IT Risk Manager

Job Purpose

⦁  Maintain the IT Risk and Resilience practice which is responsible for developing, maintaining and applying an overarching holistic framework for IT Risk
⦁  Work across a broad range of stakeholders within IT and the broader business, acting as an ambassador for IT Risk 
⦁  Develop active engagement across all IT teams to increase Risk and Resilience awareness and understanding 

What you’ll need to do the role 

 ⦁  Identifying, analysing and prioritising key areas of IT risk as well as articulating the impacts they may present to the easyJet business in order for informed, conscious decisions to be made.
⦁  Interfacing with technical and non-technical stakeholders within easyJet to build and maintain valuable and productive working relationships and ensure that the benefits of managing IT Risk to the business are demonstrated. 
⦁  Supporting the Internal Audit process including understanding and articulation amongst IT stakeholders of key IT risks underlying in any resulting actions.
⦁  Maintaining risk artefacts (e.g. IT Risk Register, Bow Tie Risk Reporting etc.) to demonstrate the effects of managing IT risk (both via tactical and strategic planning).

⦁  Facilitating risk workshops to support the identification and assessment of risks and controls
⦁  Providing IT risk SME advice, oversight and challenge to facilitate and drive action plan accountability for decreasing and mitigating risk.
⦁  Coordinating the accountable risk owners to ensure mitigation activities are managed, effective and aligned with easyJet requirements.
⦁  Business Performance - Understands business and external environment, is cost conscious and understands the longer term perspective and implications of decisions.

Skills & Experience
⦁  Ability to clearly identify, assess and express risks, relating them to the wider business context.
⦁  An understanding of risks and controls relating to the governance and management of IT as well as the technology itself
⦁  Excellent stakeholder management, negotiation and collaboration skills
⦁  Be confident in presenting the IT risk position and recommendations to both an IT and business audience
⦁  Sound judgement, decision making, planning, organising and problem solving in high pressure situations 

Desirable Skills 

⦁         Experience in the travel sector
⦁  Understanding and practical experience of applying IT management/governance frameworks (e.g. COBIT, IT-CMF)
⦁  Knowledge of the bow tie risk framework 
⦁  Knowledge of the legal and regulatory environment within which easyJet operates as well as specific relevant regulations and standards such as NIS, GDPR, PCI DSS etc.
⦁  Knowledge of topic-specific framework & methodologies in areas such as IT management (e.g. COBIT) Information Security (NIST, ISF, ISO 27001), Service Delivery (e.g. ITIL) etc.

What you’ll get in return 

·Competitive base salary 

·Up to 20% bonus 

·25 days holiday 

·BAYE, SAYE & Performance share schemes 

·7% pension 

·Life Insurance

·Work Away Scheme

·Flexible benefits package 

·Excellent staff travel benefits