Location: Hybrid: this role could be based in either our Edinburgh, London or Birmingham offices, with time spent working weekly in both the office and at home. The amount of time working from the office is variable based on business need.
Flexible working: All roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process. You can read more about flexible working here.
Closing Date: 19th June
Salary and benefits: Up to £70,000, dependent upon experience, plus an indicative bonus range of 16-32%, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.
To make things easier, you might want to save this advert now, it won’t be accessible after the closing date.
Who are we?
We’re Standard Life, a retirement specialist focused entirely on retirement savings and income. We champion the belief that everyone’s journey to and through retirement can be better, and for more than 200 years, we’ve been helping our customers plan and prepare for their financial futures.
Life today is increasingly complicated, uncertain and unpredictable. People move through different careers, face unexpected moments and navigate important choices. We offer our colleagues flexibility, trust and benefits that work for whatever life brings. In return we expect curiosity, connection, accountability and high standards. We make room for what matters - so you can bring your best, every day.
The role
Non-Financial Risk is part of Group Risk and has a fantastic opportunity for a talented individual to join the team as a Supplier Risk Manager within the new IT, IS, Resilience and Supplier Risk Oversight Team. The role is to provide Second Line Subject Matter Expert (SME) advice, oversight and challenge on Line 1’s design and operation of the Third Party Management Risk related standards, risks and controls.
The role holder will, in addition to regular oversight of the Third Party Management Risk control environment, both lead and support the delivery of a rolling programme of Thematic and Risk based focused reviews, following a structured methodology. This will involve shaping the scope of reviews, preparing for and performing field work, validation of proposed findings and provision of insightful recommendations to Line 1 through clear written reporting.
Key Accountabilities:
Provide ongoing oversight and challenge to Line 1 led Third Party Management Risk control management
Analyse and interpret key risk indicators and risk and control reporting to help determine where Line 2 effort is best focused, and to develop formal Line 2 opinions on Third Party Management Risk matters
Provide insight, oversight and challenge within assigned monthly Fora
Lead Line 2 led Third Party Management Risk Thematic/Risk Reviews throughout the full lifecycle, including Planning/Terms of Reference, Fieldwork, Findings Validation and Reporting stages
Provide oversight and challenge on material Projects and Programmes
Oversee Line 1 activity to ensure adherence to the Group’s Risk Management Framework, providing advice and guidance as required
Support the broader team with assigned Line 2 activity relating to Information Technology, Information Security, AI, Operational Resilience and Third Party Management
Develop and build relationships with Line 1 and Line 3 peers and senior stakeholders
What are we looking for?
Essential
Proven experience managing Third Party Risk – including associated risk areas such as Operational Resilience, Information Technology and Information Security - in either a second or third-line capacity, preferably within Financial Services
Strong stakeholder, relationship management and influencing skills. An accomplished communicator who is comfortable, respectful and calm during sometimes challenging situations where differences of risk opinion need to be clearly positioned and justified. Able to analyse situations in a timely manner, producing clear, insightful and succinct written reports.
Preferred
Professional qualification in Risk Management, Supply Chain Risk Management, IT and IS audit or risk management e.g., from IRM, CISI organisations
Deep expertise in third-party regulatory requirements and landscape, with demonstrated ability to interpret and apply within frameworks
We want to hire the whole version of you.
We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds. If your experience looks different from what we’ve advertised and you believe that you can bring value to the role, we’d love to hear from you.
If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.
We’re reviewing applications as they come in, so apply early to avoid missing out.
Find out more about working at Standard Life
- Guide for Candidates: standardlifeplc.pagetiger.com/guideforcandidates
- Find or get answers from our colleagues: www.standardlifeplc.com/careers/talk-to-us
