Job offer

Operational Resilience Lead

The position of Operational Resilience Lead at Julius Baer in Guernsey involves responsibility for implementing and managing operational resilience at the Guernsey branch, including overseeing business continuity management, information security, and third-party risk management. The candidate must have at least 3 years of relevant experience in a banking or regulated environment and possess strong knowledge of operational resilience, outsourcing, and risk frameworks.

Tasks

The position of Operational Resilience Lead includes the following responsibilities:
  • Serve as the local Operational Resilience Responsible under the JBG Global Operational Resilience Policy (BORC), integrating key functions including Business Continuity Management (BCM), Information Technology (IT), Information Security (IS), Third-Party Risk Management (TPRM), and Data Management.
  • Ensure the effective implementation of global policies and procedures at the local level, adapting them as necessary to comply with local regulatory requirements.
  • In coordination with the local Head of IT and BCM, support and develop the identification, validation, and documentation of local Critical Functions (CFs) and their associated Disruption Tolerances (DTs), in coordination with local CF owners and the Group.
  • Annually review and update CFs and DTs, submitting findings and recommendations to the Group for consideration and approval.
  • Develop and manage a multi-year integrated testing plan for local CFs, in accordance with the Group's Operational Resilience Testing Standards.
  • Plan, coordinate, and execute end-to-end resilience testing, including business recovery and crisis management exercises.
  • Prepare annual testing reports, documenting identified weaknesses, root causes, and remediation plans.
  • Track, validate, and report on the progress of remediation measures for identified vulnerabilities.
  • Escalate critical gaps that require investment or cross-functional resolution to the Local BRICC Committee and Group bodies.
  • Promote a culture of proactive risk identification and continuous improvement of recovery capabilities.
  • Provide sector resilience metrics to the local Operational Resilience Committee (ORC) and Operational Risk Committee.
  • Collaborate with business units to implement changes to business processes or to implement new critical processes.
  • Ensure that personnel with defined roles in recovery plans are fully trained and capable of carrying out their responsibilities during disruptions.
  • Work closely with Information Technology Security Critical (ITSCM), IS, TPRM, Corporate Communications, and business unit leaders to embed resilience across all critical domains.
  • Coordinate with Zurich Head Office to take advantage of centralized tools, methodologies, and support while maintaining local accountability.
  • Serve as the branch's subject matter expert for third-party risk management and outsourcing arrangements.
  • Coordinate quarterly outsourcing and third-party risk reporting, ensuring completeness, accuracy, and timeliness.
  • Chair the local Third-Party/Outsourcing Subcommittee, ensuring effective oversight and scrutiny.
  • Oversee and optimize the use of ServiceNow to support third-party processes and reporting.
  • Provide clear and concise reports to senior governance forums, including the Branch Management Board.
  • Serve as the local point of coordination for cybersecurity matters, working closely with Group Information Security functions.
  • Stay up to date on emerging cyber threats, risks, and regulatory expectations, ensuring local awareness and an appropriate response.
  • Facilitate and coordinate local cyber exercises, simulations, and awareness initiatives.
  • Engage key stakeholders across the business to strengthen cyber resilience and foster a strong security culture.
  • Support the implementation and ongoing maintenance of information security controls and practices within the branch.
  • Work with the Legal and Compliance departments to support local data protection obligations and regulatory requirements.

Requirements

The following requirements apply to this position:
  • Easy to work with, builds good relationships, and works with others to get things done.
  • A strong understanding of operational resilience, outsourcing, and risk frameworks within a banking or regulated environment.
  • A minimum of 3 years of relevant experience is required.
  • Experience in managing third-party risk and outsourcing arrangements, including governance, oversight, and reporting.
  • Solid knowledge of business continuity and crisis management practices, including scenario testing and planning.
  • A good understanding of cyber and information security principles, along with the ability to engage effectively with Group functions and local stakeholders.
  • Contributes to working with systems and management information, including tools such as ServiceNow, to support reporting and oversight.
  • Confident in chairing committees and governance forums, able to guide discussions, pose appropriate challenges, and ensure clear outcomes and accountability.

We offer

Unfortunately, no information about the offer is available.

Job details

© 2025 House of Skills by skillaware. All rights reserved.
Our website uses cookies to make navigation easier for you and to analyze the use of the site. You can find more information in our privacy policy.