Technology Risk & Controls Advisory - Experienced Consultant
London, United Kingdom
Wavestone
Discover Wavestone : we are a new consulting firm providing customized solutions designed to steer our clients in making their most strategic decisions.Company Description
Wavestone is a leading global transformation consulting firm known for navigating critical challenges and driving sustainable growth. We aim to deliver lasting change that positively impacts customers, communities, and society. Our journey is defined by a true team spirit, where support, encouragement, and motivation are the keystones of our collaborative environment.
By joining forces with Q_PERIOR (a consulting leader in the Germany-Switzerland-Austria region) in 2023, we aim to be the most trusted partner to our clients for their critical transformations. Drawing on more than 5,500 employees across Europe, North America, and Asia, we seamlessly combine first-class sector expertise with a 360° transformation portfolio of high-value consulting services.
Wavestone UK now boasts a team of over 200 employees, with ambitions to rapidly grow in the coming years. Our services span cybersecurity, business and digital transformation, operational improvement, and IT consulting. We exist to provide end-to-end expert advice to clients across industries, with a particular focus on Financial Services and Life Sciences helping them to positively transform to become modern, innovative organizations that thrive in a sustainable way.
Our commitment to excellence is underscored by recognition we have received in the UK’s Great Places to Work accreditation process and we are proudly ranked in the Forbes World's Best Management Consulting Firms 2023 List.
Dedicated to diversity and inclusivity, Wavestone fosters a collaborative and dynamic work environment. Our core values—integrity, client-centricity, teamwork, and innovation—shape the foundation of our corporate culture.
Join us for a rewarding career in management consulting, offering competitive compensation, continuous learning, and ample opportunities for professional growth.
For more information, visit www.wavestone.com and become part of our journey to shape a positive and impactful future.
Job Description
Our Technology Advisory practice is growing and we are seeking individuals with experience within Technology Risk & Controls Advisory. We are currently working with the world’s leading financial services firms and helping to design and transform IT Risk & Controls operating models and underlying processes to enable our clients to manage their operational risks in an increasingly changing environment.
We are looking for Senior consultants / Managers who have a proven background providing technology risk consulting in a external client-facing role.
During your work, you will assume project-critical responsibilities, develop strategic recommendations and guidance, and ensure the highest quality service for our clients. You will have opportunities to develop industry-relevant thought leadership, participate in business development activities, present material to management teams, mentor junior team members and ultimately make your mark on the client and on the Wavestone practice.
Qualifications
To be considered for this role:
- Ability to demonstrate autonomy, high-quality deliverables, strong attention to detail and great communication skills
- For the more senior roles, experience leading and managing junior team members; and exposure to business development
- Proactive, passionate and team-minded individual who wants to participate in shaping the future of the business by getting involved in business development, marketing, training and other internal activities
- Working knowledge of risk management across banking, insurance, and asset management including strong understanding of Operational Risk Frameworks & Technology Risk.
- Risk Strategy and IT Governance experience as well as understanding the practical challenges facing financial services firms within Technology Risk.
- Definition and execution of Risk Management strategies with a predominant focus on Technology-related risks and emerging technologies
- Design and implement Technology Risk & Controls operating models to manage and oversee Technology Risk – including capability mapping, governance & organisation design across 3LoD
- Undertake maturity assessments of Technology Risk Management and Control environments
- IT Risk framework, policy, and process transformation
- Design and implementation of end to end Technology risk management processes, systems, and risk-based tooling:
Risk Identification and Assessment techniques
Risk and Control Self-Assessment (RCSA), Business Impact Assessment, and scenario analysis processes
Risk Assurance assessments and guidance
- Experience in COSO & ISO31000 risk management best practice principles
- Experience in IT General Controls and IT Governance, ISO27001, and COBIT best practices.
- Experience in managing day-to-day client projects / engagements, senior stakeholder management, and relationship management.
- Knowledge and interest in emerging technology and how Technology environments are potentially impacted by emerging risks & regulatory change
- Working knowledge of GRC systems / platforms (e.g. ServiceNow, Archer, IBM OpenPages etc
Additional Information
Our commitment: Wavestone values and Positive Way
Elevate client satisfaction by impacting high-growth business across US, UK, and Europe. Shape culture, enhance value propositions, and foster business development.
Nurture employee growth with Wavestone horizon career path, competitive compensation, transparent salary policy, tailored training, and internal mobility.
Embrace a collective mindset within a barrier-free, collaborative team. Engage in vibrant people culture through regular events, meetings, and committees.
Experience ethical responsibility with flexible work options, strong CSR commitment, and a culture promoting work-life balance and time-off.
Benefits:
5% company pension, private health and dental cover, life insurance, company share scheme and additional flexible benefits you can select from such as additional holidays, subsidized gym, subscriptions to wellbeing apps or Netflix
25 days annual leave + 1 week off for your wedding / civil ceremony!
Travel and Location:
Employees are not required to work in a Wavestone office on a full-time basis but are required to live within commuting distance to the office, which is in the heart of the city of London.
Note: Mandatory 2-3 days per week in Wavestone office / client site during probation
Diversity and Inclusion
At Wavestone, we celebrate diversity and inclusion. We have a strong global CSR agenda and an active Diversity & Inclusion committee with Gender Equality, LGBTQ+, Disability Inclusion and Anti-Racism networks.
If you need flexibility, assistance, or an adjustment to our recruitment process due to a disability or impairment, you may reach out to us to discuss this.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Banking COBIT Governance ISO 27001 Risk management Strategy
Perks/benefits: Career development Competitive pay Equity Fitness / gym Flex hours Flex vacation Health care Insurance Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs