Descripción de la oferta
Global Head of Operational ResillienceEbury Madrid Office – Hybrid: 4 days in the office, 1 day working from home per weekThe Global Head of Operational Resilience is a strategic leadership role responsible for safeguarding Ebury’s technology, security, and digital assets. Acting as a key second line of defense, you will ensure effective integration of Operational Resilience into the overarching second line Risk Management Framework, including alignment with DORA, PS21/3 (UK), Third-Party Risk Management, and Incident & Crisis Management expectations.You will own, manage and control Technology Risk and Resilience mandates, metrics and all internal processes for the Ebury globally.Manage and continuously improve the Ebury’s Information Technology (IT) Risk Management through oversight of technology, security, and data risks and controls aligned with ISO 27001 and related to the company's business processes and IT assets.Oversee enterprise-wide implementation and adherence to the Digital Operational Resilience Act (DORA) and PS21/3 (UK), incident and crisis management.Ensure all vendor contracts strictly incorporate DORA-mandated provisions, security expectations, and exit strategies.Conduct ongoing due diligence and continuous risk assessments of critical or important functions (CIFs) outsourced to third parties.Provide independent oversight of the Group Security function, ensuring that the firm's cybersecurity posture is aligned with industry frameworks.Challenge, assess, and assure the effectiveness of security controls (identity & access management, encryption, and vulnerability management), review and report incidents.Business Process Management mapping across all geographies, management and review of the 200+ business processes.Direct enterprise-wide operational resilience initiatives to ensure the firm can withstand and recover from severe disruptions or cyberattacks.Oversee annual digital operational resilience testing programs (e.g., threat-led penetration testing, vulnerability scans).Chair the Digital and Operational Resilience Committee, IT Risk Management Committee, and Outsourcing and Third Party Risk Management Committee.Develop metrics and reporting for the CRO and Board to keep them apprised of key technology, security, resilience and TPRM risks and material controls.Prepare evidence and lead interactions with regulatory bodies, supervisory authorities, and internal/external auditors in relation to Technology Risk and Resilience.QualificationsAt least 10 years of leadership experience in Operational Resilience, Technology Risk, or Technology Audit, ideally within a financial services environment.Experience in Risk Management in an Operational Resilience context.English language proficiency required.Experience in Financial Services and/or Auditing an advantage.Finance, Accounting, Risk Management, Audit accreditations or certifications an advantage.Strong problem solving and quality focus.Strong project and programme management skills.Drive, adaptability and delivery focus.BenefitsCompetitive starting salary with an annual discretionary bonus that truly rewards your performance from day one.Dedicated mentorship: Learn directly from experienced managers who are invested in your success.Cutting-edge technology: Leverage state-of-the-art tailor‑made tools and systems that enable you to perform at your best.Clear, accelerated career progression: Defined pathways to leadership and specialist roles within Ebury.Dynamic & supportive culture: Work in a collaborative environment where teamwork and personal growth are prioritized.Generous benefits package: Access competitive benefits tailored to your location, which typically include health care and social benefits.Central office: A fantastic location with excellent transport links.
#J-18808-Ljbffr