Manager, Risk and Control

Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support our people’s career ambitions. We pledge to make Prudential a place where you can Connect, Grow, and Succeed.

As the Manager, CITO Risk and Controls, you will play a critical role in
strengthening the IT, Cyber, Privacy, Data and Artificial Intelligence risk frameworks
within Group Technology. You will lead eIorts to proactively identify, assess, and
mitigate and optimise our risks, including a focus on resilience and artificial
intelligence. The successful candidate will drive risk control initiatives, ensure
regulatory compliance, and foster a strong risk culture across the organisation.

Key Responsibilities:

• Conduct Testing of IT controls related to Group Technology Risk Management (GTRM) to evaluate control design and control operating effectiveness.
• Develop and execute test plans, test steps, and test procedures based on control objectives across Technology, Cybersecurity, Operations, Data, and Privacy domains.
• Use Artificial Intelligence, Automation and Machine Learning tools to design, develop and execute automated test steps to evaluate the effectiveness of IT controls & processes.
• Continuously monitor and improve automated testing processes to ensure efficiency, effectiveness and accuracy in GTRM Controls testing.
• Conduct walkthroughs, fieldwork, demo sessions, and meetings with group technology teams and Local Business Units (LBUs) to identify and understand the controls for testing.
• Document and Report testing activities, workpapers, including test plans, test scripts, test procedures, test results, findings, observations, and recommendations.
• Collaborate with IT, audit, and compliance teams to develop remediation plans for ensuring timely resolution of identified issues.
• Review and validate the implementation of corrective actions taken by management to ensure control effectiveness.
• Provide support during internal and external audits, including preparing and presenting control testing progress and results. Collaborate with internal and external stakeholders as and when required.
• Assist in the development and maintenance of the GTRM Controls Library.
• Stay updated on industry standards, best practices, and regulatory requirements related to IT controls testing, Artificial Intelligence, Automation and Machine Learning.

Qualifications:

• 5 plus years of experience in IT control testing/IT auditing, with a focus on automation.
• Strong understanding of IT control frameworks such as NIST, ISO 27001, COBIT and regulatory requirements of IT SOX.
• Ability to work in a developing environment and willing to take on related tasks.

Preferred Skills:

• Proficiency in designing and executing automated tests for IT controls.
• •Excellent analytical and problem-solving skills with strong communication skills.
• •Relevant certifications such as CISA, CRISC, CISSP, CISM are a plus.

 

Prudential is an equal opportunity employer. We provide equality of opportunity of benefits for all who apply and who perform work for our organisation irrespective of sex, race, age, ethnic origin, educational, social and cultural background, marital status, pregnancy and maternity, religion or belief, disability or part-time / fixed-term work, or any other status protected by applicable law. We encourage the same standards from our recruitment and third-party suppliers taking into account the context of grade, job and location. We also allow for reasonable adjustments to support people with individual physical or mental health requirements.