Job Description
Job Type: Permanent
Location: This role could be based in either our London, Birmingham, Telford or Edinburgh offices with time spent working in the office and at home.
Flexible working: All of our roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process. You can read more about Phoenix Flex here.
Closing Date: 30.5.25
Salary and benefits: Up to £140,000 dependant upon experience, plus bonus potential, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.
Who are we?
We want to be the best place that any of our 6,600 colleagues have ever worked.
We’re the UK’s largest long-term savings and retirement business. We offer a range of products across our market-leading brands, Standard Life, SunLife, Phoenix Life and ReAssure. Around 1 in 5 people in the UK has a pension with us. We’re a FTSE 100 organisation that is tackling key issues such as transitioning our portfolio to net zero by 2050, and we’re not done yet.
You’ll Be At The Forefront Of Risk Leadership Across Our Group, With Accountability For Providing Independent Oversight And Challenge Of
IT and Information Security Risk: Oversee emerging technology risks, AI, systems resilience and cyber.
Operational Resilience: Lead the oversight of the firms approach and overall resilience.
Supplier Risk: Lead oversight across the end-to-end supply chain, ensuring third-party risk is effectively identified, assessed, and mitigated.
Key Responsibilities Include
Shaping and embedding our Risk Management Framework and internal controls in alignment with industry best practice and regulatory expectations (e.g. DORA, FCA/BoE Resilience guidelines).
Advising on and influencing strategic decisions around major technology programmes, resilience planning, and supplier transformation.
Providing well-evidenced independent risk opinions to senior committees, including the Executive and Board.
Act as a trusted partner to senior stakeholders, influencing decision-making and promoting good risk culture.
Providing well-evidenced independent risk opinions to senior committees, including the Executive and Board.
Represent risk perspectives clearly and credibly at senior governance forums, ensuring robust independent challenge where needed.
Representing Phoenix in key regulatory and industry forums.
Leading a high-performing team, driving strategic risk engagement across the organisation.
Deputise for the Non-Financial Risk Director as required.
What We’re Looking For
We’re looking for an established leader in the risk space, with deep expertise across technology, cyber, resilience and third-party risk. You’ll be confident managing complexity, influencing senior leaders, and supporting continuous improvement.
Proven experience in risk leadership across IT, cyber security, AI , operational resilience and supplier/outsourcing oversight.
Deep understanding of risk frameworks, regulatory requirements and emerging technology and supplier risk landscapes.
Ability to constructively challenge, influence, and guide stakeholders at all levels—including ExCo and Board.
Experience leading teams and shaping strategic risk initiatives in large, complex organisations.
Strong analytical thinking and problem-solving ability, with an appreciation of commercial and customer impact
Essential Criteria
Proven track record providing risk leadership, oversight and independent opinion on the integrated risk and control framework across IT, cyber security, AI , operational resilience and supplier/outsourcing oversight.
Proven strategic thinker and creative problem solver with the ability to analyse and synthesise sophisticated issues, focus on material risk issues, connect to the Group strategy and identify commercial solutions.
High level of impact and influence. Highly skilled at maintaining effective cross-functional networks and engagements, constructively challenge, influence and guide stakeholders. Including at C suite and Director level.
Ability to operate with significant autonomy and lead a value adding team in managing and undertaking regulatory and other risk assessments of relevant business areas
Specialism in understanding of risk frameworks, regulatory requirements and the technology, AI, operational resilience and supply chain risk landscapes.
Adapts communications to a variety of situations, audiences and contexts and coaches others to do the same. Uses communication vehicles strategically to influence, gain support and drive internal risk transparency.
We Want To Hire The Whole Version Of You.
We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds. If your experience looks different from what we’ve advertised and you believe that you can bring value to the role, we’d love to hear from you.
If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.
Please note that we reserve the right to remove adverts earlier than the advertised closing date. We encourage you to apply at the earliest opportunity.
Find out more about
Guide for Candidates: thephoenixgroup.pagetiger.com/guideforcandidates
Find or get answers from our colleagues: www.thephoenixgroup.com/careers/talk-to-us
