Advance Search

Browse CVs

Technology Controls Test Analyst, Third Party Risk Management (TPRM), Records and Risk Culture

Posted 2 days ago

  • Newtown, Bristol
  • Any
  • External
  • Expires In 3 months

Join us as a Technology Controls Testing Analyst, Third Party Risk Management (TPRM), Records and Risk Culture

  • We’ll look to you to protect the Wealth Chief Digital Information Office (WCDIO) arm of the bank by assuring that our applications and technology infrastructure is adequate, effective and fit for purpose on an end-to-end basis
  • You’ll support facilitation of IT risk assessments with a focus on TPRM, Records Management and Risk Culture across the bank, through the effective application of technology risk framework
  • This is a chance to join a talented and supportive team that will help you achieve great exposure as you develop with us
  • This is an opportunity to gain exposure as you build and maintain relationships with stakeholders across Technology and the WCDIO, ensuring management engagement with operational risk objectives

What you'll do

In this role, you’ll work with Information Technology General Controls, including complex Automated Controls and contribute to the ongoing design and development of assurance processes and methodology.

You’ll also maintain detailed test documentation and reports for the technology you assess, keeping stakeholders informed of testing progress and results, in line with quality expectations. We’ll look to you to clearly communicate any identified control weaknesses to the team, relevant business contact or SME.

In addition, you’ll:

  • Manage Vantage which includes, key Controls, risks, issues, actions, triggers and Control Not Implemented
  • Be the single point of contact for the controls testing team for annual key controls testing
  • Support in monthly risk reporting and preparing for the risk forum
  • Support internal and external audits in WCDIO from a first line IT risk perspective
  • Make sure that resilience, change and 3rd party, including all non-information and cyber, key controls are defined as part of Enterprise-Wide Risk Management Framework and act as oversight for WCDIO in controls testing
  • Help maintain high quality data of critical 3rd party suppliers in WCDIO and support in critical outsourcing initiatives
  • Support records management initiative and compliance in WCDIO
  • Support business continuity management initiatives in WCDIO

The skills you'll need

To excel in this role, you’ll have a proven experience of developing and executing test plans on technology with IT General Controls and complex Automated Controls, including adequacy and effectiveness of technology controls.

You’ll also have:

  • A solid understanding and knowledge of IT control environments and general IT controls
  • Solid experience in IT risk management practices and frameworks, the ability to identify control weaknesses and recommend improvements to strengthen internal control frameworks
  • Experience in IT auditing, the ability to identify risks associated with use of IT applications and infrastructure and assess the internal controls that provide mitigation
  • Experience in risk reporting
  • Strong communicator and ability to communicate technical concepts to non-technical colleagues and stakeholders
  • Experience in a risk or control technical role in the financial services industry