Head of IT Systems Risk

at  Lloyds Banking Group

End Date
Thursday 11 July 2024
Salary Range
£0 - £0
We support flexible working – click here for more information on flexible working options
Flexible Working Options
Hybrid Working, Job Share
Job Description Summary
JOB TITLE: Head of IT Systems Risk Specialist
LOCATION(S): Birmingham, Bristol, Edinburgh, Leeds, Halifax, Chester or Manchester.
HOURS: Full time
WORKING PATTERN: Our work style is hybrid, which involves spending two days per week, or 40% of our time at one of our hubs.
We’re on an exciting journey and there couldn’t be a better time to join us. We’re putting in place a fresh operating model for non-financial risk management across the Group, empowering our people to take end-to-end accountability for managing the risks that they face!
Job Description
We’re looking for a Head of IT Systems Risk who’ll lead and develop its risk specialist centre of excellence, to support robust risk management in alignment with the Group’s Enterprise Risk Management Framework (ERMF). This will include giving our senior leaders and Risk Owners in these businesses advice on their risk appetite decisions, safely, and at pace.
You will also be part of management’s technology leadership team. To assure our strategic transformation on this scale we need you to have a breadth and depth of knowledge in current tech, and we want you to be passionate about its application and how we manage its risk; prepare to disrupt the norm in the pursuit of the best possible customer and staff experience.
You should have people at your heart; we strive for excellent customer experience but to achieve this we focus on our people – building a culture around continued learning and support so everyone can feel bold to share new ideas and solutions.
You’ll have deep operational risk knowledge and provide thought leadership, insight and oversight that supports the implementation of the second line of defence and executes its roles and responsibilities. You’ll lead our approach to implementing risk policy, appetite, and control objectives to enable the delivery of customer, regulatory and business strategic outcomes.

What will you be doing?

• Leads a diverse team of risk specialists, coaching and inspiring them to drive optimal risk outcomes for our customers, in collaboration with a wider team of risk and control experts.
• Owns an effective policy and suite of control objectives to manage this risk type effectively across the Group. Owns the policy with complete traceability back to legal and regulatory requirements.
• Manages relationships with risk and control owners acting as primary Operational Risk specialist business partner, utilising their team to help deliver against customer, business and strategic outcomes.
• Takes ownership for design and implementation of risk policies and appetite to enable the Group to meet regulatory and operational risk objectives, providing consistent, fair outcomes for customers.
• Leads continuous review and enhancement of risk policies & appetite through the identification & assessment of emerging & growing risks, ensure policies and appetite reflect new opportunities or threats.
• Establishes continuous monitoring and reporting of the Group’s exposure relative to risk appetite, highlighting any significant deviations. Identifies and develops key risk indicators and key performance indicators to enable appropriate monitoring.
• Develops effective, ongoing data-led Operational Risk control objectives to meet the needs or risk and control owners, control specialist teams, Audit and external regulators.
• Supports control owners and specialists to implement control measures that are designed to achieve the control objectives, including advising on optimal implementations where appropriate. Regularly monitors and validates the effectiveness of the design of control measures to ensure they are achieving the control objectives.
• Leads the development and implementation of a risk and control oversight plan to assess compliance to relevant laws, regulations, industry standards and established controls.
• Interprets new operational risk regulation and emerging technology opportunities and threats accurately and adeptly. Forethinking the direction of travel and anticipating the impact of the proposed changes on the Group.
• Drives automation of risk and control measurement, monitoring, and reporting, in coordination with technology, data, and analytics teams, escalating and defining action plans in pursuit of sustainable risk management.
• Innovates, ensuring we are future fit: build scenarios for different approaches to risk management and strategies for controls that tackle emerging and horizon risks, with clear options and recommendations.
• Provides pragmatic advice to support informed key risk decisions and trade-offs (balancing commerciality and risk appetite), being bold to ‘call it’, and influence senior decision makers.

What will you need to bring?

• Has existing deep operational expertise aligned to IT Systems Risk across a Financial Service Group.
• Detailed knowledge of the key technology risks facing a financial services group, with a proven ability to assess and manage technology risk, set policy and manage compliance, design controls, provide assurance oversight and challenge, and offer advice balancing risk and reward.
• Experienced in the domain of technology, with applied knowledge across key elements including technology asset lifecycle management, technology configuration and build management, technology service management (including capacity, change, problem and incident management), technology architecture and design, engineering and application development (inc. devops), technology resilience, networking, cloud services and shared responsibility models (inc. native and microservices architecture), storage and databases, operating systems, virtualisation and containerisation, and mobile.
• Demonstrable curiosity and understanding of the emerging technologies shaping the risk landscape (inc. AI, Digital Ledger Technology, Quantum).
• A deep subject matter expert internally and externally with a strong depth of understanding of the latest Operational Risk frameworks and technology being used across financial and non-financial services to enable them to lead a specialist risk centre of excellence.
• Demonstrates expert knowledge of relevant laws, regulation, industry standards and established practice in technical subject area. Experience of developing and owning group level policy and setting risk-appetite, with expertise in continuous monitoring and reporting on group exposure. Able to set control objectives and set performance indicators.
• Demonstrates good and timely decision making that keeps the organisation moving forward and skilfully balances difficult trade-offs with the ability to understand business strategy and opportunity risks.
• Has examples where they have assimilated different sources of data and complex information to effectively problem solve and make relevant conclusions and recommendations.
• Demonstrates ability to interpret new operational risk regulation, emerging risks and technology innovations with forethinking to anticipate the impact of changes on the Group and act accordingly.
• Has acted as a Risk Specialist business partner, using strong communication skills to build partnerships and work collaboratively with others, including Risk Owner, Control Owner and Control Office to meet shared objectives.
• Able to work effectively with all other lines of defence and understands the different but complimentary roles. Seen as the primary Operational Risk specialist and expert across the Group to help deliver against aligned customer, business and strategic outcomes.
• Has examples of building effective, ongoing data-led Operational Risk control objectives working with others, including external regulators.
• Future focused by being able to conceptualise and articulate a customer centric desired end state that has clear line of sight to our Group Strategy.
• Inspires others by gaining followership and commitment to future action through personal integrity and collaboration; demonstrating an inclusive approach.
• Coaches to go faster by demonstrating commitment to create an environment that builds teams with skills aligned to our Group Strategy and Purpose creating new and better ways for the organisation to change at pace.

What’s in it for you?
You’ll have both opportunity and profile - we’ll provide you with a diverse, energising and lively environment that focuses on equal opportunity and real career progression in a leading digital organisation.
We’ll take your personal and professional development very seriously and enable you to make a genuine difference to millions throughout your career with us.

We also offer a wide-ranging benefits package, which includes:

• A generous pension contribution of up to 15%
• An annual performance-related bonus
• Share schemes including free shares
• Benefits you can adapt to your lifestyle, such as discounted shopping
• 30 days’ holiday, with bank holidays on top
• A range of wellbeing initiatives and generous parental leave policies

Our focus is to ensure we’re inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative, and it’s why we especially welcome applications from under-represented groups.
We’re disability confident. So if you’d like reasonable adjustments to be made to our recruitment processes, just let us know.
So if you have a desire to work in a challenging role in a dynamic environment, whilst gaining skills and experience within a friendly and motivated team then get in touch, we’d love to hear from you.
At Lloyds Banking Group, we’re driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you’ll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you’ll have many opportunities to learn, grow and develop.
We keep your data safe. So, we’ll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks. We’ll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person.
We’re focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference

• Leads a diverse team of risk specialists, coaching and inspiring them to drive optimal risk outcomes for our customers, in collaboration with a wider team of risk and control experts.
• Owns an effective policy and suite of control objectives to manage this risk type effectively across the Group. Owns the policy with complete traceability back to legal and regulatory requirements.
• Manages relationships with risk and control owners acting as primary Operational Risk specialist business partner, utilising their team to help deliver against customer, business and strategic outcomes.
• Takes ownership for design and implementation of risk policies and appetite to enable the Group to meet regulatory and operational risk objectives, providing consistent, fair outcomes for customers.
• Leads continuous review and enhancement of risk policies & appetite through the identification & assessment of emerging & growing risks, ensure policies and appetite reflect new opportunities or threats.
• Establishes continuous monitoring and reporting of the Group’s exposure relative to risk appetite, highlighting any significant deviations. Identifies and develops key risk indicators and key performance indicators to enable appropriate monitoring.
• Develops effective, ongoing data-led Operational Risk control objectives to meet the needs or risk and control owners, control specialist teams, Audit and external regulators.
• Supports control owners and specialists to implement control measures that are designed to achieve the control objectives, including advising on optimal implementations where appropriate. Regularly monitors and validates the effectiveness of the design of control measures to ensure they are achieving the control objectives.
• Leads the development and implementation of a risk and control oversight plan to assess compliance to relevant laws, regulations, industry standards and established controls.
• Interprets new operational risk regulation and emerging technology opportunities and threats accurately and adeptly. Forethinking the direction of travel and anticipating the impact of the proposed changes on the Group.
• Drives automation of risk and control measurement, monitoring, and reporting, in coordination with technology, data, and analytics teams, escalating and defining action plans in pursuit of sustainable risk management.
• Innovates, ensuring we are future fit: build scenarios for different approaches to risk management and strategies for controls that tackle emerging and horizon risks, with clear options and recommendations.
• Provides pragmatic advice to support informed key risk decisions and trade-offs (balancing commerciality and risk appetite), being bold to ‘call it’, and influence senior decision makers