Operational Risk & Resilience Manager

Operational Risk & Resilience Manager

Closing date and time:

• 5th July 2022

Reports to:

• Head of Security, Logistics and Waste

Contact term:

• This is a full-time, permanent position on Crick terms and conditions of employment.

The role is employed within the Security, Logistics and Waste department of The Francis Crick Institute (‘The Crick’) and will be responsible for contributing to the successful operation of The Crick’s Risk & Resilience Management programme in support of the Head of Security.

The Security department sits within the Facilities and Infrastructure (F&I) directorate, under the direction of the Head of Security, Logistics and Waste.  The post-holder will play an important role in managing risk and resilience of the Crick people, property and assets to minimise risk.  This will involve exposure to and activity across the whole of The Francis Crick Institute Security and Risk Management programme, across all operations and scientific teams. 

Supporting and reporting to the Head of Security, the post-holder will be responsible for the delivery, management and implementing a full range of security and risk management processes and actions.  They will lead on the writing, reporting, implementation and maintenance of a variety of vital security and risk documents, tools and systems.

They will also coordinate key departmental activities, such as the planning and administration of meetings, Steering Groups and other events and activities involving the participation of the Security department and other stakeholders.

Key responsibilities

Risk & Resilience Management

Resilience

To be the lead for the business continuity planning and resilience activities at the Francis Crick Institute.

Business Continuity

Develop and manage the Crick’s Business Continuity Management System through development and maintenance of the Business Continuity plans. Deliver training, testing and exercising of the system and plans as appropriate.  Manage and maintain regular testing of The Crick’s Business Continuity Management System.

As part of the Business Continuity and Crisis Management System, engage with Crick staff and champions to assist in the development of their departmental contingency and resilience plans.

Contingency Management

Manage the design, implementation, maintenance and exercising of departmental and overarching contingency plans.

On behalf of the Crisis Management Team (CEO and COO) to execute   the Incident Management, Business Continuity and Crisis Management plans in the event of a major incident as well as The Crick’s crisis communications plans and capability.

Maintain underpinning procedures and the relevant equipment to enable successful deployment of the Crick’s Plan(s) during a major incident.

Maintain corporate records, distribution lists, emergency supplies, documentation and liaison with our partners to establish reciprocal fall back sites.

Personal Security

Manage the Register of Persons at Risk and associated personal protection programs both proactive and reactive to ensure the safety of those that are identified as at risk. This requires close working with HR and potentially vulnerable staff.

Deliver training and/or make additional security arrangements to support and ensure security of vulnerable colleagues.

 
Travel Security

Manage the travel risk contract with International SOS (ISOS), monitor Crick travellers and their travel destination providing advice for travelling employees, in accordance with Foreign & Commonwealth Office and other guidance. Monitor travellers in the event of incidents and ensure they have the right assistance and support via ISOS.

Supplier resilience

For all suppliers to The Crick, manage the critical supplier resilience register and undertake associated supplier risk assessments and audits.

Risk Management

Work closely with the Head of Security, Logistics and Waste to develop and maintain procedural framework around risk management, and ensure that risk management practices are well embedded into the Crick operation.

Lead on risk management projects for the entire organisation, such as risk surveys, risk assessments, vulnerability studies etc. Liaise with Corporate Risk Management and partners to ensure the Crick is correctly identifying risks and taking the correct action to mitigate. Coordinate and manage the F&I departmental risk register.

Regularly review the risk management methodology and processes, including systems and software to ensure legal compliance and best practice.

Intelligence

Build on existing network of contacts to develop and manage a network of external intelligence partners and proactively collate information and intelligence. Seek, categorise, analyse, summarise and disseminate intelligence to the Head of Security, Logistics and Waste and other stakeholders with recommendations for action. Provide reports and Situation Reports in event of security related incidents that may impact the Crick.

Tasks conducive to the overall effectiveness of the Security Department

Carry out any other reasonable duties as requested from time to time by the Head of Security.

Person Specification

Suited to someone with a career in resilience, security risk management or business continuity.

Key experience and competencies

The post holder should embody and demonstrate our core Crick values: bold, open, and collegial, in addition to the following:

Essential

• Degree in Risk / Security or related discipline(s).
• Qualification in Risk, BCP and Crisis Management – e.g. CBCI
• Experience in BSI 22301, Business Continuity Management, supported by proven ability to develop, implement and manage business continuity plans
• In depth knowledge of risk management systems, protocols and associated legislation including travel security
• Significant experience in a similar role, with proven ability to implement and manage risk management and business continuity processes and systems within organisations
• Experience of leading project teams and motivating security operatives to deliver work to their best ability
• Proven ability to build positive relationships within the workplace through clear communication and collaborative approach to work
• Excellent written communication skills to be able to produce procedural guidance and reports
• Highly organised with the ability to manage multiple tasks working to strict deadlines.
• Keen awareness of the security and risk management sector, proactive in anticipating changes to legislation, policy and major incident arrangements.
• Active participant in the security and risk management networks, having already developed a range of useful contacts.
• A high level of IT literacy, including competency across the ‘Microsoft Office’ suite.
• Prepared to work flexibly, with varied hours as required, including out-of-hours call out and attendance on rare occasions.
• Ability to work autonomously and manage projects/tasks through their lifecycle to completion.

Desirable

• Emergency notification system (ENS) user competency (training can be given). Currently Ensolve.
• Member of Business Continuity Institute