As a Testing Consultant in the Controls Testing Team you will assess the design and operational effectiveness of controls across the Society, centred on Automation, Data (Governance and Privacy), Technology and Information Security Risk Management Frameworks and Cloud, to ensure they mitigate the risks that the Society faces to a defined risk appetite.

You will be responsible for testing controls to the highest standards and in accordance with our defined methodology, as well as working with the business to ensure control framework uplifts and enhancements deliver sustainable and proportionate risk mitigation.

To support this, our Control Testing Team is expanding and looking for an ambitious, energetic controls tester with a background in any of the above disciplines, ideally in the Financial Services sector, but not a necessity.

At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.

For this job you'll spend at least two days per week, or if part time you'll spend 40% of your working time, based at either our Swindon, London, Northampton, Bournemouth, or Masterton Park office. Whilst these locations are where we are primarily looking to fill the role, if you’re an internal applicant based in a different location we would welcome your application and if successful, your hiring manager will provide further details on how this could work for this specific role. You can also find out more about our approach to hybrid working here.

If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

What you’ll be doing

You will be working as key part of the Controls Testing Team (CTT) to:

• Proactively contribute to the planning and timely delivery of a control testing plan for the first line of defence.
• Test controls against standards that drive continuous improvement in risk and control management practices and contribute to consistency.
• Report on the design adequacy and operational effectiveness of controls in line with our established control testing methodology.
• Work with the business to explain the results of your testing, and suggest ways through which control gaps can be remediated to strengthen the control environment.
• Explore new technologies / approaches to derive and deliver control testing efficiencies.
• Provide constructive challenge and advice to ensure the right outcomes for our members.

Work as an integral member of CTT contributing to internal initiatives to drive a continuous improvement approach in all we do.

About you

You’ll have:

• A Technology, Information Security, Data Privacy, Technical Audit, Controls, Risk or Compliance background.
• Have previous experience in a Controls Testing, Internal or External Audit, environment.
• Demonstratable experience in stakeholder management across all levels of an assignment / engagement lifecycle with proven ability in:

• contributing to the planning and delivery of control testing plans;
• explaining the results of controls testing completed clearly and concisely, both verbally and in written reports;
• dealing with and managing conflict arising from differences in opinion; and
• relating to, advising and influencing, peers and business colleagues, particularly with the remediation of control gaps and the steps required to strengthen the internal control environment ensuring the right outcomes for customers.
• Demonstratable experience in leading or contributing to internal initiatives which support continuous organisational improvement.
• A degree, relevant qualification or equivalent operational experience in a technical technology or information security role.

You’ll have experience in at least one of the below three areas:

• Certified in or be on your way to completing any of CISA, CISM, CISSP and/or relevant Cloud, Cyber security or Data/Data Privacy certifications. (Training and support can be provided).
• A knowledge of NIST and ISO 27001/27002 standards and applicable security regulations (PCI-DSS etc.) – or Cloud and Cyber risk and control frameworks (CCM and CIS etc.).
• Any experience of applied testing of technology and/or information security management controls across large diverse technology environments. For example, MS Windows and Windows Server, UNIX, LINUX, Mainframes (UNISYS and Fujitsu) and/or database management systems, or networks etc.

Our customer first behaviours put customers and members at the heart of how we work together. They are the set of behaviours that every colleague needs to display, in every role:

• Feel what customers feel - We step into our customers’ shoes, using their feedback and insights to empathise with them and to understand their needs, so that every decision we make starts and finishes with our customers in mind

• Say it straight - We are brave in speaking out and saying what we think – we’re honest and direct with good intent, openly sharing diverse perspectives to reach the best conclusions and using language everyone can understand
• Push for better - We don’t settle for mediocrity, we challenge the status quo, taking responsibility for continuous improvement and personal development
• Get it done - We prioritise what will have the greatest impact, we are decisive, and we take accountability for delivering brilliant customer outcomes.

You can strengthen your application by showing how our customer first behaviours resonate with you, and where you may have already demonstrated these.

The extras you’ll get

There are all sorts of employee benefits available at Nationwide, including:

• A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%
• Up to 2 days of paid volunteering a year
• Life assurance worth 8x your salary
• A great selection of additional benefits through our salary sacrifice scheme
• Wellhub – Access to a range of free and paid options for health and wellness.
• Access to an annual performance related bonus
• Access to training to help you develop and progress your career
• 25 days holiday, pro rata

Banking – but fairer, more rewarding, and for the good of society

We forge our own path at Nationwide.

As a mutual, we’re owned by our members - those customers who bank, save or have a mortgage with us. We challenge the financial sector status quo. We don’t see customers as the engine of our own profit. We share our profits with them and put their needs first. Always there when they need us. Supporting them and their lives.

If you’re inspired by fairer finances, passionate about making a meaningful impact, and truly care about our customers, you’re one of us.

At Nationwide, you are challenged to grow and rewarded for doing so. Valued. Recognised. Inspired to be your best. As a community we want our working lives to count. As a team, we celebrate what we achieve. As a standard-setter, we work for the good of customers, communities, and broader society.

We are Purpose-driven. Uncompromisingly Customer. Unstoppably Nationwide.

What to do next

If this role is for you, please click the ‘Apply Now’ button. You’ll need to attach your up-to-date CV and answer a few quick questions for us.

We respond to everyone, so we will be in contact shortly after the closing date to let you know the outcome of your application.

#LI-Post