- Provide expert oversight of technology and cyber risk controls across enterprise technology domains including infrastructure, platforms, and shared services.

- Lead and coordinate assurance and control effectiveness testing activities, ensuring findings are documented and tracked through to remediation.

- Manage relationships with internal audit, external auditors, and regulators in relation to enterprise technology control matters.

- Drive the end-to-end RCSA process for GCIO technology functions, working collaboratively with control owners and risk partners.

- Identify and escalate material control deficiencies, operational risks, and non-financial risk exposures to senior leadership.

- Develop and maintain the GCIO control framework, ensuring it remains aligned with enterprise governance standards, regulatory requirements, and industry best practice.

- Support regulatory submissions, examination responses, and information requests related to enterprise technology and cyber risk.

- Provide risk input and control review for major technology programmes and transformation initiatives.

- Produce high-quality management information, risk dashboards, and governance committee papers for senior leadership and board-level forums.

- Engage across a complex matrix organization, building strong working relationships with first, second, and third-line partners.

- Champion continuous improvement of control processes, documentation standards, and evidence management practices.

- Coach and mentor junior control management team members to build organizational capability.

Qualifications :

- Technology and cyber risk control management expertise

- Operational/non-financial risk framework knowledge

- Audit and assurance program management

- Senior stakeholder engagement and communication skills

- Regulatory framework understanding (technology risk)

- RCSA and control lifecycle management

- Strong report writing and governance documentation skills

- Ability to operate in a complex, matrix organization