28 Oct
Luvo
The Rocks
As Line 1 Risk Manager you will identify risks associated with the day to day operations, processes & activities withing the technology business unit
As a Line 1 Risk Manager you will be responsible for managing and mitigating technical risks within the Technology Business Unit according to the organisation’s Risk appetite within technology.
Individual Accountabilities
- Assess and identify risks associated with day to day operations, processes and activities within the technology business unit
- Establish a continuous monitoring process to manage new or evolving technology risks that could impact the organisation including assessing the risk severity and likelihood, and ensuring effective risk mitigation strategies are implemented
- Regularly review and test controls to ensure there is effective risk mitigation in place
- Provide regular detailed reports listing all identified risks, escalating areas where risk assessment is pending, provide visibility of risk exposure and provide confidence of mitigation plans to senior management and executive stakeholders
- Define and maintain risk heatmap demonstrating movements of risk and proving the effectiveness of risk mitigation plans, or escalating where risk mitigation is inadequate
- Accountable as the governing body to enforce adherence to risk controls, escalating to Line 2 risk and CTO where controls are not being adhered to
- Provide training and awareness training programs for technology staff on risk management practices and policies
- Assess technical risk for hot patches for incident resolution.
- Implement governance of technical risk management, embedding risk approvals within release management processes,
driving accountability for technology team to address risks identified
Qualifications and Experience
- 5+ years experience in technology risk
- Proven experience in risk and control management practices including in-depth knowledge of risk frameworks
- Experience in the execution of risk management activities including risk identification, risk assessment and control assurance activities
- Experience in developing and enforcing technical risk controls, guidelines and processes
- Knowledge of industry standards for engineering controls, including security controls applicable to managing code reviews via GitLab or GitHub.
- Strong communication and negotiation skills with the ability to influence a wide range of stakeholders including technical leads, solution architects,
enterprise architects and Engineering teams, as well as C-suite executives
- In-depth knowledge of ISO27001 controls as they relate to software development including infrastructure.
If you have worked in a similar role and are interested hit the apply now role now and one of our consultants will give you a call.
Please note that this role is only available for people who work in Sydney and have full working rights.
▶️ Risk Manager
🖊️ Luvo
📍 The Rocks