Operational Resilience Senior IT Risk Manager
Role details
Job location
Tech stack
Job description
At Bupa, we're here to help people live longer, healthier, happier lives - and make a better world. As an Operational Resilience Senior IT Risk Manager, you'll work closely with the Group Head of IT & Information Security Risk playing a vital role in protecting the technology that underpins our critical services.
You'll play a key role in identifying, assessing, and managing IT risks across the Group, while implementing robust frameworks and controls to ensure effective risk management. Ultimately, your work will help us stay resilient, safeguard customer data, and ensure we can deliver care when it matters most.
How you'll help us make health happen:
- Develop and maintain a Group-wide IT risk management framework aligned with business goals and regulations.
- Identify, assess, and monitor IT risks across all business units, ensuring effective mitigation.
- Design and implement controls to manage IT resilience risks, reviewing effectiveness regularly.
- Partner with technology teams to strengthen resilience of data centres and critical services.
- Work closely with the Group Head of IT and Information Security Risk to ensure consistency in risk management practices and reporting
- Help design technical groupwide severe but plausible exercises to test ability to meet Impact tolerances and SLA's across important business services / critical operations and critical internal services
- Prepare and deliver clear, concise risk reports for senior management, regulatory, and board-level audiences.
- Champion a culture of risk awareness, providing training and guidance to business units on IT risk management best practices.
- Collaborate with cross-functional teams to assess the impact of new technologies, regulatory changes, and industry standards on the Group's IT risk profile
- Support and guide Market Units in identifying, prioritising and sequencing for recovery their critical internal technology services.
- Partner with Market Unit technology teams in ensuring resilience requirements are incorporated into their incident, problem and change processes.
Requirements
- Proven experience in IT risk management, Operational Resilience, or related fields.
- Strong understanding of IT risk frameworks, assessment methodologies, and regulations.
- Experience implementing and managing risk controls and frameworks in large organisations.
- Excellent communication, stakeholder management and influencing skills.
- Ability to translate complex technical risks into actionable recommendations for non-technical audiences.
- Professional certifications (CISSP, CISM, CRISC) are highly desirable.
- Strong background with frameworks including ISO2330, ISO31000, ISO27002, NIST, COBIT, ITIL
- Strategic thinker with proactive problem-solving skills.
Benefits & conditions
Our benefits are designed to make health happen for our people. Viva is our global wellbeing programme and includes all aspects of our health - from mental and physical, to financial, social and environmental wellbeing. We support flexible working and have a range of family friendly benefits.
Joining Bupa in this role you will receive the following benefits and more:
- 25 days holiday per year.
- Management bonus scheme
- Car allowance
- Access to a range of services to support your physical and mental wellbeing
- Workplace pension
- Online discounts covering your everyday shopping, entertainment, eating out and more.
