Risk and Controls Manager Line 1

Manager, Risk and Control Enablement – Privacy Risk

About the team

The COO Chief Controls Office (CCO) is a first line of defence function that provides comprehensive and integrated risk and control services in support of the COO. The value proposition of the CCO is to provide skilled, practical, and efficient risk management to support the COO in the delivery of excellent business and customer outcomes.

The COO CCO function delivers effective business and customer outcomes through the following risk services:

• Implementation and adherence to the Operational and Compliance Risk Management Frameworks.

• Specialist advice, consultation, and services to support the business in identifying, monitoring and managing its respective risks and controls.

• Build and embedment of strong risk capability and culture across the Chief Operating Office.

• Risk governance and reporting.

• Change management risk advice in support of project and transformation activities across  COO.

• Supplier risk assessment and governance.

• Controls assurance and continuous improvement through control automation.

COO CCO Privacy Risk Advisory team enables the COO to embed proactive and effective risk management capabilities into their day-to-day activities. This includes providing advice, as well as assisting COO to implement activities that align with the Operational Risk Management Framework and Compliance Risk Management Framework.

Do work that matters

The position of Manager Risk and Control Enablement- Privacy Risk will lead the ongoing management of privacy risk within COO and bring risk management experience, awareness, and support into COO.

On any given day you will:

• Monitor COO’s compliance with Privacy obligations and support Privacy related regulatory change in COO.

• Providing Privacy advisory activities across COO projects and business initiatives including Privacy Impact Assessments or third-party risk assessments were required and supporting COO’s management of data breaches.

• Act as the first point of contact and support within COO for Identifying, assessing, and managing Privacy risks. This includes support to Line 1 risk for Privacy RCSA’s and CSA’s and executing COO wide privacy controls.

• Reporting on relevant Privacy related matters, including metrics, KRIs, issues, incidents, risks and controls to relevant forums.

• Support COO’s adherence to the Group Privacy policies, procedures, frameworks, and compliance by design principles including managing COO Data Protection Register.

• Increase privacy awareness across COO by facilitating training to Line 1 risk teams.

• Building strong relationships with key partners including the Group Privacy Office, Line 1 Risk teams, and Delivery teams.

We're interested in hearing from people who have:

• Experience in creating or using automation tools (Power Automate, Power BI, AI agents etc).

• Backgrounds in risk, compliance, technology, with experience supporting business initiatives, projects or transformation programs involving AI delivery or technology modernization.

• Strong understanding of risk and control environments together with good working knowledge of relevant policies.

• Sound knowledge base in Operational Risk and Compliance related activities / functions and familiarity with Privacy concepts

• Ability to engage with, and influence, a large and varied stakeholder group.

• Sound organizational, planning, time management and project management skills, with a flexible approach to ensure strategic activities are delivered.

• Ability to apply analytical and critical thinking and use data driven insights to solve problems.

• Ability to work in a changing environment, learning new domains and embracing contemporary, AI-enabled ways of working.

• Curiosity, ownership, collaboration and a willingness to continuously learn and improve.