Business Unit: Business Management & Control (Technology Operations & Cyber Security, COO)
Salary range: Min: £44,000 - £63,000 per annum DOE + red-hot benefits
Location: Hybrid - Very occasional and infrequent travel to a local hub when required.
Contract type: Permanent - Full Time
Live for the weekday. Live a life more Virgin.

OUR TEAM:

The overarching ambition for COO remains – leverage the power of technology to deliver superb products and services for our customers. Technology Operations & Cyber Security (TOCS) plays a critical role in that pursuit, specifically, protecting our organisation and its critical data from cyber criminals as well as managing all technical services used by colleagues and customers alike.
Business Management and Control (BM&C) ensures TOCS is effective and fit for purpose in this ambition by leading the way in Financial Planning & Management, Third Party Management, Risk & Control, People & Engagement and Insights & Reporting.
We are seeking a highly skilled and motivated Technology Control Lead to join our team, reporting directly to the Technology Control Manager. In this role, you will support the Technology Control Manager in maintaining the technology operations and cyber security risk and control profile. You will be responsible for ensuring robust risk and control governance, managing currency and resilience risk, and conducting comprehensive risk and control assessments. Your insights and analysis will be crucial in driving our risk management strategy.

WHAT YOU’LL BE DOING:

• Supporting the Technology Control Manager in maintaining the TOCS risk and control profile within the Integrated Risk Management system and in line with VM Risk Management Framework.
• Oversee risk and control governance, ensuring compliance with relevant standards and regulations.
• Manage currency and resilience risk to ensure the stability and reliability of our technology infrastructure.
• Conduct thorough risk and control assessments, providing detailed insights and analysis.
• Perform independent control testing and validation to ensure the effectiveness of risk controls.
• Manage and validate risk issues, ensuring timely resolution and mitigation.
• Oversee risk event management, including identification, assessment, and response.
• Develop and deliver risk education and awareness programs to enhance the risk culture within the organization.
• Collaborate with all lines of defence and key stakeholders to ensure a cohesive and comprehensive approach to risk management.

THIS ROLE REQUIRES A UNIQUE BLEND OF TECHNICAL SKILLS AND EXPERIENCE, WE’LL NEED TO HAVE:

• Proven experience in technology risk management and control.
• Strong understanding of cyber security principles and practices.
• Excellent analytical and problem-solving skills.
• Ability to work collaboratively with cross-functional teams and stakeholders.
• Strong communication and presentation skills.
• Relevant certifications (e.g., CISA, CISSP, CRISC) are a plus.