assurance

• Along with 25 Days Annual Leave plus an Additional Day on us for your Birthday

• Private Medical Cover and Income Protection, just in case

• A generous and highly achievable bonus scheme – paid annually based on individual and company performance against targets

• Opportunity to progress within your career both in-role and within the company

• FREE access to the Headspace App, a 24/7 Employee Assistance Helpline and Trained Physical & Mental Health First Aiders (On-Site)

• A variety of Employee Funded Benefits available to you via our Online Benefits Portal

• Plus, several additional purchase options available for you and your loved ones

Why Just?

At Just you’ll have the opportunity to develop your career, whilst making a difference to the lives of those around you.  You’ll be part of a company with a strong and distinctive culture - we’re ambitious, curious and collaborative – and every decision we make centres around being Just and delivering the best outcomes for our customers.

We’re committed to building a more sustainable business, and we’re working hard to make progress against our Net Zero targets. We're reducing our reliance on fossil fuels in our offices, switching to more sustainable sources of energy and we're investing more of our money in green and social assets.

Valuing diversity of thought and fostering a sense of belonging is critical to our business success, driving innovation and balanced decision making. Our work on DEIB (Diversity, Equity, Inclusion and Belonging) aims to deliver a brilliant employee experience underpinned by a sense of belonging, where our people feel proud to work at Just. We remain committed to our publicly disclosed HM Treasury Women in Finance Charter and Race at Work Charter targets and support a wide range of employee network and events, championing issues including intergenerational working, social mobility and neurodiversity.

 Be Bold. Be Brilliant. Be Just.