This established insurance and lifestyle benefits provider are seeing to appoint a Head of Operational Resilience who will responsible for designing, developing, and embedding an operational resilience assurance framework within the Enterprise function.
Main Responsibilities
Support the Internal Audit & Assurance Director and CIO in ensuring that matters of operational resilience are fully addressed across the enterprise function and link into the programmes within the individual business units
Working with relevant Execs, provide OR expertise to assist with the development and maintenance of an inventory of important/critical services/transversal processes and the resilience requirements of these services
Identify the infrastructure (people, premises, technology, 3rd parties) upon which these services depend and ensure that inventories exist in which these dependencies are recorded.
Ensure the service resilience requirements are formally accepted by the in-house owners (i.e., accountable execs/managers) of the infrastructure services and assets upon which service depends.
Support a periodic attestation process from the executive owners of operational resilience/business continuity from each of the business units to confirm the proven adequacy of their operational resilience/business continuity plans
Organise and co-ordinate periodic testing of plans in a manner that simulates plausible failure scenarios and tests recovery/resilience
Attend and contribute to meetings to co-ordinate the group's response to incidents that have the potential to disrupt Important services. Maintain appropriate records of such meetings, including decisions and actions. Provide expert guidance to support the response.
Maintain an expert understanding of all regulatory matters pertaining to operational resilience as relevant to regulated business units and provide guidance and assurance when required.
Maintain active and frequent dialogue with all enterprise critical service owners to ensure operational resilience/business continuity remains an active consideration in their management of their functional areas.
Ensure that operational resilience/business continuity requirements are understood and factored into all change programmes, and that re-validation of OR/BC plans is an embedded consideration in the on-boarding of new or changed infrastructure. Design and implement suitable controls in association with the relevant service owner
Ensure that all Enterprise OR/BC risks are suitably recorded in a managed risk register
Respond to internal and external audit points related to OR/BC
Develop and maintain suitable metrics to track OR/BC status. Incorporate these metrics into other reporting packs as appropriate
As a member of the Audit & Assurance Leadership team, contribute as a senior leader to the wider agenda of the group
Advise the Internal Audit & Assurance Director and CIO on relevant Operational Risk matters, notably any emerging risks, any deterioration of risk position, any changes in regulatory expectations.
Supporting the CEO and Internal Audit & Assurance Director in delivery of the health and safety policy and provide assurance that employing company Directors will ensure health and safety is given suitable consideration and that board level decisions reflect the aims and objectives of the Policy.
Initiate and oversee a Health and safety programme across the organisation with the support of colleagues and key stakeholders acting as the ‘Competent Person’ in line with HSE expectations.
Manage health and safety risks at an enterprise level and supporting individual business units through guidance and assurance
Conduct awareness and training activities with the business regarding business continuity, crisis management, and health & safety.
Continually looking for innovative ways to design and develop systems and controls which are based on the latest trends and research
The Ideal Candidate
Excellent knowledge across operational resilience, business continuity and health & safety.
Knowledge across the following resilience disciplines: Business continuity, Incident and Crisis management, Technology Resilience, and supplier/vendor management
Deep and sound knowledge of the financial regulatory environment
Strong communication skills, both oral and written Can influence senior stakeholders.
Financial sector / regulatory experience is an advantage, with a sound understanding of insurance operations and risk and control environments.
Preferable to have a qualification from the British Compliance Institute or working towards one
Need to either have working experience of or qualifications in safety risk management.
