Time Type:
Full time
Working Pattern:
Hybrid
Purpose of the Role
The Operational Resilience & Business Continuity Manager is responsible for developing, implementing, and maintaining the organisation’s operational resilience framework. This includes end‑to‑end ownership of AEGIS’ Business Continuity Planning (BCP) and coordination of incident and crisis management arrangements, together with oversight and assurance of disaster recovery (DR) testing, physical security, facilities risk management, third‑party and outsourced service resilience, and cyber resilience, working in partnership with relevant business and technology owners. The role ensures the company can withstand and recover from disruptions while meeting regulatory requirements and protecting policyholders, employees, and stakeholders.
Duties and Accountabilities
Operational Resilience & Business Continuity
- Design, maintain, and enhance the organisation’s Operational Resilience and Business Continuity frameworks and plans in line with regulatory expectations (e.g., FCA/PRA or equivalent).
- Chair the Business Continuity Working Group, ensuring effective governance through timely agendas, accurate minutes, clear actions, and appropriate escalation of risks and issues.
- Lead the design, development, implementation, and testing of Operational Resilience (Ops Res) and Business Continuity Plans (BCPs) across all critical business functions.
- Coordinate and manage testing of Ops Res, BCP exercises, including scenario-based and live tests, documenting outcomes and action plans for improvement.
Incident & Crisis Management
- Serve as the primary coordinator for major incidents and crisis situations, ensuring effective escalation, response, and post-incident review.
- Maintain and regularly update the Plans, ensuring executive teams are trained and prepared for emergency decision-making.
- Conduct root-cause analyses following incidents and implement lessons learned to strengthen resilience.
- Coordinate response to major third‑party and supplier‑related incidents, ensuring alignment with contractual and regulatory obligations.
Physical Security & Facilities Management
- Oversee physical security measures across all company premises, ensuring access control, CCTV, and security protocols are maintained to a high standard.
- Collaborate with Facilities Management to identify and mitigate risks related to physical premises, utilities, and workplace safety.
- Ensure effective site evacuation, emergency response procedures, and staff training are in place.
Cyber Resilience & Risk Management
- Work closely with the Information Security team to align cyber resilience strategies with overall business continuity objectives.
- Monitor emerging threats and vulnerabilities, ensuring appropriate risk treatment plans are in place.
- Support cyber incident response and recovery efforts, ensuring alignment with crisis and continuity frameworks.
Third-Party & Outsourced Service Resilience
- Working closely with the Third Party Vendor Manager identify and maintain visibility of third‑party and outsourced service providers that support important business services and critical operations.
- Ensure third‑party dependencies are incorporated into Operational Resilience mapping, impact tolerances, Business Continuity Plans, and Disaster Recovery strategies.
Governance, Compliance & Reporting
- Ensure all frameworks meet regulatory requirements and industry best practices for operational resilience and BCP.
- Prepare and present resilience and incident management reports to senior leadership and regulatory bodies where required.
- Develop and deliver awareness training for employees to embed a resilience culture across the business.
Skills, Knowledge and Experience
The following skills and experience would be advantageous:
- Operational Resilience & BCM expertise – Proven experience designing, implementing, and maintaining Operational Resilience, Business Continuity, and Disaster Recovery frameworks, ideally within a regulated environment (e.g., FCA/PRA or equivalent).
- Regulatory & governance knowledge – Solid understanding of regulatory expectations, industry standards, and best practices (e.g., UK Operational Resilience policy, ISO 22301), with experience in audit, compliance, and regulatory reporting.
- Incident & crisis management leadership – Hands-on experience coordinating major incidents and crises, including escalation, executive decision support, post-incident reviews, and root-cause analysis.
- Third‑party & outsourcing resilience – Experience assessing and managing resilience risks associated with third‑party suppliers and outsourced services within a regulated environment.
- Testing & assurance capability – Demonstrated ability to plan, execute, and evaluate scenario-based, tabletop, and live resilience, BCP, and DR tests, translating outcomes into actionable improvements.
- Cyber resilience collaboration – Solid understanding of cyber risk, incident response, and recovery, with experience aligning cyber resilience with business continuity and crisis management frameworks.
- Physical security & facilities risk awareness – Experience overseeing physical security controls, site resilience, emergency response, and evacuation planning in partnership with Facilities Management.
- Stakeholder & communication skills – Strong ability to engage senior leadership, regulators, technical teams, and third parties, with clear written and verbal communication for reports and briefings.
- Training & culture building – Experience developing and delivering resilience and crisis management training to embed organisational awareness and preparedness.
AEGIS Values
Fairness and respect
We make decisions considering the best interests of key stakeholders. We are direct and straightforward in our actions, working collaboratively to create a culture of fairness and respect.
Open and inclusive
We act with integrity, valuing diversity of thought and background. We take time to listen to the needs of our customers, stakeholders and colleagues working together to seek and share information.
Ambitious
We have a passion for success, aspiring to be recognised as best in class. We embrace new opportunities, encouraging innovation in pursuit of our goals.
Striving to be better
We strive to improve at all times, challenging complacency, being agile and adapting to change. We always seek to improve our customers’ experience with us.
Investing in people’s potential
We provide an environment where each employee can reach their personal potential. We encourage personal accountability for performance and individual ownership for growth and success.
AEGIS London is an equal opportunities employer and recognises the value of a diverse workforce in facilitating better decision making and business growth. We encourage a variety of differing views, perspectives and insights to create a collaborative working environment. Diversity and Inclusion are fundamental to our business and we encourage applications from all backgrounds recognising the diversity of society and our customers.
It’s important to us that you are able to perform at your best when applying for a role with AEGIS London. If there are any adjustments we can reasonably make to ensure that the process is accessible for you please telephone us on+44(0)20 7856 7856or email recruitment@aegislondon.co.uk
As a business, we understand individual circumstances may differ and aim to be adaptable and to support flexible working practices. Talk to our recruitment team to understand how AEGIS London can help support you in reaching your full potential
