CrawlJobs Logo
Social Value Portal Ltd Logo Social Value Portal Ltd · IT - Administration

Senior Technology Risk Analyst

United Kingdom, Birmingham Employment contract · Job Posted May 29, 2026
Apply Position
Job Link Share

Job Description

The role will effectively manage and oversee compliance across the IT and Data portfolio, ensuring robust risk, control management and assurance, internal and external audits, regulatory actions and workstreams. The role will play a pivotal part in developing and producing comprehensive monthly, quarterly, and ad-hoc risk and controls review and reporting, providing assurance to senior management and keeping them informed.

Job Responsibility

  • Manage all first line risk and controls activities within the IT and Data functions to maintain consistency, support a strong risk culture, and ensure alignment with organisational risk framework & appetite and governance expectations
  • Oversee risk identification, assessments, acceptances, and mitigation strategies within technology functions, ensuring appropriate controls are in place
  • Effective management of all risks, controls and incidents activities that fall under the IT and Data remit, liaising and ensuring alignment and collaboration with Group Risk management in maintaining and communicating up to date risk information
  • Partner with relevant teams and SME's to co-manage the existing controls to include alignment on priorities and performance expectations
  • Manage controls annual assessment and improvement plan for controls
  • Manage all IT and Data actions related to risk, assurance, controls
  • Enhance and manage the IT risk management process and IT/Data risk registers, and where applicable, alignment with functional and group risk management frameworks
  • Develop, implement, and monitor KPIs and KRIs for technology controls and risk exposure, supporting reporting for governance forums and senior management
  • Where risks fall outside of appetite/tolerance, work with relevant stakeholders in developing and tracking a mitigation plan within reasonable timelines
  • Support the identification of issues, issue management and remediation and provide reporting on risk/controls/KRIs to the relevant stakeholders
  • Challenging business on risk and control matters (e.g., incidents, issues, and actions) and the overall management of control environment
  • Mapping policies, standards and controls to regulatory requirements and industry frameworks (DORA, CBI, CIS, ISO, NIST)
  • Manage internal and external audit processes, ensuring timely and accurate responses to audit requests, and driving remediation of findings with timely closures of related actions
  • Provide guidance and support to stakeholders regarding compliance and governance requirements
  • Manage and enhance an IT compliance register, mapped with applicable regulatory requirements and associated controls
  • Monitor changes in relevant laws and regulations and advising on impact and remediation, in conjunction with Compliance
  • Ensure policies, standards and guidance are updated following any review activities such as (but not limited to) external audits, regulatory changes and any internal change/requirements
  • Support the governance and communication of these updates to relevant stakeholders and committee/boards
  • Sit on relevant committees, incl. Tech Risk committee as required
  • In collaboration with Compliance, support relevant teams in fulfilling regulatory deliverables and provide input on any required communication to a regulator (e.g. CBI)

Requirements

  • Extensive experience in governance roles, such as risk and controls, audit or compliance
  • Extensive experience in technology roles with excellent analytical and problem-solving abilities
  • Strong stakeholder engagement skills across all organisational levels
  • Extensive experience (10+ years) in technology compliance, risk management, controls, and governance within a regulated environment
  • Experience within a financial industry desired
  • BA/BS degree, and/or relevant industry experience
  • Experience in Technology governance, risk, and compliance
  • Strong stakeholder management at all levels
  • Providing guidance on Technology governance, risk, and compliance matters
  • Ability to identify and evaluate Technology risks and controls and provide practical and effective recommendations
  • Ability to communicate complex Technology risk and compliance issues to non-technical audiences
  • Experience in writing effective committee papers desired
  • Passionate about compliance, risk management, audit principles and practices and continuous improvement
  • Proven experience in operating in an IT GRC environment and in particular, leading the designing of IT risk frameworks, controls and policies
  • Excellent stakeholder management, communication and influencing skills, with the ability to build strong relationships and partnerships across the organisation
  • Strong knowledge and understanding of Technology risk management frameworks, methodologies and tools, such as COBIT, ISO 27001, NIST, etc
  • Strong knowledge of Technology governance, compliance and regulatory requirements, such as GDPR, PCI-DSS, Solvency II, etc
  • Analytical approach with ability to work systematically and unsupervised, to tight deadlines and with multiple competing priorities
  • Demonstrable ability to communicate with project teams and advise on operational implications of business requirements and change delivery risks
  • A self-starter and independent learner who takes the initiative to challenge the status quo and is creative and comfortable with 'blank sheet of paper' assignments
  • Strong written and oral communication skills
  • Influencing and excellent report-writing experience with a high standard of English is a pre-requisite

Nice to have

  • Experience within a financial industry desired
  • Experience in writing effective committee papers desired
Social Value Portal Ltd - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Technology Risk Analyst

8 matching positions

Senior Technology Risk Analyst

The Commercial & New Payment Flows Technology Risk team is seeking a Technology ...
Location
Location
Ireland , Dublin 18
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
October 10, 2026
Flip Icon
Requirements
Requirements
  • Experience: Ideal experience working within digital and technology functions, preferably in a compliance role
  • Reasonable understanding of security and quality management frameworks such as ISO 27001/27002, ISO 9001, ISO 27701, and PCI
  • Bachelor’s degree or equivalent combination of education and experience, or a Bachelor’s degree in computer science, information technology, or a related field is preferred
  • One or more professional certifications like CISA or CISSP (desirable)
  • Professional certifications ISO 27001, ISO 9001 Lead Auditor, and Implementer
  • Reasonable understanding of information security domains and possesses a well-rounded technical background
  • Basic knowledge of infrastructure and application security would be desirable
  • Experience working on GRC tools like Archer would be a significant advantage
  • Excellent communication and problem-solving skills and able to collaborate across global team
  • Demonstrated experience in managing complex projects related to information security
Job Responsibility
Job Responsibility
  • Provide consultancy and central coordination for security and compliance activities, encompassing the implementation of ISO 27001, ISO 9001, and ISO 27701, as well as PCI standards within the organisation
  • Identify potential security risks and issues through control assessments and ensure their resolution within specified timelines
  • Establish and monitor remediation efforts both internally and externally until resolution, while simultaneously enhancing the design and operational efficiency of controls
  • Document the outcomes of assessments and prepare assessment reports for key stakeholders
  • Prepare compliance status reports and dashboards for key initiatives, plans, and audit tracking of current processes in accordance with management requirements
  • Data Aggregation & reporting for various risk & compliance activities in support of the larger risk management practices
  • Fulltime
Read More
Arrow Right

Senior Technology Risk Analyst

The AI DPE Risk Management team is looking for a Senior Technology Risk Analyst ...
Location
Location
United States of America , O Fallon
Salary
Salary:
88000.00 - 141000.00 USD / Year
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience with audit and regulatory frameworks such as PCI, SOX, SOC 2, GDPR, and ISO 27000/27001, including participation in both internal and external audits
  • Holds at least one relevant professional certification, such as CIA, CISA, CISM, CFE, or a similar credential
  • Ability to translate control and compliance requirements into clear, actionable guidance and documentation for engineering and product teams
  • Experience designing, implementing, and maturing controls while partnering with first-line teams to achieve compliance, ensure consistent control application, and address key risks and issues
  • Strong communication skills with the ability to collaborate effectively across Data Science, Engineering, Product, and regulatory stakeholders
  • Proven ability to manage multiple priorities and projects simultaneously, maintaining momentum and delivering results in a fast-paced environment
Job Responsibility
Job Responsibility
  • Partner with engineering, product, and architecture teams to provide control, compliance, and regulatory guidance while identifying control gaps and driving remediation efforts to reduce risk
  • Support the design, implementation, and continuous improvement of preventive and detective controls within the first-line environment to strengthen the organization's overall risk posture
  • Facilitate risk assessments, control gap analyses, and scope/impact reviews to ensure new features, product updates, and initiatives align with internal standards, regulatory requirements, and industry best practices
  • Collaborate with risk, compliance, and governance teams to track and maintain regulatory controls, while working with delivery teams to address issues and lower the severity of identified risks through effective remediation and compensating controls
  • Serve as a subject matter expert during internal and external audits, supporting evidence collection, documentation, and remediation planning while helping teams prepare for successful audit outcomes
  • Bring a proactive, curious mindset with a strong willingness to learn, enabling effective navigation of complex technical ecosystems and continuous improvement of control readiness
What we offer
What we offer
  • insurance (including medical, prescription drug, dental, vision, disability, life insurance)
  • flexible spending account and health savings account
  • paid leaves (including 16 weeks of new parent leave and up to 20 days of bereavement leave)
  • 80 hours of Paid Sick and Safe Time
  • 25 days of vacation time and 5 personal days
  • 10 annual paid U.S. observed holidays
  • 401k with a best-in-class company match
  • deferred compensation for eligible roles
  • fitness reimbursement or on-site fitness facilities
  • eligibility for tuition reimbursement
  • Fulltime
Read More
Arrow Right

InfoSec Risk Senior Analyst / Analyst

Location
Location
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related field from a reputable university
  • Minimum 4 years of experience for the Senior Analyst and 2 years of experience for the Analyst in the banking sector and information security field, including the following background: Risk assessment, identification and mitigation
  • Security controls, security baseline, technology best practices
  • Has an integration knowledge across different security technologies and systems
  • Security control enforcement, measure of effectiveness and proposing compensating controls
  • CBE regulations
Job Responsibility
Job Responsibility
  • Review & maintain the Risk profile according to the bank's Cyber Security Risk appetite
  • Identify information security controls necessary to remediate identified risks and follow up remediation with the concerned business lines
  • Assess information security risks for IT assets and propose appropriate measures to eliminate/reduce risk
  • Coordinate with Information Security teams to manage the risk assessment activities
  • Engage InfoSec Teams in all new initiatives and projects to handle InfoSec risk assessment for new projects/technologies with concerned stakeholders
  • Follow up on Audit reports along with audit Findings/Recommendations by Internal Audit/External Audit, CBE and ensure remediation with the related parties
  • Ensure maintaining Global InfoSec Risk Register for all assessed IT assets & follow up on open risks until closure
  • Review the cases performed by the InfoSec Governance & Compliance Teams from risk perspective side
  • Participate in the Change Advisory Board (CAB) meeting
  • Work on standard and ad-hoc threats providing InfoSec risk assessment as needed
Read More
Arrow Right

Technology Risk Analyst

The role will effectively support management and oversight of compliance across ...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in governance roles, such as risk and controls, audit or compliance
  • Extensive experience in technology roles with excellent analytical and problem-solving abilities
  • Strong stakeholder engagement skills across all organisational levels
  • Extensive experience in technology compliance, risk management, controls, and governance within a regulated environment
  • Experience within a financial industry desired
  • BA/BS degree, and/or relevant industry experience
  • Experience in Technology governance, risk, and compliance
  • Strong stakeholder management at all levels
  • Providing guidance on Technology governance, risk, and compliance matters
  • Ability to identify and evaluate Technology risks and controls and provide practical and effective recommendations
Job Responsibility
Job Responsibility
  • Support oversight risk identification, assessments, acceptances, and mitigation strategies within technology functions, ensuring appropriate controls are in place
  • Support management of all risks, controls and incidents activities that fall under the IT and Data remit, liaising and ensuring alignment and collaboration with Group Risk management in maintaining and communicating up to date risk information
  • Partner with relevant teams and SME's to co-manage the existing controls to include alignment on priorities and performance expectations
  • Support controls annual assessment and improvement plan for controls
  • Support management of all IT and Data actions related to risk, assurance, controls
  • Support the enhancement and management of the IT risk management process and IT/Data risk registers, and where applicable, alignment with functional and group risk management frameworks
  • Support and monitor KPIs and KRIs for technology controls and risk exposure, supporting reporting for governance forums and senior management
  • Where risks fall outside of appetite/tolerance, work with relevant stakeholders in developing and tracking a mitigation plan within reasonable timelines
  • Support the identification of issues, issue management and remediation and provide reporting on risk/controls/KRIs to the relevant stakeholders
  • Challenging business on risk and control matters (e.g., incidents, issues, and actions) and the overall management of control environment
  • Fulltime
Read More
Arrow Right

Cyber Risk Senior Analyst

The Cyber Risk Senior Analyst is a developing professional who stays abreast of ...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience
  • Knowledge of Cyber Risk, AI Tools, rules, regulations, risks and typologies
  • Excellent written and verbal communication skills
  • Must be a self-starter, flexible, innovative and adaptive
  • Strong interpersonal skills with the ability to work collaboratively and with people at all levels of the organization
  • Work collaboratively with regional and global partners in other functional units
  • ability to navigate a complex organization
  • Excellent project management and organizational skills and capability to handle multiple projects at one time
  • Proficient in MS Office applications (Excel, Word, PowerPoint)
  • Bachelor’s/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Establish and oversee the application of operational cyber risk policies, technology and AI tools, and governance processes to create lasting solutions for minimizing losses from failed internal processes, inadequate controls, and emerging risks
  • Participate in the design, development, delivery and maintenance of best-in-class Cyber Risk, Technology Risk, programs, policies and practices for Risk
  • Analyze comparative data, prepare and present regional and global reports related to cyber risk assessments, and monitor cyber and Technology related issues
  • Identify and address potential Cyber and Technology risks
  • Knowledge & experience working with AI tools within Financial Services
  • Identify & assess risks associated with AI systems, including model risk, data risk, bias and fairness, explainability, robustness, privacy, security & third party risk
  • Investigate and respond to operational risks
  • Investigate regulatory inquiries, prepare required documentation, make recommendations to senior management on how to proceed, and prepare responses for the regulatory inquiries
  • Monitor adherence to Citi’s Cyber Risk Policies and relevant procedures
  • Prepare, edit and maintain Cyber and Technology Risk program related materials
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Liquidity Risk Senior Analyst Assistant Vice President

The Issue Management team member will report to GLRM's Head of Policy, Procedure...
Location
Location
Costa Rica , Heredia
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 3-5 years of experience at a global financial institution
  • Demonstrated experience in effective ongoing program management, including continuous program improvement over time
  • Knowledge of, and experience with, root cause analysis techniques and other components of an effective issue management program
  • Good understanding of a broad range of financial services products/services and end-to-end processes, including technology and operations functions
  • Capable of driving outcomes independently and escalating issues as encountered in a timely manner
  • Knowledge of and experience with financial services control environments and business processes
  • Ability to collaborate effectively while also providing constructive challenge to status quo thinking
  • Attention to detail and accuracy are essential
  • Solid Microsoft Excel and general Microsoft Office skills
  • Quick learner with excellent communication skills, team orientation, and ability to work with counterparts in different areas of organization
Job Responsibility
Job Responsibility
  • Manage an effective GLRM wide end-to-end issue management program, including robust root cause analysis, timely remediation, and effective ongoing governance and reporting
  • Enhance and maintain relevant policies that support consistent execution of root cause analyses using best practice techniques​
  • Ensure timely and efficient execution of issue management projects resulting in high-quality output
  • Serve as a point for escalation to solve project delays or other challenges
  • Act as an agent of change for enacting a strong risk and control culture within Citi
  • Review and challenge the comprehensiveness and quality of issue management output from teams, providing strategic input where needed
  • Escalate issues on program structure and scope, or significant remediation issues as needed, to senior management
  • Participate in the development of the Liquidity Policy and Procedures and second line risk management processes
  • Produce presentation materials and present analysis to senior management and regulators
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Fulltime
Read More
Arrow Right

Operational Risk Senior Analyst

The Operational Risk Sr Analyst is a seasoned professional role. Applies in-dept...
Location
Location
United States , Jacksonville; San Antonio; Wilmington; O'Fallon; Tampa; Florence; Johnson City; Sioux Falls
Salary
Salary:
79120.00 - 118680.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4-8 years relevant experience in banking/financial industry policy or analytics role
  • Experience in statistical analysis with working knowledge of at least one of the following statistical software packages: SAS, SQL, Python in Unix environment
  • Highly proficient in Excel/pivot tables and PowerPoint
  • Excellent verbal and written communication skills
  • Customer focused with excellent Interpersonal skills and ability to work well in a team environment collaborating across diverse groups
  • Demonstrated understanding of operational risk and gap identification
  • Ability to prioritize and manage multiple projects simultaneously
  • Ability to present a compelling case to influence others where appropriate
  • Credit card/Financial Industry regulatory policies, Key performance indicators (delinquencies, losses, receivables etc.) and procedures knowledge
  • Bachelor’s/University degree preferred or equivalent experience
Job Responsibility
Job Responsibility
  • Drive credit abuse acquisition/ECM policy development/maintenance for USCC portfolios
  • Manage different stakeholders – Risk Policy, Legal/compliance, IT, Regulators, Operations, Audit, governance teams etc.
  • Effective communication and collaboration with senior management and other stakeholders for various policy changes
  • Participates in the application of first party fraud risk policies, technology and tools, and governance processes to create lasting solutions for minimizing losses
  • Contributes to risk assessments and drives actions to address the root causes that persistently lead to operational risk losses
  • Provides governance and oversight related to first party fraud losses
  • Evaluates the control environment by ensuring appropriate controls are in place
  • Coordinates audits, examinations, and deliverable requirements from internal and external reviewers
  • Ensures project completion, special assignments, and other ad hoc activities as required
  • Develop recommendations to adjust first party fraud / credit abuse policies by analyzing loss and financial performance
What we offer
What we offer
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • discretionary and formulaic incentive and retention awards
  • Fulltime
Read More
Arrow Right

Senior Risk Analyst, AML

This role exists to ensure PEXA Clear’s AML/CTF capability is operationally soun...
Location
Location
Australia , Melbourne; Brisbane; Sydney
Salary
Salary:
Not provided
pexa.co.uk Logo
PEXA UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • AML operational design & risk criteria definition – translating regulatory requirements into practical workflows and decisioning
  • BAU AML operations ownership – managing queues, exceptions, SLAs and quality outcomes
  • UAT & go-live readiness – validating that systems and processes work end-to-end before and after launch
  • Stakeholder translation – bridging operations, technology and risk with clarity and confidence
Job Responsibility
Job Responsibility
  • Work with AML Operations, Product and Tech to refine onboarding or monitoring workflows, including tricky exceptions and escalations
  • Review queues, manage priorities, and step into complex AML cases that need sound judgement
  • Tune risk criteria and decisioning rules based on what you’re seeing in live operations
  • Dig into metrics and QA insights to spot patterns and drive practical improvements
  • Translate operational needs into clear change requests or system updates
  • Partner with Risk, Legal and Technology to keep controls strong, compliant and workable
What we offer
What we offer
  • Quarterly wellness days to recharge
  • Four weeks workcation per year - work from an approved country
  • Take the opportunity to purchase up to four weeks additional annual leave per year
  • Learn from the best and upskill with PEXA Academy certifications and grow your career
  • Fulltime
Read More
Arrow Right