CCO Head of Hosting Services Controls

Job Description

Overall purpose of role

• Manage and coordinate all regional GTIS CCO activities including all local line management support
• Lead teams of Controls SME s to ensure that a Satisfactory control environment is built and maintained across Private Cloud, Enterprise Hosting & GTIS Run the Bank
• Supporting the implementation of the Bank s Controls Framework implementation within GTIS, ensuring strong and effective governance of operational risk and control management across GTIS
• Act as the primary point of contact for key stakeholders across audit, risk and control, compliance and regulatory engagements ensuring consistency in application of control framework across GTIS
• Implement an effective framework for the management of risk, thereby protecting against regulatory sanction, reputational and financial loss, service failure and maintaining customer confidence.
• Set and deliver the strategy for the Private Cloud, Enterprise Hosting & GTIS Run the Bank controls teams, in line with the overall strategy set by the Head of GTIS CCOKey Accountabilities

Risk Management

• Create, define and publicise the strategy to track, manage and meet Risk Management responsibilities across aligned teams.
• Lead the delivery of an effective governance framework across aligned teams to ensure visibility and accountability for controls status
• Drive compliance with all internal (Barclays policies and standards) and external (Legal and Regulatory) compliance requirements.
• Manage and coordinate the non-compliances raised against internal policies and standards, ensuring that quality of submissions is maintained, and ensuring that non-compliances are addressed in conjunction with the policy/standard owner.
• Lead and coordinate the impact assessment of changes to policies and standards on Private Cloud, Enterprise Hosting & GTIS Run the Bank
• Manage the closure of remedial actions from through working with action owners to evidence effectiveness of controls and effective audit trails supporting closure.
• Own, manage and maintain comprehensive risk profiles for aligned areas by managing risk assessments independently in line with Barclays standards.
• Act as the primary point of contact for the dissemination of all Risk and Compliance related communications and Management Information in line with Business Performance.

Governance & MI Reporting of controls:

• Operate monthly controls forums with aligned stakeholders.
• Lead the visibility of the status of controls and issues within Private Cloud, Enterprise Hosting & GTIS Run the Bank through regular MI and updates.
• Monitor the status of all open issues via various issue and risk management tools and ensure timely action.
• Define operating practices the Private Cloud, Enterprise Hosting & GTIS Run the Bank team (aligned with organisation ERMF) and ensure these are applied consistently.
• Work with Governance Team, Chief Controls Office, other 1LOD areas (e.g. Information Security), and 2LOD/3LOD functions (e.g. Compliance, Legal, Operational Risk, Audit) to ensure applicable framework and policy interpretation to operate a Satisfactory control environment across aligned teams.Engagement with AUDITORS & REGULATORYAct as the primary GTIS engagement point with Barclays Internal Audit team for aligned areas.
• Maintain oversight of assurance roadmap impacting aligned areas and ensure high visibility across the leadership team of all audit, 2LOD and regulatory activities.
• Provide SME support within GTIS for engagements with Barclays External Auditors for annual SOX assessment. Ensure that all testing and reviews are appropriately supported by SME s and support clarification of any issues identified.
• Lead preparation of GTIS responses to regulatory requests impacting aligned areas, ensuring appropriate review and approval to submission. Maintain oversight of related actions and obligations.CONTROLS ASSURANCE/VALIDATION/MCA
• Maintain oversight of management controls validation across Private Cloud, Enterprise Hosting & GTIS Run the Bank operational areas
• Undertake regular control reviews to validate controls effectiveness, based on area priorities.TRAINING & AWARENESS
• Lead the implementation of education programs across in-scope GTIS areas

Stakeholder Management and Leadership

• Develop senior-level partnerships with the head of Run the Bank, GTIS pillar leads and horizontals to ensure effective implementation of the Enterprise Risk Management Framework (ERMF)
• Attend appropriate leadership forums and steering committees, representing GTIS
• Develop talent within the Private Cloud, Enterprise Hosting & GTIS Run the Bank Control team and provide regular feedback and coaching
• Build a culture of high trust, collaboration and engagement across technology group-wide, embedding effective partnerships with business units

Decision-making and Problem Solving

• Be recognised internally as an infrastructure risk management technical expert and thought leader, often operating in an advisory capacity
• Understand GTIS overall risk appetite and provide control guidance to senior leaders in order to make appropriate risk versus reward decisions; escalate as appropriate
• Ability to identify key risks and determine appropriate severity, determine appropriate remediation and provide critical updates to senior leaders as applicable
• Ability to apply interpretative thinking and advanced analytical skills to problem solve in often complex / sensitive situations
• Evaluate options, maintaining flexibility to new information and evolving environments
• Apply discretion based on practice / previous experience

Risk and Control Objective

• Ensure that all activities and duties are carried out in full compliance with regulatory requirements, Enterprise Wide Risk Management Framework and internal Barclays Policies and Policy Standards.

Essential Skills/Basic Qualifications:

• Able to demonstrate experience in executing a strategic agenda within a control framework
• Technical risk management expertise across Technology, Information, People, Cyber, Resilience and Supplier Management
• Broad comprehensive knowledge of industry / broader external market risk management theories and practices
• Able to demonstrate ability to create clarity, structure and coherence by performing accurate analysis on a range of data
• Experience of operating in a matrix organisation
• Experience of managing others

Desirable skills/Preferred Qualifications:

• Knowledge of the organisational structure of Group (Second Line of Defence)
• Knowledge of functions/structures within First Line of Defence departments, for researching information, resolving queries and to ensure all necessary areas are advised of relevant information
• Relevant professional qualifications (e.g. CISA, CRISC)

, Director Head of Controls Private Cloud, Enterprise Hosting & GTIS Run the BankCorporate Grade:DReports to (Line Manager s Job Title):GTISO CISO & Controls OfficerDirect Reports (if applicable):4Business Area:Barclays Services LtdDepartment/Function Level 1:COO FunctionsDepartment/Function Level 2:Barclays BX Chief Control OfficePrimary Location:PuneIAR RoleNoRegulated RoleNo Role Profile AttestationThe content of this role profile is relevant for the role in questionName of reviewer:Colleen Rose / HRBPRole of reviewer:GTIS CISO & Controls Officer

Keyskills :
riskcloudyber