Proven experience in risk management within financial services, consulting, or a related field, with exposure to banking, insurance, or asset management.
Proven experience in the design and implementation of enterprise risk management frameworks, covering non‑financial risk and emerging risk themes (e.g., technology, operational resilience, AI‑related risks).
Demonstrated ability to lead risk assessments, facilitate workshops, and translate complex risks into clear, actionable insights and activities, including for senior stakeholders.
Ability to analyse and transform end‑to‑end risk management processes, systems and risk‑based tools, including experience with risk identification and assessment methodologies, RCSA, Business Impact Assessment, scenario analysis, and risk assurance activities and guidance.
Ability to design and implement effective control frameworks and operating models, including capability mapping, governance structures and organisation design aligned to the Three Lines of Defence model.
Strong experience leading and assuring programme delivery, ensuring all initiatives are delivered to agreed scope, quality standards, timelines and governance expectations.
Experience delivering regulatory change initiatives, including interpreting new regulatory requirements and conducting impact or gap analyses.
Strong knowledge of key regulatory frameworks relevant to financial services.
Understanding of emerging risk tools, including AI‑enabled risk technologies used in risk transformation activities.
Apply and promote recognised risk management standards and best practices, including COSO and ISO 31000.
Leverage experience in IT general controls, IT governance frameworks, ISO 27001 and COBIT to support alignment of technology and risk capabilities.
