skip navigation
Manchester Digital
skip mega-menu

What We Do

Growing the Sector
Our Newsletter #MDTechCommunity Slack Channel Industry Events Sponsorship Member Offers
Representing the Sector
Manifesto for the Northern Tech Economy Sectors Startup Hub Startup Activator Research and Insights Forums
Talent and Skills
Apprenticeships Training Digital Her Skills Festival Skills Audit Employer's Forum

Who We Are

The Team
The Board

About Us

Services

Sectors

News

Events

Jobs

Directory

Get in Touch

Join

Technology Quality & Risk Management Lead

KPMG UK -

Full-time (Permanent)
Competitive
Published on
6 July 2022
Deadline
8 August 2022

Technology Quality & Risk Management Lead – B Grade

Role Purpose
The Technology Quality & Risk Management (QRM) Team reports into the Head of Security Architecture and Advisory and forms part of the Information Security Team. The Tech QRM Lead is responsible for ensuring the compliance of Technology Services with ISO27001 and the firmwide security controls and standards agreed with KPMG International (and locally) which are designed to meet Client and Regulatory requirements. In addition this role is responsible for management and reporting of technology risks impacting Enterprise Wide Technology (EWT).
The role requires close co-operation with all members of Technology Services, its suppliers and working with security stakeholders across KPMG such as Information Assurance (Information Security second line of defence), Central KPMG Risk and Chief Technology Officers (CTOs).

Role Responsibilities
 The Tech QRM lead is responsible for:

  • Defining and delivering against an annual audit plan for EWT encompassing all high risk third parties
  • Deliver end to end Audit activities in line with processes defined by Information Assurance (second line of defence)
  • Support external audits such as Internal Audit, ISO27001 audits, SOC2, Client Audits and other IT controls audits as necessary
  • Ensure all non-conformances are tracked to completion  
  • Ensure that all EWT core documentation is managed and regularly reviewed in line with KPMG policies
  • Lead the enterprise risk management and reporting for EWT and support and enhance the overall firmwide risk management framework where appropriate
  • Align information risk management communication with Information Assurance
  • Provide advice, challenge and support in relation to embedding the appropriate risk culture across the function
  • Track risk action plans to completion with risk action owners
  • Facilitate the formal governance review and approval processes required to support the firms and EWTs risk reporting
  • Manage and lead the Tech QRM function, including hiring, on-boarding, employee development, financial and budgetary processes
  • Line management responsibilities including objective setting, performance management, and coaching & support
  • Be accountable for the services owned by the Tech QRM team
  • Work towards and achieve or extend professional certifications as part of personal development
  • Proactively share experiences with others to assist their learning and understanding


Knowledge, Skill & Qualifications

  • Strong SME of Enterprise Risk Management in the first instance
  • Articulate on quality and risk management practices and standards
  • A proven ability to build relationships and communicate with people at all levels both written and verbal
  • Must be analytical and possess great negotiation skills
  • Confident in developing reporting and MI packs for the business
  • Experience leading and assisting audits
  • Deep knowledge of ISO27001
  • Attention to detail
  • Operational experience including hiring, on-boarding, employee development, financial and budgetary processes is required
  • Experience of leading and inspiring others
  • Strong integrity, independence, and resilience

To explore this opportunity, click here.

Subscribe to our newsletter

Sign up here