Job summary
The role plays a vital part in challenging the organisation's hierarchy about the risks and opportunities it faces and how it mitigates or exploits these. The successful candidate will need to be forward thinking with a holistic understanding of the organisation's operating environment and its strategic objectives, to help identify emerging threats or opportunities. They will need to demonstrate good analytical and communication skills and be able to articulate objective persuasive challenge where necessary.
Potential applicants can contact Trevor Duplessis on trevor.duplessis@nhscfa.gov.uk for an informal chat if they have any questions regarding the role.
The Counter Fraud Authority has offices in London, Coventry and Newcastle and there is the opportunity for office based, hybrid or home working based at any of these locations. In addition to the advertised salary working in the London area will attract High Cost Area Supplementwhere appropriate
The NHS Counter Fraud Authority (NHSCFA) is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website.
We reserve the right to close this vacancy before the advertised closing date should we receive a significant number of applications.
Interviews will be held 5th/6th/7th March 2024.
Main duties of the job
The purpose of the role is to support the Risk Management Lead in providing corporate support, advice and guidance to the Executive and Senior Management Team in the area of risk management, as well as to provide challenge to business unit leads in respect of operational risks.
The post holder will be responsible for ensuring compliance with the organisation's risk management framework, in particular, facilitating the appropriate recording, assessment, scoring and update of strategic and corporate risks. They will oversee operational unit risks challenging managers and actionee assessments, updates and the need to escalate risks to corporate status where appropriate.
They will assist the Risk Management Lead in reviewing the organisation's risk registers, as well as being responsible for ensuring the management and update of strategic and relevant cyber and forensic computing risks that feed into the Board Assurance Framework (BAF) report.
The postholder will also work closely with the Corporate Affairs Manager and Head of Corporate Support to promote and ensure a proactive organisational approach to risk management. This will include attending external cross governmental risk meetings, internal business team meetings, performance and assurance panels and integrated business planning meetings and assisting in the development of internal workshops, training and e-learning modules.
About us
We have offices based in Coventry, Newcastle and London and also offer flexible and home based working. The NHSCFA values and respects the diversity of its employees, and aims to recruit a workforce which reflects our diverse communities. We welcome applications irrespective of people's age, disability, gender, race or ethnicity, religion or belief, sexual orientation, or other personal circumstances. We have policies and procedures in place to ensure that all applicants are treated fairly and consistently at every stage of the recruitment process, including an invitation to the first stage of the selection process and consideration of reasonable adjustments for people who have a disability. If you are applying to undertake this role on a secondment basis you should have agreement to being released from your current role in principle, prior to submitting an application form. When you apply for this role you will be redirected to our recruitment system TRAC. Please apply without delay as we reserve the right to close any vacancies from further submissions when we have received sufficient applications from which to make a shortlist. The NHSCFA does not hold a sponsor licence in respect of skilled worker visas and so is unable to employ candidates requiring sponsorship.
Job description
Job responsibilities
Discuss and draft analysis reports and assessments to the Risk Management Lead on factors that could impact the organisations risk profile, identifying escalating risk factors and/or those with potentially poor controls/ weak mitigating actions and lines of defence
Provide SMT with critical analysis and hands on support to monitor and update strategic and threshold corporate risks on MRT/Verto, in addition to expert challenge on controls and mitigation, advising on how to articulate the best course of action to manage the risk.
Provide expert input into the writing of the organisations risk management policies and risk appetite statement.
Proactively undertake gap analysis assessments of controls and assurances and where necessary develop action plans to address these. Regularly conduct horizon scanning for emerging risks.
Ensure that processes for risk identification and escalation are working effectively undertaking audits as appropriate to review compliance.
Please full Job Description and Person Specification.
Job description
Job responsibilities
Discuss and draft analysis reports and assessments to the Risk Management Lead on factors that could impact the organisations risk profile, identifying escalating risk factors and/or those with potentially poor controls/ weak mitigating actions and lines of defence
Provide SMT with critical analysis and hands on support to monitor and update strategic and threshold corporate risks on MRT/Verto, in addition to expert challenge on controls and mitigation, advising on how to articulate the best course of action to manage the risk.
Provide expert input into the writing of the organisations risk management policies and risk appetite statement.
Proactively undertake gap analysis assessments of controls and assurances and where necessary develop action plans to address these. Regularly conduct horizon scanning for emerging risks.
Ensure that processes for risk identification and escalation are working effectively undertaking audits as appropriate to review compliance.
Please full Job Description and Person Specification.
Person Specification
Knowledge and Experience
Essential
- Expert knowledge of Risk Management methodology.
- Highly developed specialist knowledge, underpinned by theory and experience of understanding risks relating to the sharing and disclosure of personal information
- Proven experience of creating, monitoring and managing active risk registers
- Demonstrable experience of working in a risk management or governance environment. Ability to compile and critique reports and make recommended suggestions for improvement.
- Experience of working with Senior and Executive management
- Experience of writing reports, policy development and implementation
Specialist Knowledge
Essential
- HM Treasury's Orange Book Management of Risk - Principles and Concepts, underpinned by theory and experience
- Knowledge and experience of the field of risk management and strategy implementation
- In depth specialist knowledge/information analysis on the use of information across in the health care sector.
- Analysis of complex information requiring interpretation and presentation of a range of options where there is no precedent or where leading opinions may conflict.
Desirable
- Knowledge and experience of analysing project management software reports
Qualifications
Essential
- A degree or equivalent or relevant risk management qualification
- A recognised project management qualification
Communication Skills
Essential
- Provide and receive complex information; motivated and persuasive in seeking agreement and cooperation when required. Present and explain methodologies; analyse and communicate conclusions and implications of results to senior management and staff. Develop and delivers information/ presentations to a varied audience.
- Possess excellent overall written, verbal and presentation skills.
- Facilitation, influencing and interpersonal skills
- Able to influence and proactively manage relationships
- IT literate and able to run and explain complex data reports.
- Ability to compromise and challenge conflicting views at all levels within the organisation
- Understanding and Proficiency in MS Office Program suite and others as required
Desirable
- Knowledge of the Verto Project Management software
Person Specification
Knowledge and Experience
Essential
- Expert knowledge of Risk Management methodology.
- Highly developed specialist knowledge, underpinned by theory and experience of understanding risks relating to the sharing and disclosure of personal information
- Proven experience of creating, monitoring and managing active risk registers
- Demonstrable experience of working in a risk management or governance environment. Ability to compile and critique reports and make recommended suggestions for improvement.
- Experience of working with Senior and Executive management
- Experience of writing reports, policy development and implementation
Specialist Knowledge
Essential
- HM Treasury's Orange Book Management of Risk - Principles and Concepts, underpinned by theory and experience
- Knowledge and experience of the field of risk management and strategy implementation
- In depth specialist knowledge/information analysis on the use of information across in the health care sector.
- Analysis of complex information requiring interpretation and presentation of a range of options where there is no precedent or where leading opinions may conflict.
Desirable
- Knowledge and experience of analysing project management software reports
Qualifications
Essential
- A degree or equivalent or relevant risk management qualification
- A recognised project management qualification
Communication Skills
Essential
- Provide and receive complex information; motivated and persuasive in seeking agreement and cooperation when required. Present and explain methodologies; analyse and communicate conclusions and implications of results to senior management and staff. Develop and delivers information/ presentations to a varied audience.
- Possess excellent overall written, verbal and presentation skills.
- Facilitation, influencing and interpersonal skills
- Able to influence and proactively manage relationships
- IT literate and able to run and explain complex data reports.
- Ability to compromise and challenge conflicting views at all levels within the organisation
- Understanding and Proficiency in MS Office Program suite and others as required
Desirable
- Knowledge of the Verto Project Management software
