Technology Risk and Controls Specialist

Location Edinburgh
Job type: Permanent
Contact name: Scott Maxwell

Contact email: scott.maxwell@changerecruitmentgroup.com
Contact phone: 07974065745
Job ref: 148927
Published: 3 days ago
Expiry date: 15 May 2026 00:59

 

Technology Risk & Controls Specialist

Location: Edinburgh, Hybrid (3 days in-office)
Industry: Investment Management / Asset Management
Function: Risk & Controls Oversight
Level: Senior Manager - Individual Contributor 

Overview:

Our client, a global investment management firm, is seeking an experienced Technology Risk & Controls Specialist to support the design, implementation and ongoing oversight of IT risk and control frameworks across both UK and EU operations

This is a newly created role in response to regulatory change – particularly the Digital Operational Resilience Act (DORA) – and offers a unique opportunity to influence how technology risk is managed at a group level. The successful candidate will be instrumental in building a framework that doesn’t currently exist, with a remit that spans technology governance, regulatory compliance and risk oversight

Key Responsibilities:

  • Design and implement a global IT risk oversight framework with a particular focus on ensuring DORA compliance across the EU business entities

  • Monitor and assess technology infrastructure, transformation projects and IT change initiatives that impact UK and EU operations – providing risk-based challenge and assurance

  • Translate regulatory expectations into practical, scalable processes that can be adopted across different geographies and technology environments

  • Lead the build-out of a new oversight model ensuring appropriate documentation, controls, reporting mechanisms and governance are embedded across the firm

  • Provide subject matter expertise on IT and operational risk matters with clear understanding of both UK and EU regulatory landscapes including upcoming and existing requirements

  • Liaise with stakeholders across Technology, Risk, Compliance, Legal and Audit as well as teams based in Poland, the US and India – building strong cross-functional relationships

  • Contribute to the oversight of large-scale projects and system improvements ensuring that technology risk is appropriately managed from end to end

Role Composition:

  • Focus on EU and global oversight particularly DORA-aligned governance and controls

  • Focus on UK regulatory requirements and risk monitoring related to IT systems and change initiatives

Ideal Candidate Profile:

  • A solid risk and technology background – likely from IT risk, technology audit, infrastructure oversight, or IT compliance roles

  • Strong understanding of regulatory requirements particularly across UK (e g FCA/PRA expectations) and EU (especially DORA)

  • Experience in designing or building frameworks from scratch ideally in complex or regulated organisations

  • Comfortable working with technology leaders and programme teams and able to translate technical risk into clear business impact

  • Experience working in asset management, investment management or broader financial services is preferred

  • Proactive, structured, and collaborative – able to work across cultures and time zones in a global team environment

Why This Role?

  • Greenfield opportunity – shape and implement an entirely new oversight framework

  • Operate at the intersection of IT and regulation with direct influence over how the business navigates upcoming requirements like DORA

  • Join a well-established, global firm with strong internal support and cross-functional engagement

  • Play a key role in future-proofing technology risk oversight in a high-impact, visible position

Contact scott.maxwell@changerecruitmentgroup.com or 07974065745