Technology Risk Oversight Senior Analyst, Risk and Brand Protection


Technology Risk Oversight Senior Analyst, Risk and Brand Protection

Salary Not Specified

Deloitte, Edinburgh

  • Full time
  • Permanent
  • Remote working

Posted 1 week ago, 10 Jul | Get your application in now before you miss out!

Closing date: Closing date not specified

job Ref: 0a21a054a6374453abbca6556d826084

Full Job Description

  • Align with the firm's technology risk management strategy to actively contribute to the development of best practices, based on research and industry best practices in regulatory and risk governance matters.

  • Gain awareness of new and emerging technologies being deployed and assist the firm in strengthening internal controls and improving technology risk management and business performance.

  • Demonstrate and encourage an agile mind set to enable effective IT risk management while driving adaptability to ongoing changes in technologies, risks, regulations, and stakeholder expectations.

  • Gain awareness of implementable risk governance methodologies and programs that deliver on stakeholder expectations and support the strategic and annual planning processes with a focus on maturing the Technology & Cyber Risk Management capabilities.

  • Operational
  • Support the first line of defense technology risk policy review processes.

  • Fulfill activities to determine the effectiveness of technology controls mitigating key technology risks, support the identification of control enhancements in end-to-end processes, provide challenges on remedial actions, and share insights and best practices with relevant business units as a proactive measure to reduce the likelihood and impact of future risk events.

  • Demonstrate and apply strong project management skills, inspire teamwork and responsibility with team members, and use current technology and tools to enhance the effectiveness of deliverables and services.

  • Support assessment activities through remote or onsite assessments with various subject matter experts.

  • Support initiatives to educate technology functions on technology risk management requirements according to regulatory requirements, firm policy, data classification, client commitments, etc.

  • Demonstrate and apply a working understanding of technology trends to identify issues and communicate this information to the management team through written correspondence and verbal presentations.

  • Work alongside project managers to:

  • Document results of the work performed

  • Review deliverables for completeness and accuracy

  • Assist with preparing team operational schedules and cost estimates

  • Provide additional project management and administration support to management and leadership, as required

  • Perform other job-related duties, as assigned.

  • Relationship Management
  • Build strong relationships with key internal stakeholders and relevant first line of defence Technology Risk Management, technology teams, and member firms, as needed.

  • Maintain regular communication with the management team, including escalation of findings, where applicable.

    Basic knowledge of significant security and privacy laws and regulations in the Americas, Europe, Middle East, Asia, Africa, and Oceania is preferable (e.g., GDPR).

  • Working knowledge in two or more of the following IT and risk domains: cloud hosting, infrastructure, cyber security, secure SDLC, service management, data protection, privacy, IT risk management, maturity assessments, third-party risk management.

  • (Cloud, RPA, Artificial Intelligence) and ways of working (Agile/SAFe) in the context of applicable regulatory requirements and IT delivery model.

  • Experience in developing and applying standards, principles, methods, and supporting IT risk governance practices in a medium-scale to large-scale Information Security, Technology environments.

  • Analytical and problem-solving mindset; demonstrated ability to synthesize large amounts of data in short periods of time for consumption by multiple stakeholders.

  • Effective relationship-building, communication, presentation, and interpersonal skills.

  • Highly disciplined, with strong organizational abilities.

  • Ability to multi-task, prioritize work and work independently.

  • Possess exceptional level of integrity and customer focus.

  • Connect to your business - Enabling Functions

    Collaboration is central to everything we do at Deloitte. Bringing your individual skills and experience, and sharing your specialist knowledge, is how you'll make a far-reaching impact. Come join us.

    Global Risk & Brand Protection protects, preserves and enhances the Deloitte brand. We navigate the dynamic risk landscape across the areas of risk management, confidentiality & privacy, cyber security oversight, regulatory, independence & conflicts, and Anti-Corruption/financial crimes. We foster trusting relationships across the Deloitte network through collaboration, facilitation and responsive guidance.

    Connect to your career at Deloitte

    Deloitte drives progress. Using our vast range of expertise, that covers audit, risk advisory, and consulting services across tax, legal, business, technology and corporate finance, we help our clients become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more.

    What brings us all together at Deloitte? It's how we approach the thousands of decisions we make every day. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most., Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints (e.g., in relation to any financial interests and employment relationships). This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm, and also prohibitions on certain employment relationships (e.g., you are not permitted to hold a secondary employment role with SEC audit clients of the firm whilst being employed by the firm). The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request.

    Connect with your colleagues

    "The amount of investment in me in terms of training and development has been incredible - it has undoubtedly helped me to progress my career."
  • Jim, Enabling Functions

  • Our hybrid working policy

    You'll be joining one of our innovative virtual communities based in one of our UK locations, with hybrid working. Our hybrid model enables our people to collaborate, connect and innovate in both an online and physical capacity. As well as remote working, you'll attend virtual collaboration spaces and client sites, depending on the requirements of the role.

    At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role.

    Our commitment to you

    Making an impact is more than just what we do: it's why we're here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before.

    We want you. The true you. Your own strengths, perspective and personality. So we're nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we'll take your wellbeing seriously, too. Because it's only when you're comfortable and at your best that you can make the kind of impact you, and we, live for.

    Your expertise is our capability, so we'll make sure it never stops growing. Whether it's from the complex work you do, or the people you collaborate with, you'll learn every day. Through world-class development, you'll gain invaluable technical and personal skills. Whatever your level, you'll learn how to lead.

    Connect to your next step

    A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you'll experience a purpose you can believe in and an impact you can see. You'll be free to bring your true self to work every day. And you'll never stop growing, whatever your level.

    Discover more reasons to connect with us, our people and purpose-driven culture at