Technology Risk & Resilience Manager (Second Line) job opportunity at MUFG Investor Services.

Home Jobs In United Kingdom Tag: Job Technology Risk & Resilience Manager (Second Line) position at MUFG Investor Services


Date2026-02-17T17:28:31.044Z bot
MUFG Investor Services Technology Risk & Resilience Manager (Second Line)
Experience: General
Pattern: Full-time
Country:
apply Apply Now
Salary:
Status:

Job

Copy Link Report
degreeAssociate
loacation London, England, United Kingdom
loacation London, Englan..........United Kingdom
Auto GPT Summarize Enabled
Job DescriptionWe're looking for an experienced Technology Risk & Resilience Manager to join our second line risk in London, United Kingdom or Dublin, Ireland. In this pivotal role, you will:Provide independent second line oversight and credible challenge of Technology Risk (Information Technology and Information Security) within the firm, ensuring effective integration of technology risk into the overarching second line Risk Management Framework, including alignment with DORA, third-party risk, and service resilience expectations.The role will not own or operate technology risk controls, but will assess, challenge, and provide assurance over how technology risks are identified, managed, and reported by the first line.Key Roles & ResponsibilitiesSecond Line Oversight & Framework IntegrationDefine and embed Technology Risk (IT & Information Security) appropriately within the Operational Risk Taxonomy and Framework, ensuring clear, documented delineation of 1LOD vs 2LOD accountability in line with company’s governance models.Provide independent 2LOD oversight of the Technology Risk Management Framework, assessing its alignment and interdependency with first-line control frameworks (e.g. Third-Party Risk Management, IT Controls, Cybersecurity, etc.) and ensuring coherence with second line Operational Risk and Resilience frameworks.Support the maturation of a consistent service-based view of technology risk by challenging 1LOD mapping of applications, infrastructure and third-party ICT services to internal and client-facing business services.Risk Identification, Assessment & ChallengeReview and challenge first line identification and assessment of technology risks, including (i) application risk (ii) infrastructure dependencies (iii) information security risks and (iv) third-party technology dependencies, ensuring consistency with the company’s risk taxonomy and regulatory expectations.Assess the quality, completeness, and consistency of Technology Risk Registers, control inventories, incident remediation activities and impact analysis.Provide credible 2LOD challenge where risk assessments, severity ratings, or residual risk conclusions are not sufficiently supported.Operational ResilienceSupport integration of technology risk into the firm’s Operational Risk & Resilience frameworks, including regulatory/jurisdictional aligned frameworks including:i) mapping of technology dependencies to important business servicesii) assessment of ICT/technology-related incidents and materiality thresholdsiii) align on incident classification and escalation decisions with reporting standards ensuring impacts both technically and operationally are appropriately assessed and captured on associated incident reporting portals.Provide second line review and challenge of technology related incidents, including severity, client impact, and regulatory reporting considerations.Contribute and support with resilience testing and scenario analysis from a technology dependency perspective.Third Party & Technology Dependency RiskProvide 2LOD oversight of technology-related third-party risks, ensuring:i) appropriate risk identification where services rely on externally procured applications or infrastructureii) alignment between Technology Risk and Third-Party Risk Management outcomesReview dependency and concentration risk associated with critical technology vendors.Change & Control Environment OversightProvide oversight and challenge of technology-related change activities, including:i) IT BAU change, including change risk assessments and post-implementation validationsii) technology elements of business changeiii) changes impacting critical services or client-facing platformsConduct thematic reviews of incidents, audit findings, or control weaknesses, and assess whether these indicate systemic risk or control gaps.Governance & ReportingDraft and peer review committee papers and support where required the delivery of periodic reporting to management and governance forums.Deliver on annual requirement to report and present the second line technology framework (i.e. annual DORA attestation) as well as contribute risk reporting on technology risk themes for senior management and risk committees.Translate technical risk information into clear, business-relevant risk insights for non-technical stakeholders.Support the Head of Risk in setting, monitoring, and challenging technology-related risk appetite. Stakeholder Engagement & Collaboration:Partner with senior first line leaders and control functions to embed risk and resilience principles in business planning and oversee and support the development of technology risk reporting. ·Candidate should be comfortable facing challenges from CISO/CIO/CTO levels in addition to demonstrated ability to manage relationships within a parent company structure involving cross-collaboration within Risk, such as Enterprise, Data, Operational Risk & Resilience. 

Other Ai Matches

Junior Associate Director, IT, Application Security Engineer Applicants are expected to have a solid experience in handling IT, Application Security Engineer related tasks
Director, Fund Accounting, Private Equity Applicants are expected to have a solid experience in handling Fund Accounting, Private Equity related tasks
Executive Director, IT, Head of Engineering - Digital Channels Applicants are expected to have a solid experience in handling IT, Head of Engineering - Digital Channels related tasks
HR Systems Consultant - 12 month FTC Applicants are expected to have a solid experience in handling Job related tasks