Job Descriptions

Summary of role:

This manager role is within Group Operational Risk where we perform Risk management for Operational Risk through the Operational Risk Framework and supporting policies, monitoring and reporting activities.

The Risk Function is an independent, second line of defence function that monitors, controls and supports risk-taking activities across AIB. The purpose of the Risk Function is to provide independent oversight and reporting on AIB’s risk profile.

The Operational Risk team is a second line risk function responsible for supporting the management of the Bank’s operational risks, working with all areas across AIB. This is undertaken by:

1. Review and challenge of AIB’s operational risk profile ensuring all operational risks are identified, managed, monitored and reported in accordance with the Bank’s operational risk framework.
2. Guidance & advice to the Board, CRO and other stakeholders in relation to Bank’s operational risks & emerging risks, trends, upstream horizon.
3. Championing the embedding of a robust risk culture where risks are understood and taken within risk appetite.
4. Utilising the opportunities arising from the execution of our strategic initiatives to challenge and protect the organisation and reduce operational risk while enhancing business value, security, and resilience.
5. A highly engaged, empowered, and agile team that can realise its potential and builds collaborative, open and co-operative relationships with all stakeholders to support the achievement of the Group’s objectives.

Key accountabilities for the role -

Principle Accountabilities:

• Provide independent oversight and challenge to senior business leaders in the first line of defence to ensure the effectiveness of the IT risk management framework and policy.
• Influences the development of the 1LOD I.T. Risk Strategy & Framework. Supports the Head of I.T. Risk to develop and rollout the 2LOD IT Risk Strategy
• Design, develop, test, monitor and report on IT risk, Controls, Appetite and overall risk profile and compliance with Frameworks in accordance with relevant regulations;
• Responsible for supporting the development of the risk appetite for IT Risk for the Bank. Perform oversight, monitoring and reporting on the IT Risk Appetite statements and tolerances;
• Ensure that the IT Risk priorities are delivered in accordance with AIB’s Risk Appetite;
• Influences business / functional plans, policy development and review. Translates business / functional plans into tactical objectives.
• Understand business processes, the I.T. risks inherent in them and the appropriate controls to mitigate those risks.
• Performing deep dives, thematic assessments and risk reviews across IT Risk - ensuring risk recommendations are accepted and delivered by 1LOD;
• Oversee the ongoing development of a reporting capability to analyse data, identify trends, draw conclusions, provide actionable insights, and complete reports and reviews for senior stakeholders.
• Responsible for preparing and documenting 2LOD challenge to 1LOD risk management papers. Effectively represent the independent 2LOD view of IT Risk at management risk committees, programme steering meetings, Group governance committees etc to ensure the right risks are being considered and proposed mitigating controls are challenged; and
• Reporting of any breaches of the IT Risk policy to relevant fora;
• Ensure all Operational Risk frameworks and policies are fully compliant with relevant recommendations and guidance from the relevant authorities and financial regulators, (e.g. EU, CBI, EBA, BCBS, PRA/FCA); and
• Oversight of the development of relevant support materials to assist with successful interpretation and implementation of relevant risk management frameworks & policies.
• Report to, engage with, and develop relationships with key senior stakeholders across the Bank
• Applies in-depth knowledge and expertise in situations that require significant degree of judgement
• Develop and maintain expert knowledge of emerging IT threats relevant to the Bank and in the wider industry.

Does this sound like something that you want to be part of?

You will need to show us that you can/have:

• Extensive experience operating at a senior IT risk management level in a financial services organisation.
• Min of 8 years’ experience in an engineering, software development or infrastructure role with relevant IT qualifications such as CRISC.
• Have a proven understanding and demonstrable experience of IT risk management in the financial services at a senior level.
• Effective relationship management, communication and influencing skills both written and verbal at senior levels.
• Has experience developing and applying IT risk principles, tools and techniques in managing IT risk.

Skills

• Communication Skills
• Influential Skills

Experience

• 8 years