ETIC, Technology Risk and Resilience - Senior Associate

Line of Service
Internal Firm Services

Industry/Sector

Specialism

Management Level
Senior Associate

Job Description & Summary

About the Role


Our Technology Risk and Resilience team helps firms navigate a fast-moving regulatory landscape while managing robust, future-proof technology estates. From shaping digital resilience frameworks under the Digital Operational Resilience Act (DORA) to helping firms enhance their technology risk maturity, we combine deep sector insight with leading technology to solve problems alongside our clients.



WhatYou'llBe Doing

• Supporting the engagement manager and broader team in delivering technology risk and resilience advisory engagements.
  

• Performing control walkthroughs, sample testing, and evidence review across technology risk and resilience domains.
  

• Drafting gap analysis and maturity assessment artefacts aligned to frameworks such as COBIT, ITIL, NIST CSF, ISO 27001/22301.
  

• Assistingwith regulatory readiness and assurance projects, including resilience assessments under DORA and other EU/UK regulations.
  

• Preparing working papers andcontributing toreports forclients, regulators, and internal stakeholders.
  

• Supporting risk advisory and assurance engagements, ensuring resilienceobjectivesare embedded in technology change and operations.
  

• Using platforms like ServiceNow for resilience-related analysis and reporting.
  

• Engaging with the firm's digital agenda,leveragingAI tools to enhance risk monitoring and resilience testing.
  

• Contributing tocloud and DevOps risk assessments, ensuring secure, compliant, and recoverable environments.
  

• Assistingwith business development activities such as preparing responses to tenders and creating proposal documents.
  

• Building trusted relationships with client SMEs and control owners.
  

• Coaching junior team members and supporting their development.
  

• Taking ownership of your personal development to ensure you are equipped with skills relevant to the proposition now and in the future.
  
  

• Experience in technology risk, IT audit, digital resilience, or related consulting.
  

• Working knowledge of UK/EU Technology and Resilience Regulations (including DORA) and frameworks such as COBIT, ITIL, NIST CSF, ISO 27001/22301.
  

• Practical experience in control testing or assurance fieldwork (evidence sampling, walkthroughs, KRI analysis).
  

• Strong communicationskills - able to translate technical findings into clear, concise messages for business stakeholders.
  

• Familiarity with ServiceNow for resilience-related analysis and automation.
  

• Understanding oftechnology risk models and resilience frameworks.
  

• Demonstrable experience of using AI in current role for risk and resilience use cases.
  

• Progress toward professional certifications such as CRISC, CISA, CISSP, CBCI, ISO 22301 Lead Auditor, or Prince2/AgilePM.
  

• Exposure to regulatory remediationprogrammes(e.g., s166 Skilled-Person reviews) preferred.
  

Required Skills

Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Amazon Web Services (AWS), Analytical Thinking, Apptio, Cloud Administration, Cloud-Based Service Management, Cloud Compliance, Cloud Engineering, Cloud Infrastructure, Cloud Infrastructure Architecture Design, Cloud Infrastructure Optimization, Cloud Migration, Cloud Operations (CloudOps), Cloud Performance Optimization, Cloud Service Delivery, Cloud Strategy, Communication, Creativity, CrowdStrike, Dynatrace APM, Embracing Change, Emotional Regulation, Empathy + 18 more

Desired Languages (If blank, desired languages not specified)

Travel Requirements
Not Specified

Available for Work Visa Sponsorship
No

Government Clearance Required
No

Job Posting End Date