AVP - Technology Control Manager - RFT Function

This role is within the Technology CCO for Advisory and Oversight function.

- The primary focus of the role will be to provide the advisory and oversight support for the Controls team in providing business-unit aligned regional coverage of the quantification and delivery of a highly visible, business focused and pragmatic Technology Controls agenda to ensure compliance with Barclays technology policies, standards, frameworks and procedures.

- This will require the successful candidate to maintain healthy engagement with key stakeholders within the Technology, Technology CCO, CSO (Chief Security Office) and relevant Business Units, as well as stakeholders external to Technology such as Internal Audit, External Audit, Compliance, Regulators of Barclays Group.

What will you be doing?

- Conduct technology proactive risk identification, risk assessment, risk mitigation, response, and risk reporting across the relevant business units/transaction cycles within the Technology business to operate within risk appetite and in compliance with Barclays Control Framework.

- Supporting Lead CBP in risk and control assessments and preparing Risk assessment reports/presentations for the senior management

- Risk reviews including internal and external events such as Regulatory actions & penalties, regulatory changes/breaches and emerging threats. Carry out proactive risk assessment to analyse Barclays Controls environment & preparedness and recommend remediation for identified gaps

- Support the Tech CBP lead in preparing Technology Operational Risk metrics, assessments, and reporting which are backed by correct data and that effective risk management is demonstrated

- Advisory and oversight for Technology caused risk events and resulting issues / actions

- Ensure appropriate security policies and controls are in place that will safeguard bank's digital information and electronic systems.

- Promote awareness of applicable technology and security policies, standards and procedures

- Support to maintain an effective risk culture

What we're looking for:

- Bachelor's degree in Computer Science and equivalent work experience in relevant industry with strong background in risk management, technology and information security

- Experience in assessing design and operating effectiveness of technology controls

- Experience of a project environment, in particular planning, testing, and tracking against a plan

- Experience in leveraging IT risk frameworks such as COBIT5, COSO, NIST

- Hands-on experience of information technology risks, controls and risk remediation and experience using industry wide GRC tools

Skills that will help you in the role:

- Experience in playing a role in:

- Review of Audit findings, self-identified issues and breaches to align them with operational risk, regulatory requirements and Barclay's Control Framework

- Advising IT on pragmatic approaches to meeting regulatory mandated technology controls and risk reduction

- Relevant professional certification such as CISA, CISSP, CISM, PMP, CRISC or equivalent

Where will you be working?

Noida