Technology Risk Manager

Reporting to the Head of Technology Risk Assurance, the Technology Risk Manager will lead a newly formed team responsible for the coordination, development, and operation of an enhanced Risk framework for Technology (including security). Working closely with domain and subject matter experts, the team will ensure that Technology risk is effectively monitored and managed across Admiral Insurance.

The Risk Manager will work with the Head of Technology Risk Assurance to further develop and embed the target operating model for Technology Risk across the UK insurance business and building a centre of excellence for Technology Risk Management. 

The manager will act as a key interface for technology risk across with the Technology Leaderships team and wider IT and business teams ensuring that Technology risks are identified and effectively managed. The role holder will also work to embed risk quantification throughout IT and lead the risk input to relevant committees.

The Manager will also provide specialist security risk guidance both internally to the team and more widely across the IT function and business as required.

Main Duties:

• Developing a centre of excellence and best practice in risk management.
• Embedding Technology Risk Target Operating Model.
• Supporting the development/setting of risk appetite.
• Ensuring Risk is effectively monitored and managed across IT.
• Providing Technology Risk Leadership.
• Developing and monitoring Technology Risk Appetite.
• Working closely with 2LoD and 3LoD teams to provide risk assurance as required.
• Defining Risk management strategy.
• Security risk leadership and pragmatic guidance/advice.
• Risk leadership an stakeholder management at all levels.
• Embedding IT/Cyber risk quantification across IT.
• Providing appropriate risk reporting to committees at various levels.
• Coaching and mentoring users in risk identification and assessment.
• Monitoring risk trends, areas of concern and developing mitigation plans with stakeholders.
• Defining/enhancing IT/Cyber Risk processes and embedding across the business.
• Risk challenge as appropriate.

Key Skills, Qualifications and Experience

Essential:

• Experience of building/leading a team/function, setting strategic direction and embedding risk practises.
• Subject Matter expertise – Have a deep knowledge of Cyber/Information Security allowing you to be recognised as an expert within the business. You’ll have a minimum of 5 years’ experience in an Information/Cyber Security Risk role. 
• Stakeholder management – dealing with stakeholders at all levels gaining commitment for risk initiatives and commitment to drive improvements.
• Initiative and pro-activity – Take effective and informed decisions using own initiative and based upon a sound understanding of the business issues and challenges of the business.
• Ability to provide pragmatic, proportionate advice on security risk management.
• Communication – Clear and appropriate communication for employees at all levels with the ability to discuss technical subjects with both technical and non-technical audiences. Ability to articulate and pitch governance advice, often at a technical level, directly to key customer stakeholders. 
• Planning and Organising – Develop clear, efficient, and logical approaches to tackle issues and problems in a logical, step-by-step way. Ability to effectively collaborate, and work independently in a fast-growing organisation. 
• Customer focus – An understanding of customer priorities and a desire to support their expectations.

Desirable:

• Experience working within a regulated environment such as the financial services sector.
• Hold one or more relevant qualifications, for example, CISM, CISSP, CRISC etc.
• Knowledge of widely accepted good practice security frameworks (e.g., ISO, NIST, SoGP).
• Previous experience of performing risk analysis using the FAIR risk analysis approach.

Our Commitment to You

At Admiral, we are committed to being a diverse and inclusive workplace. Admiral is proud to be an equal opportunities employer and does not discriminate on the basis of race, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), national origin, gender, gender identity, sexual orientation, disability, age, or any other legally protected status.

All qualified applicants will receive equal consideration for employment.

Benefits and Work-Life Balance

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we’re consistently voted one of the Sunday Times Best Big Companies to Work For in the UK.

All colleagues will receive 33 days holiday (including banks holidays) when they join us, and this will increase with length of service, up to a maximum of 38 days (including banks holidays). You also have the option to buy or sell up to five days of annual leave in addition to your allocation.

You can also view some of our other key benefits here.

#LI-NT1