Senior GRC Technical Consultant - Controls Manager

at  Nationwide

Nationwide are looking for an Information Technology GRC tooling specialist to join our Information Technology Policy, Governance & Control Team, supporting the use of ServiceNow Integrated Risk Management (IRM) Product.
You’ll be passionate about exploiting system capabilities to automate, simplify and improve essential risk and control management processes, standardising and rationalising across policy areas. This includes finding workable solutions to complex ambiguous problems with a strong attention to detail.
Ideally you are a control specialist working in governance, risk or control, preferably working with the ServiceNow Platform, or you will bring extensive experience of using other GRC tools to provide data driven continuous compliance monitoring.

You are equally likely to be one of the following:

• A process specialist with extensive knowledge and experience of embedding robust processes and automation to enable standard repeatable control outcomes.
• A risk expert in first or second line with extensive experience of controls embedding and evidencing compliance in complex technical environment across a central and federated model.
• A policy compliance manager with extensive knowledge of controls monitoring, establishing key control metrics and meeting regulatory requirements including European Bank Authority (EBA) guidelines.

You’ll have a track record of delivery, with high standards of performance and be able to build trust and strong working relationships.
You’ll be confident presenting to any audience and eloquent in the way you explain governance, risk and control using words and terms that people understand.
You’ll proactively develop your skills and knowledge in a practical way.
The role is within the Information Technology Policy, Governance and Control team, responsible for designing, maintaining and using the ServiceNow IRM technical capability as we mature our risk and control processes.
This is an additional role in a small team who are leading the use of IRM for the Information Technology and Information Security policies. This requires delivering to an agreed set of priorities across multiple senior stakeholders to challenging deadlines. The role will also help define the ServiceNow IRM product roadmap for the Chief Operating Officer in the ongoing exploitation of the IRM capabilities.
At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.
For this job you’ll spend at least two days per week, or if part time you’ll spend 40% of your working time, based at Nationwide House, Swindon office. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid working here.
If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

ABOUT YOU

• A detailed understanding of control compliance principles and methodologies coupled with practical experience of implementing and or using automation through ServiceNow Integrated Risk Management (IRM). Specifically, Policy & Compliance, Risk Management and Operational Resilience modules. Or you will bring extensive experience of using other GRC tools to provide data driven continuous compliance monitoring.
• Practical experience with IT and or Cybersecurity risk frameworks such as CoBIT 2019 or NIST or a certificate in Institute of Risk Management
• Experience of acting as a trusted advisor to senior management, able to constructively challenge, manage conflicts and influence stakeholders at varying levels both individually and collectively in decision forums.
• Strong determination and self-belief to continuously improve the effectiveness and efficiency of GRC activities, ensuring that decision making activities and reporting adds value to the business and enables improved flow of work.
• Analytical / creative skills to resolve complex problems and/or establish alternatives where established processes may not exist.
• Excellent facilitation, communication and influencing skills.
• Strong emotional resilience and able to adapt to frequent organisational change.

Our Customer First behaviours are all about putting customers and members at the heart of how we work together. You can strengthen your application by showing the behaviours that resonate with you, and how you might have already demonstrated these.

• Say it straight - This is about being honest and direct with good intent and saying what needs to be said in the room. It’s also about being clear, precise, and using language that we and, importantly, our customers and members can understand.
• Push for better - This is about aiming high and constantly looking for better in how we work together and serve our customers and members.
• Get it done - This is about prioritising what will have the greatest impact, being decisive and taking accountability for delivering on the end-to-end outcome.

We know applying for jobs can sometimes feel like you’re sending an application into a black hole. We review each application individually. So, it’s a good idea to call out your most relevant experience on your application to give yourself the best chance.

You will support the design, development, and continuous improvement of ServiceNow IRM functionality through close collaboration with multiple teams across policy areas and the three lines of defence.
You’ll support the development of automated controls using indicators in ServiceNow IRM.
You will be curious and champion the functionality of ServiceNow IRM capabilities through self-exploitation of features, ensuring automation is built into the way we work.
You’ll support and coach colleagues in the ongoing use of ServiceNow IRM, enabling a self-serve culture.