Share this Job

London, GB

Senior IT Risk, Governance & Assurance Manager (80% - 100%)

About iptiQ


iptiQ is a risk tech start-up within Swiss Re Group. Swiss Re is one of the world’s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer. We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime.

iptiQ provides digital, bespoke and transparent L&H and P&C protection products in a B2B2C manner. Founded in 2014, we're transforming the way consumers buy insurance with a unique digital insurance engine which incorporates the latest technology with world-class underwriting capabilities. We build strong partnerships to sell insurance via trusted brands.






About the Role

The Senior IT Risk Governance & Assurance Manager is responsible for the coordination and management of IT Risk, Governance and assurance activities across the global iptiQ Operational Entities (OEs). The role coordinates the OEs to ensure appropriate governance measures are in place to address all IT risk and control requirements.  The role ensures each OE understands and complies with the mandatory requirements in Swiss Re Group's IT Risk and Governance policies, standards and frameworks.  Each OE has an accountable person responsible for IT Risk and Governance and will have non-line management reporting lines into the Senior IT Risk Governance & Assurance Manager. The role proactively liaises with GIA and any external auditors to ensure iptiQ Group are aware of audit requirements/questions, assessment methods, current risks etc, and track any audit actions. The primary objective will be to always be prepared for assurance or audit activity, know what best practice is in the market, and improve overall iptiQ risk management.


Key Responsibilities:


  • Coordinate the accountable OE IT Risk and Governance team members to ensure IT Risk and Governance activities are managed, effective, and aligned with iptiQ and Swiss Re requirements.
  • Ensure OE Management (in particular IT Management) and teams understand and comply with SR Group IT Risk and Governance Policies, Standards and Frameworks
  • Support OEs (involving Risk Management) prior to, and during the whole audit life cycle, proactively targeting key risk areas in advance of audits/review to ensure management identify any gaps and have appropriate mitigation measures underway or planned (includes capturing risks and action plans in the Group risk management system – GRACE)
  • Proactively escalate to iptiQ management, via the Head of Operations and IT Governance, any risk areas outside of risk tolerance that have the potential to become audit observations
  • Support OEs with audit processes: Management Self-Assessments, audit meeting attendance, Action planning and Issue remediation tracking
  • Ensure IT risks are identified and adequately mitigated with appropriate and best practice IT controls
  • Coordinate the accountable OE IT Risk and Governance team members to align with SR Group IT Risk and Governance policy, standard and framework owners to agree which aspects apply to their OE and that they ensure compliance.
  • Ensure oversight and reporting on compliance / audit issues and support consistent implementation of mitigation actions (liaising with IT team Responsibles)
  • Support IT management in their risk management activities
  • Foster a robust Governance culture and awareness
  • Drive improvements to Group and iptiQ governance processes and frameworks (e.g. the Group Digital Governance Framework (DGF) process and tool to align to iptiQ OE requirements
  • Provide DGF support for OEs with coaching, training, advice, case construction and liaison with Group DGF team to resolve issues
  • Drive improvements to iptiQ IT KPIs and introduce automation to improve them
  • Represent iptiQ Division at Group governance forums (e.g. ITSCM Board and Group Vulnerability Management Forum) and ensure compliance of iptiQ OEs with associated Group Standards
  • Act as iptiQ Division lead liaison point for GIA
  • Drive improvements to OE Key IT Controls and embed within RCSAs
  • Manage OE representations at iptiQ Lead Enterprise Architecture Forum (LEAF)


About You



  • Strong negotiation, diplomacy and stakeholder management.
  • Sound judgment, decision-making, planning and organising, problem solving in high pressure situations
  • Effective Communication, Coaching and Flexibility
  • Excellent communication skills, convincing and persistent personality    
  • Strong/demonstrable knowledge and experience in IT Governance, IT Risk and IT auditing
  • Good understanding of IT Risk management frameworks    
  • Understanding of IT related standards/frameworks such as ITIL, ISO27001, COBI
  • Solid work experience in IT Governance & IT Risk Management 
  • Professional experience gained within the financial services industry
  • Management of teams

We are an equal opportunity employer, and we value diversity at our company. Our aim is to live visible and invisible diversity – diversity of age, race, ethnicity, nationality, gender, gender identity, sexual orientation, religious beliefs, physical abilities, personalities and experiences – at all levels and in all functions and regions. We also collaborate in a flexible working environment, providing you with a compelling degree of autonomy to decide how, when and where to carry out your tasks.


We provide feedback to all candidates via email. If you have not heard back from us, please check your spam folder.

Reference Code: 112712 


Job Segment: Risk Management, Underwriter, Manager, Finance, Insurance, Management