IT & Cyber GRC Senior Manager | S4 | CIO

Position: IT & Cyber GRC Senior Manager | S4 | CIO |
** Santander UK
** is looking for an
** IT & Cyber GRC*
* ** Specialist
* * based out of
** Milton Keynes**.
* Providing thought-leadership in Governance, Risk and Compliance best practise aligned to external frameworks.
* Leading 1

LoD audit engagements, including our external audit relationship for Sarbanes Oxley testing.
* Leading and promoting a solid culture of risk awareness and control management.
* Developing and implementing control measures to maintain risk management practices in IT and Cyber for Financial Services while keeping up to date with industry best standards.
* Preparing reports for executive management, Board and regulatory bodies as required.
* Ensuring compliance to regulation, policy and company requirements within company appetite.
* Leading by example, fostering a culture of compliance which balances risk reduction through control effectiveness against the needs of the business and its customers.
* ** Holding end‑to‑end accountability for audit delivery**, ensuring audits progress in line with agreed plans, milestones are met, and management actions are remediated within agreed time frames, with clear escalation of delays or control concerns to senior governance forums. (Required)
* ** Producing clear, executive‑level reporting
** for senior stakeholders, articulating key risks, control deficiencies, root causes, and priority remediation actions in a concise and decision‑focused manner. (Required)
* Proven experience managing relationships with internal and external auditors, business and technology/cyber stakeholders and leading large-scale assessment programmes. (Required)
* ** Delivery of insightful management information and reporting
** by leveraging data analytics and advanced analysis techniques to interrogate large and complex datasets, identifying trends, control weaknesses, or anomalies indicative of heightened technology risk. (Required)
* ** Supporting business in risk assessments of policy exception and waivers balancing commercial agility with risk exposure and control sustainability.**
* ** Driving continuous improvement of IT & Cyber risk management
** by identifying opportunities arising from audit outcomes, regulatory expectations, and industry best practice, influencing stakeholders to implement sustainable control enhancements. (Required)
* In-depth knowledge and practical application of NIST GRC best practise. (Required)
* Excellent communication skills with stakeholders at all levels of the organisation, including technical and non-technical teams. (Required)
* Extensive Experience working in regulated industries and Tier 1 Banks, in particular leveraging technology standards, frameworks, compliance, and industry recognised best practice / standards. (Required)
* Experience with GRC tools and data analytics to enhance efficiency and insight. (Preferred)
* Professional certifications such as ISC2 Certified in Governance, Risk and Compliance (CRGC), ISACA Certified in Risk and Information System Control (CRISC) or OCEG GRC Professional (GRCP). (Preferred)
* Experience of building high performance teams. (Preferred)
* Strong understanding of IT & Cyber risk and control frameworks isk and Control Self-Assessment (RCSA). (Required)
* Ability to interpret and apply regulatory requirements to IT environments (Required)
* Experience with audit processes and risk assessments (Required)
* Knowledge of cyber security principles and best practices (Preferred)
* Excellent communication skills with stakeholders at all levels, including technical and non-technical teams (Required)
* Strong analytical and problem-solving skills (Required)
* Ability to influence and negotiate with stakeholders on risk acceptance decisions (Required)
* Leadership and team-building skills (Required)
* High attention to detail and accuracy (Required)
* Ability to work independently and as part of a team (Required)
* Adaptability and willingness to embrace change (Preferred)
* Strong organisational and time management skills (Preferred)
* ** Competitive rewards
** that reflect the real impact you make and the value you bring.
* ** Wellbeing that goes beyond work** — we work with a range of wellbeing partners across our 4 pillars of wellbeing (physical, mental, social and financial) to give you access to a suite of apps, discounted gym and fitness access, weekly online classes, flexible healthcare and mental health support.
* ** Support for every life stage** — from menopause and pregnancy to parenthood and beyond, with enhanced family leave, childcare options and tailored wellbeing support.
* ** Time to give back
** through volunteering opportunities that let you make a difference in the communities we serve.
* ** Global growth opportunities
** to shape your career, learn new skills and explore what’s possible across our international network.
#J-18808-Ljbffr