Business Resilience & Regulatory Specialist

We are seeking a Business Resilience & Regulatory Specialist to play a key role in ensuring compliance with the Digital Operational Resilience Act (DORA) and supporting the transition to business-as-usual (BAU) processes. This role is strategically critical in strengthening our operational resilience, ensuring regulatory compliance, and mitigating potential operational disruptions. The successful candidate will have a strong regulatory background and be pivotal in meeting program delivery requirements while coordinating with various stakeholders. Experience in managing key stakeholder relationships and a solid technical understanding are essential.

Responsibilities:

• Regulatory Compliance & Framework Development:
• Support the implementation of a comprehensive business resilience framework aligned with DORA and other regulatory requirements (e.g., NIST, ISO 22301, ISO 27001).
• Develop training materials, policies, controls, and risk assessment methodologies to ensure adherence to regulatory standards.
• Support key pillars of the DORA program, including ICT Risk Management, Digital Resilience Testing, and Third-Party Risk Management (TPRM).
• Stakeholder Coordination & Engagement:
• Design and execute DORA related workshops to support the successful delivery of the DORA programme.
• Ensure all stakeholders are engaged and informed during the DORA compliance implementation and transition to BAU.
• Facilitate program delivery requirements and track progress towards compliance objectives.
• Work closely with SMEs, legal teams, and business functions to ensure seamless regulatory adherence.
• Training & Awareness:
• Develop and deliver training programs to educate employees on resilience and risk management practices.
• Foster a culture of preparedness and continuous improvement across ION Markets.

Experience, Skills and Qualifications:

• Bachelor’s or Master’s degree in Business, Risk Management, Cybersecurity, Information Technology, or a related field.
• Minimum 5 years of experience in cybersecurity, operational resilience, systems architecture, or related fields, with extensive exposure to Operational Resilience, particularly DORA.
• Strong understanding of UK regulatory requirements and frameworks such as DORA, NIST, ISO 22301, and ISO 27001.
• Proven experience conducting risk assessments, regulatory compliance reviews, and resilience testing.
• Ability to translate regulatory requirements into actionable plans and track them to completion.
• Strong stakeholder management and ability to work with cross-functional teams in a fast-paced, regulatory-driven environment.
• Proficiency in risk management tools, business continuity software, and regulatory reporting systems.

Preferred Skills & Competencies:

• Certifications such as CISSP, CISM, CRISC, or CBCP are highly desirable.
• Experience in Agile environments and managing multiple priorities efficiently.
• Strong analytical, problem-solving, and organizational skills.
• Excellent communication and presentation skills, with the ability to convey complex regulatory information to diverse stakeholders.
• A collaborative mindset with the ability to work effectively in complex environments.