Technology Risk Oversight Vice President

My client, an International bank, based in London, is looking for a Technology Risk (2nd line) Oversight specialist (VP level) to join their growing team. This role would require you to work up to 3 days per week in their office in London.

MAIN PURPOSE OF THE ROLE: To assist with the development of the firm's Second Line of Defence capabilities (policies, procedures, risks and controls) to manage Information Security, Technology and Cyber risk in London and support across the EMEA region, in line with regulatory requirements, and to support the achievement of the Bank's strategic objectives.

• Assist with the continuous embedding of the Operational Risk Management framework for Technology Risk and Control within the Technology function, in collaboration with the First Line teams and Head Office.
• Monitoring regulatory changes in approach to Technology and Cyber and recommend respective changes and enhancements to the Risk and Control framework.
• Support the development and delivery of medium to long term objectives and actions within the framework, including greater oversight and additional testing of the Technology and Cyber Controls and RCSA.
• Participate actively in the delivery of changes, enhancements and projects in conjunction with the Technology and Resilience teams.
• Provide robust challenge to the First Line of Defence as they identify, assess, manage and report their risks and issues through various tools and activities including risk and control assessments, key indicators, issue and incident management, and control assurance.
• Monitor monthly trends in Technology and Cyber KPI/KRI and threat intelligence and provide challenge and escalation at an SME level.
• Perform Second Line of Defense project oversight activities in the evaluation of risk for new product, system and other material change projects.
• Monitor the wider Technology risk ecosystem and confidently communicate status, changes and concerns to management and other key stakeholders effectively.
• When required, supervise junior members of the team in business-as-usual (BAU) 2LOD activities and change initiatives.
• Assist in the creation and maintenance of a best practice 3LoD model and work across the region to promote Technology and Cyber awareness and 2nd line value.

• Comply with and ensure that all staff under your responsibility (where applicable) comply with the entities' policies and procedures as well as all rules, laws and regulatory requirements emanating from any of the regulatory authorities to which the entities are subject.
• Remain up to date with regulatory changes; ensure that changes are well understood and plans are developed for implementation as appropriate.

• Working knowledge of banking and securities products and services.
• Excellent experience and understanding of Information Security, Technology and Cyber Risk management and the required application of these risk domains within the financial services industry.
• Good understanding of the interdependencies between other non-financial risk domains and wider Operational Risk practices.
• Proven and demonstrable ability to identify, analyse, understand and concisely communicate Technology and Cyber risk, and provide the “so what?” to articulate impact.
• Understanding and experience of the Audit and Assurance lifecycles within a regulated financial institution
• Strong technical and functional knowledge of external Laws, Regulations, Policies and developments applicable to the Technology, Information Security and Cyber function.
• Solid technical and functional knowledge of financial services internal rules and policies.
• Demonstrable experience of leveraging best practice and industry standards to uplift framework, process and procedure.
• Good understanding of the overall operational processes and technology challenges within the financial services industry.
• Understanding of the Accountabilities, Roles and Responsibilities across Technology and Cyber Security functions
• Ability to facilitate clear and effective communication between organisational functions, business units and offices, locally and internationally.

• Technology and Cyber Governance Risk and Control Frameworks
• Risk, Issue and Event Management
• Control Testing
• Risk and Control Self Assessment
• Technology, Cyber and Information Security Best Practices
• Information and Data Governance Principles
• Risk Governance and Escalation
• Audit and Assurance
• ISO 27001 / NIST / COBIT

• Educated to degree level

CISSP, CISM, or equivalent professional qualifications desirable

If the above is of interest please apply to this job advertisement, or call me on 0207 509 78040 for more information. Alternatively, you can email me your CV to darius.goodarzi@robertwalters.com

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates

• Contract Type: Permanent
• Specialism: Technology & Digital
• Focus: Information Security
• Industry: Banking
• Salary: £80,000 - £100,000 per annum
• Workplace Type: Hybrid
• Experience Level: Senior Management
• Location: London
• FULL_TIME

Job Reference: Z944CO-845016BC

Date posted: 7 February 2026

Consultant: Darius Goodarzi

london information-technology/information-security 2026-02-07 2026-04-08 banking London London GB GBP 80000 100000 100000 YEAR Robert Walters

https://www.robertwalters.co.uk