1 to 25 of 41 Permanent Risk Manager Jobs in the UK

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is … responsible for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

Senior Risk Manager – Technology and Change (Second Line) Job Introduction The Risk function serves as the independent risk control unit within the organisation, acting as the second line of defence (2LOD) and providing oversight and challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is … responsible for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as shared risks between Business and IT such as Payments Risk, Third Party Risk, and Operational Resilience. The … the organisation’s business lines and supporting functions. Main Responsibilities The role holder will be expected to take ownership or contribute to the following key areas throughout the year: Risk Advisory and Guidance Independent Risk Oversight Annual Regulatory Returns Change Oversight and Change Assurance Ideal Candidate Proven experience working directly with senior Technology leadership (e.g., Heads of Functions More ❯

We have exclusively partnered with a high-growth fintech providing payment administration, escrow, and loan agency solutions across Europe, the UK, and North America. They are seeking an experienced Risk Manager to lead its UK and European function. Risk Manager - UK/Europe (Fintech/Payments) | London Hybrid | Fully Flexible We have exclusively partnered with a … high-growth fintech providing payment administration, escrow, and loan agency solutions across Europe, the UK, and North America. They are seeking an experienced Risk Manager to lead its UK and European function. You'll oversee the delivery and continuous improvement of enterprise-wide risk frameworks, ensuring regulatory alignment across multiple jurisdictions, including the FCA and De Nederlandsche … Bank. The position partners with senior stakeholders to strengthen risk culture in a scaling, regulated technology business. Key duties include developing risk programmes, maintaining registers, supporting regulatory and compliance functions, training risk owners, horizon scanning, and regularly advising the senior leadership team. Required: 7+ years' experience in risk management, audit, or compliance for regulated payments, fintech More ❯

Cyber Risk Manager We’re working with a large organisation going through major cyber transformation to hire a Cyber Risk Manager . This role combines leadership with hands-on delivery, giving you the chance to shape how cyber risks are understood and managed across the business. What you’ll do Own and maintain the cyber risk register Turn risk data into clear insight for senior leaders Drive reviews and ensure risks are mitigated or escalated Work with audit, risk, and continuity teams to embed cyber risk Improve processes, tools, and methodologies What we’re looking for Strong knowledge of cyber risk and enterprise risk registers Familiarity with frameworks like NIST More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

help shape the future of finance, Paynetics is where your work will make a difference on a global scale. Paynetics UK is seeking an experienced and pragmatic Third Party Risk Manager to design, implement, and oversee the firm’s third party and outsourcing risk management framework. This role is pivotal in ensuring compliance with FCA outsourcing and … management in financial services, combined with the ability to deliver practical oversight and advice in a fast-paced environment. What you'll do: 1. UK Outsourcing and Third Party Risk Framework • Lead the design, development, and maintenance of Paynetics UK’s Third Party Risk Management Framework, ensuring compliance with FCA rules (SYSC 8, operational resilience, DORA, and PRA … SS2/21 where applicable). • Define risk appetite, governance structures, and control standards for outsourcing and vendor management. • Ensure proportionate oversight and due diligence aligned with the materiality of services and regulatory requirements. • Maintain an up-to-date Outsourcing and Third Party Register, ensuring that risk assessments and contract records remain current and accurate. 2. Group-Level More ❯

Role: Information Security and Risk Manager Location: Aberford Leeds Contract: Permanent Working: Hybrid 3 days in the office As MICHELIN Connected Fleet, a division of the Michelin Group, leader in sustainable mobility for 130 years, we specialise in connected fleet management services and solutions. We are a market leader with over 30 years expertise in a high-growth … operating under the Michelin Connected Fleet name, we intend to be a major player in this market in the coming years. OUR DREAM We know our planet is at risk and we urgently need to find innovative ways to protect it. At Michelin, pioneering is what we do: We are innovating constantly, to explore new opportunities, with, around and … people. We nurture our team's growth with several company wide development programs - including our Diversity, Mentoring and Sustainability programs. THE ROLE IN SHORT: As the Information Security and Risk Manager, you are the central leader responsible for the company's overall security and compliance posture. You will manage the entire Information Security Management System (ISMS), ensuring the More ❯

The Risk- & Opportunity Manager implements Risk & Opportunity Management within the Project. The R&O Manager responsibilities are as follows: Responsible for continuous Risk and Opportunity Management on projects and services Actively drive and support R&O identification & develop robust R&O response plans Ensure the transparent communication of R&O information with the bid and … Project team, and relevant stakeholders Drive de-risking and opportunity development on an operational level. Create a Risk and Opportunity Management Plan explaining how R&Os will be managed on the Project (RAIDO inputs) Establish continuity in the Project R&O management by taking the R&O register from the bid as the baseline Regularly analyse the full scope … updated Ensure that robust mitigation actions are defined and reflected in the Project plan (cost, schedule, resources, scope) Regularly assess the progress and effectiveness of defined actions Implement regular Risk Review Boards and submit risk reports Regularly compare R&O exposure with the contingency amount in the EAC Ensure compliance with applicable accounting standards by sizing the Project More ❯

Senior Cyber Security Risk Manager Hybrid, Edinburgh Up to £70,000 + benefits Benefits In return for your expertise and commitment, youll receive: Annual bonus Flexible hybrid working Excellent healthcare and pension scheme Life assurance Electric Vehicle Scheme About the Role This is a brilliant opportunity for an experienced Cyber Security Risk professional to take ownership of … a global organisations risk management and compliance strategy. Youll be joining a forward-thinking cyber team thats investing heavily in maturing its Governance, Risk, and Compliance capability, giving you the chance to shape frameworks, influence senior leaders, and make a real impact on how the business manages risk. Youll lead key initiatives around risk governance, audit readiness … certifications and audits. About You Youll bring a mix of technical understanding, commercial awareness, and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes More ❯

from you! About the Role Step into a dynamic, forward-thinking environment where transformation is at the heart of everything we do. As part of our Digital & Corporate Functions Risk Oversight team, you'll play a pivotal role in shaping a robust risk and control framework that supports innovation and change. This is more than a compliance role … a space where your expertise can grow and evolve, giving you the chance to develop professionally while making a real impact. If you're passionate about driving excellence in risk management and thrive in an environment that values continuous improvement, this is your opportunity to lead and learn. What you'll be doing Work closely with Digital leaders, managers … and stakeholders providing guidance, oversight and challenge to the technology and digital risk control environment, focusing on resilience in operations, strategic delivery and deployment. Maintain effective stakeholder relationships with the relevant Business colleagues to influence and challenge the management of business risk in line with the HL Risk Taxonomy and Enterprise Risk Management Framework. Provide oversight More ❯

Join a Leading Semiconductor Company as a GRC & Cyber Risk Manager ! Our client is at the forefront of secure, scalable computing. As part of our Enterprise Security team, you’ll play a pivotal role in shaping how we manage cyber risk across their global operations and supply chain. This is a high-impact contract role for a … technical risk expert who thrives in complexity and values innovation. Contract Details Contract Length: 6 months (with potential extension) Daily Rate: £700 per day (inside IR35) Location: Cambridge (hybrid – twice per week on-site) Key Responsibilities Lead and enhance Arm’s Information Security Risk Management Framework within ServiceNow IRM. Act as technical SME for ServiceNow IRM, embedding frameworks … and best practices. Oversee third-party cyber risk assessments, contract reviews, and supplier monitoring. Conduct post-incident reviews and integrate lessons learned into the control environment. Develop and monitor Key Risk and Control Indicators to inform decision-making. Collaborate across Enterprise IT and Engineering to identify and manage service security risks. Support AI and automation initiatives to streamline More ❯

the either the Vitality Bournemouth or London office. Full time, 35 hours per week. We are happy to discuss flexible working! Top 3 skills needed for this role: IT risk & compliance expertise – strong knowledge of controls and regulatory frameworks Capacity planning & performance monitoring – forecasting, optimisation, and tool usage Stakeholder communication – translating technical risks and influencing decisions What this role … is all about: As our IT Capacity and Risk Manager, you’ll play a pivotal role in ensuring our technology environment remains robust, compliant, and future-ready. Lead cross-team efforts to embed risk management and capacity planning, advancing IT operations and strategic goals with excellence and compliance.This is a high-impact role where you’ll translate … activities across infrastructure and applications Forecast resource needs based on business growth and usage trends Ensure systems meet SLAs without over-provisioning Identify performance bottlenecks and underutilised resources Governance & Risk Management Design and assess IT controls (e.g., access, change, application, general IT controls) Conduct gap analyses against different frameworks such as ISO 27001 Maintain and enhance the IT risk More ❯

Company Overview A prominent global financial institution is seeking a dynamic leader to oversee the engineering function within its risk technology division. The organisation values diversity, innovation, and a collaborative approach to solving complex challenges in the financial sector. Role Summary The successful candidate will take charge of a London-based engineering team responsible for developing and maintaining technology … solutions that underpin the firm’s risk management capabilities. This is a hands-on leadership position, requiring active involvement in technical discussions, architectural decisions, and the overall delivery of robust, scalable, and secure risk systems. Main Duties Guide and support a team of engineers in designing, building, and deploying platforms for risk analysis and management. Collaborate closely … with stakeholders across risk, quantitative analysis, trading, and technology to deliver solutions that meet business and regulatory needs. Champion the use of modern development practices, including automation, continuous integration, and cloud-native technologies. Ensure all systems are resilient, high-performing, and capable of handling sensitive financial information securely. Oversee project delivery to ensure compliance with relevant regulations (such as More ❯

Company Overview A prominent global financial institution is seeking a dynamic leader to oversee the engineering function within its risk technology division. The organisation values diversity, innovation, and a collaborative approach to solving complex challenges in the financial sector. Role Summary The successful candidate will take charge of a London-based engineering team responsible for developing and maintaining technology … solutions that underpin the firm’s risk management capabilities. This is a hands-on leadership position, requiring active involvement in technical discussions, architectural decisions, and the overall delivery of robust, scalable, and secure risk systems. Main Duties Guide and support a team of engineers in designing, building, and deploying platforms for risk analysis and management. Collaborate closely … with stakeholders across risk, quantitative analysis, trading, and technology to deliver solutions that meet business and regulatory needs. Champion the use of modern development practices, including automation, continuous integration, and cloud-native technologies. Ensure all systems are resilient, high-performing, and capable of handling sensitive financial information securely. Oversee project delivery to ensure compliance with relevant regulations (such as More ❯

Regional Risk and Quality Assurance Manager (f/m/d) Full or part time Empowering You - to feel our passion for technology As NTT DATA Business Solutions, we are more than just a company. We are a team of passionate people who drive innovation - from advisory and implementation to managed services and beyond. With SAP at our … and initiatives to improve our consulting business aiming at increasing consulting quality, streamlining approaches across countries and developing consultants in their respective fields. Within GFC, the Global Quality and Risk Unit (GQR) is in charge of defining, implementing and enforcing Risk Management processes within all NTT DATA Business Solutions companies. The Risk and Quality Assurance team effectively … monitors risks throughout the various project phases in an operative manner. You as the Regional Risk and Quality Assurance Manager will directly manage Risk, Quality Assurance processes for selected projects, and you will directly engage with and coordinate FTEs. Implementation and execution of Risk and Quality Assurance Management for selected Consulting projects: Execution of risk More ❯

Job Title: Risk and Compliance Manager Location: Cambridge (Hybrid) Salary: £60,000 to £70,000 plus package Function: Risk & Compliance within a Fintech/Technology-focused company Primary Objective To lead and manage compliance and risk management operations—ensuring the company remains compliant with internal policies, external standards (like ISO27001, GDPR), and regulatory bodies. Key Responsibilities … Management Review and enhance existing compliance policies Draft new policies aligned with standards like ISO27001 Audits & Controls Conduct internal audits; support external audits Validate and test the effectiveness of risk controls Training & Awareness Organise workshops and training sessions for staff on compliance topics Risk Management Perform risk assessments Define risk tolerance and implement control measures Manage … risk management software and reporting Stakeholder Communication Prepare reports for executives Advise leadership on risk mitigation strategies External Engagement Keep up-to-date with evolving regulations Build relationships with regulators and industry bodies Required Skills & Experience Essential 5+ years in a similar Risk and Compliance role ISO27001 GDPR Experience managing audits Policy and procedure development Solid risk More ❯

Senior Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Senior Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities. This role supports … informed decision-making across the enterprise by providing expert insight into the effectiveness of security controls, risk management practices, and supply chain security. The position may sit within one of several assurance functions, including internal security assurance, supply chain assurance, or enterprise-level risk management. Key Responsibilities Lead and manage a team of security professionals to deliver high … in assurance practices. Ensure assurance reports are accurate, actionable, and meet quality standards. Share good practices and lessons learned across the organisation. Experience Required Proven leadership experience in security risk assurance or related fields. Strong understanding of enterprise security risk management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at More ❯

Senior Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Senior Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities. This role supports … informed decision-making across the enterprise by providing expert insight into the effectiveness of security controls, risk management practices, and supply chain security. The position may sit within one of several assurance functions, including internal security assurance, supply chain assurance, or enterprise-level risk management. Key Responsibilities Lead and manage a team of security professionals to deliver high … in assurance practices. Ensure assurance reports are accurate, actionable, and meet quality standards. Share good practices and lessons learned across the organisation. Experience Required Proven leadership experience in security risk assurance or related fields. Strong understanding of enterprise security risk management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at More ❯

McFall Recruitment are partnering with a Global Financial Services organisation on a Security Governance, Risk & Compliance Manager 📍 London or Edinburgh | Hybrid We’re looking for an experienced Security Governance, Risk & Compliance Manager (GRC) to lead a global team responsible for strengthening and harmonising the organisation’s cybersecurity control framework. Reporting directly to the CISO, you’ll … manage a team of six covering governance, risk, and audit, driving consistency, compliance, and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you’ll do Lead and … develop a global GRC team, ensuring effective cyber risk management and governance practices. Maintain and enhance policies, standards, and documentation to meet regulatory and audit requirements. Oversee vendor and third-party due diligence, supplier notifications, and control assurance. Utilise tools such as SecurityScorecard, RiskConnect, and SharePoint for risk monitoring and reporting. Translate technical risk into board-level More ❯

want to shape security strategies in a fast-paced environment, we'd love to hear from you. My client is a leading Telecommunication Business, looking for a skilled Security Risk Manager to help strengthen their organisation's approach to information security, risk mitigation, and compliance. In this role, you'll work alongside talented teams, evaluating 3rd party … supplier security, identifying threats, and implementing effective controls to keep data and assets protected. Your responsibilities will include: Conducting risk assessments and supplier due diligence across a range of projects. Communicating security risks clearly to business stakeholders so they can take informed action. Ensuring compliance with industry regulations and security standards (ISO27001, NIST, GDPR). Developing and maintaining policies … procedures, and audit practices that improve overall security posture. Responding proactively to emerging risks in a fast-changing landscape. If you have a solid background in Cyber Security and Risk Management, can explain technical topics in clear terms, and want to make a tangible impact, we want to hear from you ! Robert Walters Operations Limited is an employment business More ❯

Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Security Assurance Manager supports the organisation's enterprise security risk management function by conducting assurance activities that evaluate the effectiveness of security controls across people, processes, and … of security posture, evaluates supply chain security, and identifies enterprise-level risks. This role offers the opportunity to work across multiple assurance functions, including internal security assurance, supply chain risk, and strategic enterprise risk management. Key Responsibilities Conduct research and gather evidence to assess the effectiveness of security controls. Evaluate and interpret assurance data to support a holistic … to stakeholders and represent the assurance function in meetings and forums. Maintain awareness of current threats, vulnerabilities, and best practices in security assurance Experience Required Experience in information security, risk management, or assurance roles. Desirable qualifications - CISM, CRISC, CISSP, CISA, CGEIT, ISO 27001 Lead Auditor (or equivalent) Hold an active and transferable SC clearance Strong analytical skills with the More ❯

Audit & Risk Recruitment are working on a fantastic Technology Risk and Assurance opportunity for a large Technology business. This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the … company's technology and cybersecurity domains. As a Risk & Assurance Manager, you'll be responsible for and have ownership for: Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives. Owning and maintaining IT Risk and Control Matrices (RCMs) , ensuring they remain current, comprehensive, and aligned with … and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency. Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. Coordinating and representing IT risk in internal, external audits and certification More ❯

Role: IT Risk and Control Manager Location: Blackburn, BB1 2FA (Relocating to Bolton) Contract: Full-Time/Permanent Salary: Up to £65,000 (Dependant on Experience) & Bonus Scheme Company: EG Group *This is an office-based role 5 days a week* About the Role: Are you an IT Risk and Control Manager looking to grow your … with an international business? EG Group are on the lookout for an analytical and motivated individual to work closely with our UK and Global colleagues to develop our IT Risk and Control capability in line with our IT control framework. This role will involve working very closely with our IT colleagues, Control Owners, and Operators to deliver new IT … is a great time to join us at a period of significant growth, change and opportunity. If you have experience working in IT audit and have a passion for Risk and Control management, then we would love to hear from you! What you’ll be doing: Perform IT Control implementation in line with EG’s IT Control framework and More ❯

Senior Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Senior Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities click apply for More ❯

Guernsey, Channel Islands Permanent Excellent Low Tax Package The Company Reach International is working with this Global Accountancy firm to appoint an IT Audit & Risk Advisory Manager, to its Guernsey, Channel Islands office. The Role Responsible for the planning, resourcing and delivery of IT Audit & Risk Advisory engagements Supporting the growth of the IT Audit & Risk … services Developing and maintaining strong existing and potential client relationships Providing recommendations and solutions to clients as appropriate Supervising, coaching and mentoring junior staff Advising the External Audit and Risk Assurance teams on client's IT systems to support the planned audit approach The Candidate Qualified CISA, ACA, CPA, ACCA or equivalent Currently at Manager level in an More ❯