IT Risk and Assurance Manager

**Job Description**:
IT Risk and Assurance Manager

12 month Fixed Term Contract

Manchester/ Staines/ Brighton

Hybrid Working Options

Full time (37.5hrs pw)

£70,000 - £80,000 (dependant on location) + Excellent Benefits

Here you'll be welcomed. We champion diversity and we understand the importance of our people representing the communities and customers we serve. You'll find an inclusive environment where you can be yourself and where everyone is driven by the same purpose - helping people live longer, healthier, happier lives and making a better world.

Working in our UK support functions you'll play a key part in helping our customer facing colleagues deliver exceptional standards of customer service and patient care. No matter your role, you'll have an opportunity to do work that matters. Making a difference to the lives of our customers each and every day.

Role Overview

For this 12-month FTC role, we are specifically interested in individuals with a recent practical appreciation of strategic technology delivery and architecture, with sufficient expertise to challenge technology managers in detail about the viability and merits of proposed solutions.

The IT Risk and Assurance Manager role is responsible for leading work to implement the risk management framework across a wide range of information technology related risks affecting the UKI and BGBU business, including Information Security, technology failure, information governance, cyber, data protection, privacy, and business continuity, so that the business operates within risk appetite. Within this framework, they will lead the oversight and challenge of IT related risks across both business as usual activity, projects, and other developments.

The IT Risk & Assurance Manager is part of the IT Risk & Assurance team and reports into the Head of IT Risk & Assurance. The role will lead a range of specific risk oversight tasks across different areas of UK Insurance and BGBU. The role will build positive and open relationships with wider IT community and with other business areas where these risks manifest.

What You'll Do:
IT Risk
- Work closely with the appropriate Information Systems (IS) and business teams to foster a high-achieving, well-controlled organisation which can achieve growth targets safely
- Develop, maintain, and promote the information risk and resilience components of the appropriate Risk Management Framework (RMF) including risk appetites, emerging risks and incident capture and analysis
- Support management in other functions to enhance risk management practices in the related areas of Information Risk and Cyber Security;
- Support the effective operation of technical committees and Risk Committees (e.g. RE ERC and RERC), operating to a three lines of defence risk management model
- Provide second line oversight and challenge. In particular, second line oversight should include close engagement and challenge at relevant IT, data security, privacy, and business continuity committees and on project boards which deal with related content

Culture
- Promote a culture that prioritises good customer and regulatory outcomes across BINS/BISL
- Foster a positive culture of confident and informed risk-taking through training, communication, and promotion of the agreed risk framework
- Serve as a role model for high personal and corporate ethical values, standards of integrity and commitment to fair customer outcomes

Planning & Performance
- Deliver to the Enterprise Risk team annual plan
- Develop an accurate view of the business IT risk profile and the effectiveness of risk control activities through the Internal Controls & Risk Management Assessment (ICRMA) process
- Contribute insight on financial and insurance risk to the annual business planning process and other strategic business decisions
- Not an exhaustive list of responsibilities_

What You'll Bring:

- Experience of leading or materially contributing to IT Strategy, IT Project delivery and technology architectures.
- Exposure to IT risk management and associated governance frameworks, methodologies, and emerging practice, with a desire to develop a deeper appreciation of this topic
- Skilled communicator and report writing with the ability to influence and motivate others
- Experience of financial services regulatory environment and key regulatory regimes
- Experience of working at senior levels and able to present, influence and to advise senior management including boards

Why Bupa?

We are a health insurer and provider. With no shareholders, our customers are our focus. We reinvest profits into providing more and better healthcare for the benefit of current and future customers.

Our benefits are driven by what matters to our people. It's important to us that these benefits support a work-life balance that keeps people healthy, both mentally and physically. You'll be eligible for:

- 25 days holiday per year, pro rata to your contract.
- Access to a range of services t