Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Santander

Technology & Operations Risk Manager

Santander

Technology & Operations Risk Manager at Santander providing oversight on technology and cyber risk management in financial services operations. Ensuring robust risk frameworks and control effectiveness.

Posted 7/1/2026full-timeMilton Keynes • 🇬🇧 United KingdomLead💰 £64,000 - £96,000 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in Technology Risk, Cyber Risk, and Operational Risk within financial services, with a strong focus on Risk & Control Self-Assessments, risk reporting, and governance frameworks. Proficient in analyzing risk data and trends, ensuring data accuracy, and driving collaboration across teams.

Highest-signal resume keywords
Technology Risk ManagementRisk & Control Self-Assessments (RCSA)Risk Reporting and MI ProductionCybersecurity Risk Frameworks (NIST, ITIL)Stakeholder Influence and Communication

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Risk Data AnalysisControl Assessment MethodologiesRisk Appetite FrameworksControl Testing MethodologiesVulnerability Management Concepts
Soft Skills
Analytical ThinkingProblem-SolvingAttention to DetailCollaborationEffective Challenging
Tools & Technologies
HeraclesRisk Tooling Platforms
Certifications & Qualifications
CISACISSPCISM
Industry Keywords
Operational Risk ManagementFinancial ServicesRegulatory Expectations (FCA/PRA)Control EnvironmentsCyber Threats

Tech Stack

Tools & technologies
Cyber Security

About the role

Key responsibilities & impact
  • Providing independent oversight and challenge of Technology & Operations risk, ensuring alignment with Operational Risk Management frameworks.
  • Reviewing and challenging Risk & Control Self-Assessments (RCSA), ensuring completeness, accuracy, and robust control design.
  • Ensuring quality and integrity of Risk & Control Profiles (RCPs), including risk identification, control mapping, and residual risk assessment.
  • Overseeing risk data within tooling (e.g. Heracles), ensuring alignment across risks, issues, events, and risk appetite statements.
  • Monitoring adherence to Risk Appetite Statements (RAS), supporting breach management, root cause analysis, and remediation tracking.
  • Challenging control effectiveness, thematic reviews, and testing outcomes to identify systemic weaknesses.
  • Producing and analysing risk MI and reporting, identifying emerging risks, trends, and control gaps.
  • Driving continuous improvement of governance artefacts, processes, and risk engagement models across T&O.

Requirements

What you’ll need
  • Experience in technology risk, cyber risk, or operational risk within financial services (Required).
  • Experience providing independent oversight, challenge, or audit of control environments (2LoD or equivalent) (Required).
  • Experience working with RCSA, risk frameworks, and control assessment methodologies (Required).
  • Experience producing risk reporting and MI for governance forums (Required).
  • Undergraduate degree in Cybersecurity, Information Technology, Risk, or related field (Preferred).
  • Professional certifications such as CISA, CISSP, CISM, or equivalent (Preferred).
  • Strong knowledge of cybersecurity risk, IT risk, and control frameworks (e.g. NIST, ITIL) (Required).
  • Experience with risk tooling and data management (e.g. Heracles or similar platforms) (Required).
  • Understanding of risk appetite frameworks, RCSA processes, and control testing methodologies (Required).
  • Knowledge of technology architecture, cyber threats, and vulnerability management concepts (Required).
  • Experience analysing risk data, events, and trends to identify control weaknesses (Required).
  • Familiarity with regulatory expectations (FCA/PRA) and operational risk frameworks (Required).
  • Strong analytical thinking and problem-solving capability (Required).
  • Ability to challenge effectively and influence stakeholders across multiple levels (Required).
  • Strong communication skills, translating technical risk into business impact (Required).
  • High attention to detail and commitment to data accuracy and governance (Required).
  • Ability to work across teams and drive collaboration in complex environments (Required).

Benefits

Comp & perks
  • 30 days’ holiday plus bank holidays, which increases to 31 days after 5yrs service, with the option to purchase up to 5 contractual days per year
  • £6,000 car allowance per year
  • Company funded individual private medical insurance
  • Protection for you and your family, with company-funded death-in-service benefit and income protection insurance, and the option to take advantage of discounted rates for additional life assurance and critical illness cover.
  • Share in Santander’s success by saving or investing in our share plans.
  • Competitive rewards that reflect the real impact you make and the value you bring.
  • Wellbeing that goes beyond work — we work with a range of wellbeing partners across our 4 pillars of wellbeing (physical, mental, social and financial) to give you access to a suite of apps, discounted gym and fitness access, weekly online classes, flexible healthcare and mental health support.
  • Support for every life stage — from menopause and pregnancy to parenthood and beyond, with enhanced family leave, childcare options and tailored wellbeing support.
  • Time to give back through volunteering opportunities that let you make a difference in the communities we serve.
  • Global growth opportunities to shape your career, learn new skills and explore what’s possible across our international network.