Graduate-Risk and Controls Analyst

  • 30,000-40,000
  • Glasgow, Scotland, United Kingdom
  • Permanent, Full time
  • Headstrong Worldwide
  • 15 Feb 18 2018-02-15

The mission of the Global Technology Department is to provide a highly reliable and commercial technology platform, which supports the Firm’s strategy, delivered by an innovative, world-class team of professionals. Technology & Information Risk (TIR) is part of the Global Technology organization. Its mission is to enable proactive, comprehensive, and consistent technology and information-related risk management practices across the Firm and to protect Firm information, systems, and associated infrastructure from Cyber Threats.

Primary Responsibilities:

The Risk and Control Specialist will be part of the Risk and Controls Self-Assessment (RCSA) team within the Global Risk Governance department that interfaces globally with Risk Officers, subject matter experts, business representatives, and the Operational Risk Department. The team is responsible for the operation and oversight of the annual Technology RCSA program, which is an integral part of the Firm’s overall operational risk framework. The applicant will be a key contact for all Technology RCSA related work items and will also be involved in working towards a strategic plan for the Tech RCSA in 2018 and beyond.


The applicant should be a self-starter, with proven prior risk and control knowledge and experience. As well has having excellent communication and the ability to liaise and interact with individuals at all levels of the organization.

The responsibilities of the role include:

  •         Deliver and operate the objectives of the Risk and Control Self-Assessment program specifically for the Global Technology division
  •         Provide guidance and assistance to all Technology RCSA coordinators with tool usage, centrally submitting risks and controls and escalating any technical issues
  •         Conduct quality assurance reviews over the risks and control submissions in the RCSA tool and providing feedback to coordinators
  •         Generate meaningful reporting & metrics to present to the Assessment Program Lead, Senior Management and the Operational Risk Department
  •         Maintain and update PMO artifacts for the Global Risk Governance Assessments Team
  •         Build strong, positive relationships with the Technology Risk Officer community, the Operational Risk Department and the wider Global Risk Governance team
  •         Assist with strategic planning for 2018 and the development of future state proposals

−required to agree any required actions and present status updates

Required Skills

−1-3 years demonstrable experience in Risk Management practices and/or technology risk and control assessments or programs

−Strong aptitude for IT and understanding of technology concepts and terminology

−Strong data analysis skills with expert knowledge of MS Excel (pivot tables, advanced formulae etc.)

−Proven written and verbal communication skills - to the level of being able to interact directly with department senior management

−Ability to think strategically, see the ‘bigger picture’ and have excellent critical thinking and problem solving skills

−Organizational skills as reflected through a methodical/organised approach to ensure timelines are met and the ability to manage multiple tasks simultaneously

−Proactive self-starter who can identify opportunities for improvement and operate autonomously

Desired Skills

−Working knowledge of Technology applications and infrastructure (e.g. Server, network, platform desktop environment) and how they are used in large organisations

−Experience of working in an Investment Banking environment

−Project experience delivering tools/data management solutions

−        Industry recognised certifications such as CISSP, CISA, CRISC, PRINCE2