The Data, IT and Cyber Risk Team is part of the wider risk management function responsible for providing check and challenge to the first line over their risk profile.

As the new Senior Risk Manager – IT & Cyber Risk, you will provide an IT and Cyber risk second line opinion to the IT and Cyber first line risk champions over related risks (within Riskonnect) to ensure that first line work within their risk appetite.

Your responsibilities will include…

• The management of the IT and Cyber Risk Team and its delivery of the annual plan. this includes the line management of the IT and Cyber Risk Team across the Group and supporting any external resource
• Ensure that IT and Cyber risk management is aligned to the Group wider risk management framework, industry good practice standards and regulatory expectations, ensuring consistency in application across all 1LOD business and control functions.
• Support and manage the process to conduct IT and Cyber risk-based analytics in support of the risk appetite. Ensure that risk appetite and assessments are subject to clear documentation, challenge of key data and assumptions and governance processes.
• Working with First Line business areas to embed and maintain a robust and efficient process-driven RCSA (including risk and control interdependencies), providing Second Line of Defence support through a combination of RCSA deep dives and reviews, providing effective check and challenge, utilising collaborative workshops and ongoing relationship management.   
• Deliver second line oversight processes are operated as intended to ensure continued compliance to GDPR principles.
• Deliver the implementation and ongoing performance of the IT and Cyber risk framework so that it meets or exceeds the agreed level of capability maturity.

We offer a base salary dependent on experience from £68,000 - £80,000 and a competitive benefits package including:

• Enhanced family-focused benefits
• Hybrid-working
• Annual bonus opportunity

Please use this link to see the fantastic benefits available at OSB: OSB Careers

At OSB Group, we understand how much our people bring to our organisation, which is why we try our best to give back too! Our Purpose is to help our customers, colleagues and communities prosper and we are on a transformation journey to become ‘the bank of the future’.

Our commitment to professional development, flexible working, and employee well-being fosters a dynamic and supportive workplace.

We are looking for talented individuals who have the experience and knowledge set out below:

• Extensive experience of working in a similar senior manager role in IT and Cyber Risk, including creating and implementing robust IT and Cyber risk frameworks and procedures
• Robust experience of implementing appropriate and proportionate processes and procedures around IT and Cyber risk is essential.
• Strong specialist knowledge of IT and Cyber risk principles, IT and Cyber standards and regulation
• Intermediate multi-tasking skills are essential with the ability to prioritise tasks and manage time effectively

If this sounds like you, please apply now! For internal applications please visit the internal careers page to apply.

Still on the fence? Hear from our team or explore our process: OSB Careers

Shortlisted candidates will go through a personalised recruitment process, that is relevant and conversational – inclusive any individual reasonable support required. We want to bring out the best in you!

Diversity, Equity & Inclusion

Not sure if you meet the spec? Let us decide.

Research tells us that those from marginalised groups feel like they need to meet 100% of the criteria to apply. Here at OSB, we are committed to inclusivity and understand the value different experiences and perspectives can bring, so please don’t feel like you need to check every box to apply for a role internally.

We champion diversity at all levels, with Board-level Diversity Champions tracking our progress. We are proud to be signed up to the Women in Finance Charter to actively support the growth and development of senior women in our sector and are dedicated to treating all our employees and job applicants equally, opposed to discrimination on any grounds.