Technology Risk & Controls Manager

About Allica Bank

Allica is the UK’s fastest growing company - and the fastest-growing financial technology (Fintech) firm ever. Our purpose is to help established SMEs, one of the last major underserved opportunities in Fintech.

Established SMEs are the backbone of local communities - representing over a third of our economy - yet have been largely neglected both by traditional high street banks and modern fintech providers.

Department Description  

This role sits within the Controls function, reporting to the Head of Controls. You will be an integral part of an action orientated, fast moving team, responsible for successfully delivering First Line of Defence capability within the bank.     

Role Description 

• Partner with the Technology business area to embed the Risk Management Framework, including policies and procedures. 

• Provide expert input into the design and operation of the technology control framework, including data management, working with stakeholders across Technology to ensure that controls are documented and embedded. 

• Provide expert input into the vendor management framework, supporting the Vendor Management Team to develop and embed controls to ensure effective management of vendors in line with regulatory requirements. 

• Testing of existing and new key controls in line with agreed schedule, informing the non-financial risk profile and required management actions.  

• Support the operational resilience programme, with a focus on technology resilience, feeding into scenario planning and testing. 

• Support the coordination and facilitation of the bank’s Risk and Control Self-Assessment (RCSA) and administration of the bank’s annual RCSA refresh. 

• Support the capital calculation for Operational Risk as part of the ICAAP, including scenario analysis. 

• Hands on support in the update of risk information on the bank’s Risk systems, including ensuring risk events and issues are appropriately raised and managed. 

• Assembling informed quantitative and qualitative input into First Line Risk Reporting at relevant committees and conducting deep dive reviews into areas of thematic risk. 

Principal Accountabilities 

• As the Risk Business Partner for Technology, provide hands-on Risk support from a First Line Controls perspective. 

• Partner with the business to ensure ongoing active management of risk and embedding of the Risk Management Framework, including RCSA, risk events, issues, KRIs. 

• Support the development of the technology control framework, including data and vendor management. 

• Provide First Line assurance over key controls, through control testing and supporting operational resilience assessment and testing. 

• Deputise as required at meetings for the Head of Controls. 

• Support the ongoing monitoring and reporting of risk through relevant governance, conducting analysis and reporting on key areas of risk, including internal and external reporting.  

• Help promote a risk-focused culture across the bank, embodying Allica’s values. 

Personal Attributes & Experience 

• Strong Risk knowledge and experience including RCSAs, Controls and Risk Libraries, risk event reporting,  

• Expertise in technology control frameworks and vendor management standards.  

• Knowledge of ISO27001 and SOC2 type controls would be advantageous. 

• Knowledge of relevant non-financial risk regulatory requirements, e.g. on Operational Resilience, Outsourcing is desirable.  

• Hands on experience of assurance/monitoring of risks and controls across non-financial risk disciplines  

• Willing to be very hands-on and ability to adapt quickly to the workflow in support of the Controls team, with focus on delivering results and meeting deadlines. 

• Strong written and presentation skills, supported by experience of communication across different levels of seniority. 

• Ability to provide necessary challenge in a constructive manner. 

• Strong team player, with focus on ongoing development to support meeting objective of the team. 

• Overall, 10-12 years of experience in operational risk management, RCSA administration and ICAAP compliance with deep expertise in internal controls. 

• Proven experience in developing and overseeing vendor risk management frameworks including 3rd party risk assessment, ongoing monitoring and compliance. 

Working at Allica Bank

At Allica Bank we want to ensure our employees have the right tools and environment in which to succeed in their role and in support of our customers.

Our employees are at the heart of everything we do, so our benefits are designed with you in mind:

• Full onboarding support and continued development opportunities

• Options for flexible working

• Regular social activities

• Pension contributions

• Discretionary bonus scheme

• Private health cover

• Life assurance

• Family friendly policies including enhanced Maternity & Paternity leave

Don’t tick every box?

Don’t worry if you don’t have all the skills or requirements listed on the job description. If you think you’ll be a good fit, we’d still love to hear from you!

Flexible working

We know the ‘9-to-5’ isn’t right for everyone. That’s why Allica Bank is fully committed to flexible and hybrid working. Please let us know what is best for you and, if we can, we will do our best to accommodate.

Diversity

We’re a diverse bunch here at Allica, with all kinds of experiences, backgrounds and lifestyles. Our openness and differences make us stronger, and we want everybody to feel comfortable bringing as much of themselves to work with them as they like.