We are currently partnering with a Market Leading Speciality Insurer who operated within the Lloyd’s Market, to recruit an IT Risk Director. The successful candidate will have the opportunity to work closely with senior business leaders to drive enhancements and execute the company’s global risk framework.
Responsibilities include but are not limited to:
• Lead the quarterly risk review (QRR) and risk radar process for IT risk categories, engaging with key function leaders and control owners.
• Maintain and enhance the ICT Risk Framework, including the development and embedding of 2LOD IT risk policies and procedures.
• Draft IT risk inputs for Board, Committee, and Management reports across the Group.
• Oversee IT risk incident response and ensure timely coordination with Compliance, Internal Audit, and SOX stakeholders.
• Keep the IT risk register (Decision Focus) up to date, including risks, controls, and accountabilities.
• Collaborate with the first line of defence and non-IT business functions to ensure IT risks are reflected in broader risk management activities.
• Build and maintain strong relationships with senior IT and risk stakeholders across the organisation.
• Support training, risk policy reviews, and ensure wind-down (resolution) plans remain current and relevant.
The ideal candidate should have:
• University degree in a relevant field (e.g. Computer Science, IT, Mathematics, Science, or Economics); advanced degrees or certifications (e.g. CISA, CRISC, CISM) strongly preferred.
• 10+ years of experience in IT Risk, Audit, or Risk Management, ideally with exposure to the insurance industry.
• Strong knowledge of IT risk frameworks (e.g. NIST, ISO 27001, COBIT) and experience engaging with financial regulators across multiple jurisdictions (e.g. PRA/FCA, CBI, BMA).
