Risk Management jobs in United Kingdom
Discover more opportunities than anywhere else. Find more jobs nowPrincipal / Senior Technical Safety and RAM Engineer
Arcadis
Connect with headhunters to apply for similar jobsTransformation Project Lead
Sharp Business Systems France
Director - Aladdin Business, Sales/Commercial Lead – Aladdin Studio
LGBT Great
Senior Property Manager City of London
RANDSTAD (UK)
Director [Designate] - Technical & PM (JPC-85)
Constructionprofessionals
Risk & Assurance Manager - IT/InfoSec
Job summary
A leading technology solutions firm in the UK is seeking an experienced IT Risk Manager to oversee and enhance their Information Security risk landscape. This role requires a minimum of 5 years of experience in IT risk management or internal audit with a strong focus on consultancy. The successful candidate will lead initiatives in aligning risk frameworks with business objectives, ensuring compliance with industry standards. This is a hybrid role requiring office presence three days a week.
Benefits
Qualifications
- Minimum 5 years of experience in IT risk management or internal audit.
- Experience in consultancy or professional services is preferred.
- Strong knowledge of regulatory requirements like GDPR.
Responsibilities
- Manage and enhance the IT and Information Security risk landscape.
- Lead the review and enhancement of IT risk and control frameworks.
- Engage and influence stakeholders across IT and business functions.
Skills
Tools
salary: £65,000.00 - £70,000.00 per annum Discretionary Bonus
This business is a £1billion technology solutions business which is continuing to grow organically and is one of the top 10 businesses in the UK to work for regarding work/life balance!
About the opportunity:
This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the business's technology and cybersecurity domains.
You will be leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. You will also own and maintain IT Risk and Control Matrices (RCMs), ensuring they remain current, comprehensive, and aligned with industry standards and audit expectations.
A bit about you:
- Minimum 5 years of experience in second-line risk management or internal audit, with a strong focus on IT or Information Security.
- Experience in consultancy or professional services, with a proven ability to support complex transformation or change programmes is preferred.
- Demonstrated leadership in delivering IT risk or audit initiatives, including managing projects, mentoring team members, and driving outcomes.
- Strong knowledge of industry frameworks and standards, such as ISO 27001, NIST, CIS Controls, and regulatory requirements like GDPR.
- Proven ability to engage and influence stakeholders across IT, Information Security, and business functions, building trusted relationships at all levels.
This is a hybrid opportunity, with the business needing you in the office 3 days a week.
* The salary benchmark is based on the target salaries of market leaders in their relevant sectors. It is intended to serve as a guide to help Premium Members assess open positions and to help in salary negotiations. The salary benchmark is not provided directly by the company, which could be significantly higher or lower.