Technology Risk Management Analyst Stockport, England
Job description
Centrica are going through a fascinating period of change. We’re evolving to become a truly purpose-led organisation, helping millions of customers to live more sustainably, simply, and affordably. We truly believe that we have a huge role to play in helping the nation to cut carbon emissions and prepare for a net zero future, and it’s a role we are immensely proud of.
An opportunity to play your part
We have an exciting opportunity for a Technology Risk Management Analyst in BG Energy Technology Team for the management of Technology Risk. The team operates as the first line of defence. You will facilitate interactions between the Digital Technology Services team and BG Energy Technology. You will work collaboratively to ensure that Technology risks are identified and appropriately managed to protect Centrica’s customers and its data, services, and systems.
You will assist the Head of Quality in performing analytical work on Risk Posture and appetite to inform about current threats and landscape. The role will analyse existing risk mitigation strategies, technology controls and communicate with the Manager on the efficacy of these measures, suggesting ways and means for improving them.
Accountabilities
Assist in implementing the Technology risk and Controls framework and ensures timely assessment and treatment of security risks
Ensure Technology risks are either treated or accepted in accordance with the risk appetite
Works with the IT teams to identify and assess Technology risks including Cyber and InfoSec risks
Ensure periodic Technology risk assessments of key services, third parties and regulatory commitments are performed, and remediation plans are monitored
Ensure services are assessed and classified based on their Confidentiality, Integrity, and Availability
Work with the IT/OT teams to understand their key Technology risks and agree the actions to mitigate or monitored and improve their controls
Produce the quarterly IT Risk submission for the business units and working with Group level risk functions on Technology risk
Inform senior leadership of risks and recommendations in non-technical terms, considering cost/benefit, to ensure security of Information Systems
Support Legal and Compliance teams e.g. Data Protection and Privacy, as regards to Technology risks
Understand the external security environment and emerging trends to support Technology risk management
What we need from you
Strong knowledge of Technology risk and Control assessment methods
Strong knowledge of Information Security technologies, such as identity and access management, encryption, and multi-factor authentication
Understanding of power utilities, retail energy, and oil & gas industry trends and emerging threats would be useful but not essential
Ability to draw upon external network to understand emerging Cyber Security threats and events
Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx)
Ability to drive technical consensus and facilitate agreements with challenging stakeholders
Ability to understand business visions and strategy
Strong communication (oral and written) and conflict management skills
Education/ Certification: CISA, CISM, CRISC or other similar qualification (desirable)
Location: You can work in Windsor/home; we have people working all over the UK but also a range of office locations.
We are proud to be recognised as a disability-confident employer. Our customers come from a variety of different backgrounds, and so do we. We hire great people from all walks of life, not just because it’s the right thing to do, but because it makes our company stronger. We will continue championing inclusivity while investing in our local communities to create a better, more sustainable world for everyone. We are incredibly proud to have been recognised by The Times for being one of the Top 50 Employers for Women.
Our people are the beating heart of our business. We are incredibly proud of our commitment to being FlexFirst. From childcare to furry friends, we listened to our people and understood that they work best when they are comfortable and have a flexible working model that suits their individual needs.
We have tailored our well-being & benefits package around our employees as follows:
Competitive salary and bonus potential
Employee Energy Allowance at 15% of the government price cap
Pension scheme
Company Funded Healthcare Plan
25 days holiday allowance, plus public holidays, and the option to buy up to 5 additional days
Excellent range of flexible benefits, including technology vouchers, electric car lease scheme & travel insurance
#LI-PR1
At Centrica we embrace diversity and actively seek to attract individuals with unique backgrounds and perspectives. To build a more sustainable future, we need the best team – a team with a diverse mix of people and skills, where everyone feels welcome and able to succeed. We are dedicated in helping to close the diversity gap and would love to see more females, people of colour and LGBTQ+ employees, as well as those from a variety of cultures and ethnicity to veterans and the differently abled. Supporting diversity and inclusion is a big part of who we are, we are not looking for people to fit into our culture but to add to it!
PLEASE APPLY ONLINE by hitting the 'Apply' button.
Applications will ONLY be accepted via the ‘Apply’ button.
This role is being handled by the Centrica recruitment team and NO agency contact is required.
