IT Controls Test Manager

Why this job matters

BT works in a regulated environment and sells products that require assurance. This role is to define and implement an IT Controls framework that is appropriate for Digital, that meets current needs and is adaptable for future areas of growth.

Digital has risk obligations that cover Data GDPR, Financial statement and Cyber risk. The definition, governance and lifecycle management of a framework is a Risk and assurance requirement.

A breach against the above risks will result in legal action, fines, reputational and shareholder damage to BT.

Full time, 3 days a week together in either one of our Digital Hub locations including Bristol, Birmingham, Manchester and London (flexible 2 days a week wherever).

What you’ll be doing

• Supporting the Senior managers in Risk and compliance team. Working as part of a small team of ICOFR controls and assurance specialists
• Developing the annual controls test plan for a team of IT Control specialists
• Delivering timely and accurate reporting on controls test status 
• Delivering testing against specific controls
• Supporting the control matrix and remediation plans of any deficient controls
• Supporting the onboarding of new applications into the controls environment
• Performing control design & implementation, test preparation and operations
• Managing stakeholders across 3 Lines of Defence
• Helping to establish horizon scanning for new emerging risk
• Creating and maintaining a health dashboard for applications and ICOFR Controls. This to inform programme decision making
• Stakeholders will range from operational level application support teams to senior managers responsible for ICOFR controls (MDs, Platform Directors and Senior Management Team Members) 
• Ensuring that requirements, timelines, quality of information requirements are all understood and delivered by responsible directors

You'll have the following skills and experience

Essential requirements:

• Ability to work with business sponsors and IT technical delivery teams to drive complex IT controls
• Proven track record of getting results from matrixed teams
• Ability to manage stakeholders in a complex environment of business and audit risk demand
• Good knowledge of risk management and BT Enterprise Risk Management practices would be an advantage
• Experience of ICOFR controls, compliance controls and frameworks to ensure assurance through the three lines of defence model is an advantage
• A good competent grounding in IT tools, Excel, and Access
• The ability to develop, present and update a dashboard of IT health status, both applications and IT controls
   

Desirable requirements:

• CISA, CISSP or similar
• Strong analytical and problem solving skills
• Project management skills
• Experience in audit methodologies (CISA would be beneficial)
• Knowledge of IT frameworks and methodologies COSO, ITIL, COBIT, etc
• Experience in a S-OX (or similar) controls environment
• Knowledge and experience of SAP

Benefits

• Annual On target bonus 10% (personal and company multipliers)
• BT Pension scheme; minimum 5% employee contribution, BT contribution 10%
• Life Assurance
• Direct share scheme
• Exclusive colleague discounts on our latest and greatest BT broadband packages
• 50% off EE mobile pay monthly or SIM only plans and 50% discount for friends and family on EE SIM only plans
• My Discounts gives colleagues access to unbeatable savings on everyday purchases at hundreds of retailers
• Discounted EE TV including TNT Sport and the NOW Entertainment membership
• Great support for working parents including pay whilst on maternity, adoptive, and paternity leave
• Option to join the Healthcare Cash Plan or other benefits such as dental insurance, gym memberships etc.
• 25 days annual leave (not including bank holidays), increasing with service
• Volunteering days so you can give back to your local community
• Brand new electric vehicle salary sacrifice arrangement, known as ‘My EV’