Share with us a complex technology or change challenge - we'll take it from there.

Green Dolphin (TCCR) Limited
Green Dolphin (TCCR) Limited
  • Home
  • Subscribe
  • Our Story
  • Client Feedback
  • Outcomes Delivered
  • Community Outcomes
  • Services
    • Overview
    • Change Assurance
    • Internal Audit and Risk
    • Technology and Cyber Risk
    • SWIFT Compliance
    • Scenario Testing
    • M&A
    • GRC Support
  • Our Team
    • Senior Delivery Team
    • Alliance Partners
    • Flex Careers
  • Blogs and Insights
  • NEW Change Risk Scorecard
  • NEW Coffee in the Camper
  • Contact Us
  • About Us

Having led major transformation programmes myself, I value partners who bring hands‑on experience, regulatory depth and a proportionate approach to change assurance. Green Dolphin puts our members first and has become a trusted partner.

Scott Devereux | CEO | Earl Shilton Building Society

Independent Change Assurance and Advisory

30 Core Banking, Cloud Migration and Mobile App Changes

Overview


The Treasury Select Committee highlighted the extent and impact of failed change initiatives at banks and building societies in 2025.  We've delivered, advised and assured almost 30 core banking, cloud migration, web and mobile changes.  We don’t accept the idea that every transformation is delayed, descoped, or over budget.


Leadership often recognise that things need to change and have created the vision, case for change and co-created the delivery plan with third parties.  They've set themselves an ambitious goal to put their colleagues in a position to provide their customers / members with proactive and personalised services in the moments that matter most.  


Commonly the changes focus on streamlining colleague and customer / member journeys, creating a single customer view, offering dynamic products such as lending for those that are not the 'perfect borrower', and creating a simpler and more transparent journey for brokers.  The technology, risk and resilience challenges often need to be addressed in parallel, such as siloed systems and reducing reliance on tightly coupled legacy systems that make any type of transformation difficult. 


Stakeholders (including regulators) expect that the board should provide oversight of all significant (sometimes known as ‘material’) change initiatives.  For example, those changes that have a high operational, regulatory and / or customer impact should they fail. 


Approach


We don't do cookie-cutter and tailor our approach to meet your exact needs.  This goes beyond early risk identification and opportunities to accelerate value; it’s about applying an evidence-based approach that instils decision making confidence throughout the change journey, delivering a proportionate risk reduction plan that eliminates surprises.  To be effective, that approach requires vendor independence, audit discipline and credible delivery experience to support decision making.


We bring a senior led approach and deep subject matter expertise in the key areas of risk that you face.  We advise on potential risks, hidden opportunities to accelerate value, change implications, while also providing guidance and direction.


We often support this with ongoing coaching for board members to improve their ability to ask the right questions of management and suppliers, focusing on developing a baseline understanding for all board members.

 

Why choose Green Dolphin


  • Stakeholder credibility: Our senior team have audit and assurance experience, as well as deep expertise gained from undertaking roles with banks, building societies and insurers. Roles include Board Risk Advisor, CTO, CISO and Head of Technology and Change Audit.
  • Risk reduction: A focus on delivering quality at every step so that you can take confidence that risk reduction and opportunities to accelerate value are understood.
  • Proportionate and commercial: An understanding that budgets are not infinite and therefore our support needs to be proportionate to the risks faced, regulatory expectations and commercial realities.
  • Independence: Unlike other consultancies, we maintain full independence from all suppliers. That means we are straight talking and we don't promote, co-create or take introductory referrals.  We've been trusted by the regulators to provide change audit and assurance.

Referenceable - Just Ask Us

Please let us put you in touch with your peers at other building societies, insurers and banks so you can hear first hand how we've built change confidence.


Typical Green Dolphin Effort: 


Health Check: 3 days

Stage Gate: 3 days

Deep Dive: 5 to 8 days

ASK US TO REVIEW A CHALLENGE YOU ARE FACING
Green Dolphin TCCR provides technology and change risk and assurance support in building societies.

Are you a CEO, COO, CRO, CIAO or CTO with a significant change to deliver, oversee or assure? Get Better Change Outcomes. Your Change Risk Scorecard provides a rapid, independent assessment of whether your change is truly set up for success.

Subscribe For Early Access👇🏼

Subscribe for insights you can act on:

Case Study

Evidence‑Based Assurance That Reduced Change Delivery Risk

Challenge


A Building Society embarked on a major transformation designed to streamline member journeys, modernise legacy systems and enable colleagues to deliver a more proactive, personalised service.

The vision was clear and the business case was compelling. But the Board and Executive recognised the risks. The Treasury Select Committee had recently highlighted the scale of failed change across the sector. The PRA's 2026 priorities placed renewed emphasis on operational resilience, data quality and board accountability. Recent Dear CEO letters reinforced expectations around governance, risk culture and forward-looking risk assessment.


With multiple dependencies, legacy constraints and high member impact if things went wrong, the Society needed independent assurance that was senior-led, evidence-based and aligned to the rising regulatory bar - something they could rely on in delivery and in discussions with regulators, auditors and their own governance committees.


Approach


A senior-led, experience-driven assessment that combined delivery expertise with audit discipline, aligned to the themes emerging from Parliament and the regulators. Rather than templates or generic maturity models, the focus was on the realities of the change - the decisions being made, the risks being carried and the evidence supporting progress. A clear, evidence-based view of delivery confidence was built through targeted interviews, review of delivery artefacts and triangulation against existing assurance - without duplicating effort or creating unnecessary burden.

Early visibility was provided on emerging risks, hidden opportunities to accelerate value and the practical implications of key decisions. The Board received coaching to strengthen their ability to challenge suppliers and management, ensuring they could fulfil their oversight responsibilities with confidence and in line with regulatory expectations.


Throughout the engagement, the change was assessed against the expectations now shaping supervisory scrutiny:


  • Board grip and accountability, as emphasised by the Treasury Select Committee
  • Forward-looking risk identification and scenario thinking, central to PRA 2026 priorities
  • Operational resilience impacts, including testing, dependency mapping and member outcomes
  • Data quality and data governance, given their prominence in Dear CEO letters
  • Cyber, outsourcing and third-party risk, integrated into change decisions
  • Evidence of challenge, escalation and decision-making, ensuring traceability and defensibility


Outcome


Critical delivery, technology, data and resilience risks were surfaced and addressed early - before they could escalate into delays, outages or member harm. Management had the evidence to make informed decisions at each major stage gate. The Board, regulators and internal audit had confidence that the transformation was on a safe and controlled path.


As risks were mitigated, delivery confidence strengthened. Stakeholders had clarity on what mattered, where to focus and how decisions would influence outcomes. The programme became more predictable, more transparent and fully aligned to the expectations now shaping the sector.

The Board had confidence. The regulators had evidence. And the members the Society exists to serve were protected.

Building society technology and change risk landscape in 2026

Technology and Change Risk Landscape In 2026

Technology and Change Risk Landscape in 2026

Want to upskill your own team and connect with peers? Join us at the next Chartered Institute of Internal Audit (CIIA) IT Audit Forum that we have been asked to chair in 2026.

19 March 2026 | Virtual

© Green Dolphin (TCCR) Limited
Company registered in England and Wales (NO.16855006)


NCSC Cyber Essentials Certified 2026 (No.8fe63bb4-be60-4c2a-81f7-8cad1848de4d)


Good Business Charter Accredited 2026


VAT Registration 513 0298 23


All rights reserved.

Powered by

  • Subscribe
  • LinkedIn Page
  • Policies
  • Trustpilot Reviews
  • Contact Us
  • About Us

This website uses cookies.

We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.

DeclineAccept