About the Role
We are seeking a Senior Operational, Technology and Outsourcing Risk Manager to join our team. This is a critical role that requires expertise in risk management practices, regulatory expectations, and industry standards related to operational, ICT and outsourcing risk.
Job Description
This role involves providing independent oversight, challenge and advisory support on the effectiveness of our operational, technology, and outsourcing risk management practices across the EU. You will be a key member of the second line risk management team and work closely with senior stakeholders across the first line, technology, operations, and supplier operations to ensure risks are proactively identified, assessed, monitored, and managed in line with Monzo's risk management framework and appetite.
Key Responsibilities
* Act as the second line subject matter expert (SME) for operational risk, ICT and security risk (including cyber), and third-party/outsourcing risk.
* Provide effective oversight and challenge of first line risk and control self-assessments (RCSA), incident management and reporting, issue remediation and risk mitigation processes.
* Support the ongoing development and maintenance of our Operational Risk Management Framework (ORMF), policies, standards and associated ICT, Security and Third Party Risk Management policies and risk appetite metrics.
* Conduct second line assurance reviews and risk deep dives into critical operational and technology areas, providing actionable recommendations and insights.
Requirements
To be successful in this role, you will need:
* 10+ years' experience in operational risk, technology risk or related roles in financial services, ideally within a digital or challenger bank.
* A deep knowledge of risk management practices, regulatory expectations, and industry standards related to operational, ICT and outsourcing risk.
* A strong understanding of digital banking technology, including cloud computing, cybersecurity, fintech integrations and data management.
* Experience in evaluating and challenging risk and control environments, particularly in high-growth or fast-changing environments.
* A proven ability to navigate complex stakeholder landscapes and influence decision-making at senior levels.
* A detailed understanding of regulatory requirements such as EBA Guidelines on ICT & Security Risk Management, EBA Guidelines on outsourcing arrangements, DORA, Central Bank of Ireland Guidance on Operational Resilience, General Data Protection Regulation (GDPR), Payment Service Directive (PSD2/PSD3).
* Experience conducting Business Impact Assessments (BIA) and scenario testing.
* Strong analytical, problem-solving and project management skills.
* Excellent stakeholder management and communication skills, with the ability to influence senior leadership.
* Experience working with regulators and managing regulatory engagements.
What We Offer
* A competitive compensation package composed of a base salary + share options.
* Flexible working hours and trust you to work enough hours to do your job well, and at times that suit you and your team.
* Annual Leave - 34 days including public holidays (24 holiday days + 10 public holidays)
* €1,200 learning budget each year to use on books, training courses and conferences.
* Private healthcare scheme
* Pension scheme: the minimum contribution is 4% and we match any additional contributions that you make up to a maximum of 6%
* Wellbeing benefits: financial education, women's and men's health support, mental health benefits, including coaching and counselling