17 of 17 Permanent Risk Manager Jobs in the UK excluding London

We have exclusively partnered with a high-growth fintech providing payment administration, escrow, and loan agency solutions across Europe, the UK, and North America. They are seeking an experienced Risk Manager to lead its UK and European function. Risk Manager - UK/Europe (Fintech/Payments) | London Hybrid | Fully Flexible We have exclusively partnered with a … high-growth fintech providing payment administration, escrow, and loan agency solutions across Europe, the UK, and North America. They are seeking an experienced Risk Manager to lead its UK and European function. You'll oversee the delivery and continuous improvement of enterprise-wide risk frameworks, ensuring regulatory alignment across multiple jurisdictions, including the FCA and De Nederlandsche … Bank. The position partners with senior stakeholders to strengthen risk culture in a scaling, regulated technology business. Key duties include developing risk programmes, maintaining registers, supporting regulatory and compliance functions, training risk owners, horizon scanning, and regularly advising the senior leadership team. Required: 7+ years' experience in risk management, audit, or compliance for regulated payments, fintech More ❯

Cyber Risk Manager We’re working with a large organisation going through major cyber transformation to hire a Cyber Risk Manager . This role combines leadership with hands-on delivery, giving you the chance to shape how cyber risks are understood and managed across the business. What you’ll do Own and maintain the cyber risk register Turn risk data into clear insight for senior leaders Drive reviews and ensure risks are mitigated or escalated Work with audit, risk, and continuity teams to embed cyber risk Improve processes, tools, and methodologies What we’re looking for Strong knowledge of cyber risk and enterprise risk registers Familiarity with frameworks like NIST More ❯

Role: Information Security and Risk Manager Location: Aberford Leeds Contract: Permanent Working: Hybrid 3 days in the office As MICHELIN Connected Fleet, a division of the Michelin Group, leader in sustainable mobility for 130 years, we specialise in connected fleet management services and solutions. We are a market leader with over 30 years expertise in a high-growth … operating under the Michelin Connected Fleet name, we intend to be a major player in this market in the coming years. OUR DREAM We know our planet is at risk and we urgently need to find innovative ways to protect it. At Michelin, pioneering is what we do: We are innovating constantly, to explore new opportunities, with, around and … people. We nurture our team's growth with several company wide development programs - including our Diversity, Mentoring and Sustainability programs. THE ROLE IN SHORT: As the Information Security and Risk Manager, you are the central leader responsible for the company's overall security and compliance posture. You will manage the entire Information Security Management System (ISMS), ensuring the More ❯

The Risk- & Opportunity Manager implements Risk & Opportunity Management within the Project. The R&O Manager responsibilities are as follows: Responsible for continuous Risk and Opportunity Management on projects and services Actively drive and support R&O identification & develop robust R&O response plans Ensure the transparent communication of R&O information with the bid and … Project team, and relevant stakeholders Drive de-risking and opportunity development on an operational level. Create a Risk and Opportunity Management Plan explaining how R&Os will be managed on the Project (RAIDO inputs) Establish continuity in the Project R&O management by taking the R&O register from the bid as the baseline Regularly analyse the full scope … updated Ensure that robust mitigation actions are defined and reflected in the Project plan (cost, schedule, resources, scope) Regularly assess the progress and effectiveness of defined actions Implement regular Risk Review Boards and submit risk reports Regularly compare R&O exposure with the contingency amount in the EAC Ensure compliance with applicable accounting standards by sizing the Project More ❯

Senior Cyber Security Risk Manager Hybrid, Edinburgh Up to £70,000 + benefits Benefits In return for your expertise and commitment, youll receive: Annual bonus Flexible hybrid working Excellent healthcare and pension scheme Life assurance Electric Vehicle Scheme About the Role This is a brilliant opportunity for an experienced Cyber Security Risk professional to take ownership of … a global organisations risk management and compliance strategy. Youll be joining a forward-thinking cyber team thats investing heavily in maturing its Governance, Risk, and Compliance capability, giving you the chance to shape frameworks, influence senior leaders, and make a real impact on how the business manages risk. Youll lead key initiatives around risk governance, audit readiness … certifications and audits. About You Youll bring a mix of technical understanding, commercial awareness, and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes More ❯

from you! About the Role Step into a dynamic, forward-thinking environment where transformation is at the heart of everything we do. As part of our Digital & Corporate Functions Risk Oversight team, you'll play a pivotal role in shaping a robust risk and control framework that supports innovation and change. This is more than a compliance role … a space where your expertise can grow and evolve, giving you the chance to develop professionally while making a real impact. If you're passionate about driving excellence in risk management and thrive in an environment that values continuous improvement, this is your opportunity to lead and learn. What you'll be doing Work closely with Digital leaders, managers … and stakeholders providing guidance, oversight and challenge to the technology and digital risk control environment, focusing on resilience in operations, strategic delivery and deployment. Maintain effective stakeholder relationships with the relevant Business colleagues to influence and challenge the management of business risk in line with the HL Risk Taxonomy and Enterprise Risk Management Framework. Provide oversight More ❯

Join a Leading Semiconductor Company as a GRC & Cyber Risk Manager ! Our client is at the forefront of secure, scalable computing. As part of our Enterprise Security team, you’ll play a pivotal role in shaping how we manage cyber risk across their global operations and supply chain. This is a high-impact contract role for a … technical risk expert who thrives in complexity and values innovation. Contract Details Contract Length: 6 months (with potential extension) Daily Rate: £700 per day (inside IR35) Location: Cambridge (hybrid – twice per week on-site) Key Responsibilities Lead and enhance Arm’s Information Security Risk Management Framework within ServiceNow IRM. Act as technical SME for ServiceNow IRM, embedding frameworks … and best practices. Oversee third-party cyber risk assessments, contract reviews, and supplier monitoring. Conduct post-incident reviews and integrate lessons learned into the control environment. Develop and monitor Key Risk and Control Indicators to inform decision-making. Collaborate across Enterprise IT and Engineering to identify and manage service security risks. Support AI and automation initiatives to streamline More ❯

Job Title: Risk and Compliance Manager Location: Cambridge (Hybrid) Salary: £60,000 to £70,000 plus package Function: Risk & Compliance within a Fintech/Technology-focused company Primary Objective To lead and manage compliance and risk management operations—ensuring the company remains compliant with internal policies, external standards (like ISO27001, GDPR), and regulatory bodies. Key Responsibilities … Management Review and enhance existing compliance policies Draft new policies aligned with standards like ISO27001 Audits & Controls Conduct internal audits; support external audits Validate and test the effectiveness of risk controls Training & Awareness Organise workshops and training sessions for staff on compliance topics Risk Management Perform risk assessments Define risk tolerance and implement control measures Manage … risk management software and reporting Stakeholder Communication Prepare reports for executives Advise leadership on risk mitigation strategies External Engagement Keep up-to-date with evolving regulations Build relationships with regulators and industry bodies Required Skills & Experience Essential 5+ years in a similar Risk and Compliance role ISO27001 GDPR Experience managing audits Policy and procedure development Solid risk More ❯

Senior Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Senior Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities. This role supports … informed decision-making across the enterprise by providing expert insight into the effectiveness of security controls, risk management practices, and supply chain security. The position may sit within one of several assurance functions, including internal security assurance, supply chain assurance, or enterprise-level risk management. Key Responsibilities Lead and manage a team of security professionals to deliver high … in assurance practices. Ensure assurance reports are accurate, actionable, and meet quality standards. Share good practices and lessons learned across the organisation. Experience Required Proven leadership experience in security risk assurance or related fields. Strong understanding of enterprise security risk management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at More ❯

McFall Recruitment are partnering with a Global Financial Services organisation on a Security Governance, Risk & Compliance Manager 📍 London or Edinburgh | Hybrid We’re looking for an experienced Security Governance, Risk & Compliance Manager (GRC) to lead a global team responsible for strengthening and harmonising the organisation’s cybersecurity control framework. Reporting directly to the CISO, you’ll … manage a team of six covering governance, risk, and audit, driving consistency, compliance, and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you’ll do Lead and … develop a global GRC team, ensuring effective cyber risk management and governance practices. Maintain and enhance policies, standards, and documentation to meet regulatory and audit requirements. Oversee vendor and third-party due diligence, supplier notifications, and control assurance. Utilise tools such as SecurityScorecard, RiskConnect, and SharePoint for risk monitoring and reporting. Translate technical risk into board-level More ❯

want to shape security strategies in a fast-paced environment, we'd love to hear from you. My client is a leading Telecommunication Business, looking for a skilled Security Risk Manager to help strengthen their organisation's approach to information security, risk mitigation, and compliance. In this role, you'll work alongside talented teams, evaluating 3rd party … supplier security, identifying threats, and implementing effective controls to keep data and assets protected. Your responsibilities will include: Conducting risk assessments and supplier due diligence across a range of projects. Communicating security risks clearly to business stakeholders so they can take informed action. Ensuring compliance with industry regulations and security standards (ISO27001, NIST, GDPR). Developing and maintaining policies … procedures, and audit practices that improve overall security posture. Responding proactively to emerging risks in a fast-changing landscape. If you have a solid background in Cyber Security and Risk Management, can explain technical topics in clear terms, and want to make a tangible impact, we want to hear from you ! Robert Walters Operations Limited is an employment business More ❯

Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Security Assurance Manager supports the organisation's enterprise security risk management function by conducting assurance activities that evaluate the effectiveness of security controls across people, processes, and … of security posture, evaluates supply chain security, and identifies enterprise-level risks. This role offers the opportunity to work across multiple assurance functions, including internal security assurance, supply chain risk, and strategic enterprise risk management. Key Responsibilities Conduct research and gather evidence to assess the effectiveness of security controls. Evaluate and interpret assurance data to support a holistic … to stakeholders and represent the assurance function in meetings and forums. Maintain awareness of current threats, vulnerabilities, and best practices in security assurance Experience Required Experience in information security, risk management, or assurance roles. Desirable qualifications - CISM, CRISC, CISSP, CISA, CGEIT, ISO 27001 Lead Auditor (or equivalent) Hold an active and transferable SC clearance Strong analytical skills with the More ❯

Audit & Risk Recruitment are working on a fantastic Technology Risk and Assurance opportunity for a large Technology business. This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the … company's technology and cybersecurity domains. As a Risk & Assurance Manager, you'll be responsible for and have ownership for: Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives. Owning and maintaining IT Risk and Control Matrices (RCMs) , ensuring they remain current, comprehensive, and aligned with … and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency. Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. Coordinating and representing IT risk in internal, external audits and certification More ❯

Role: IT Risk and Control Manager Location: Blackburn, BB1 2FA (Relocating to Bolton) Contract: Full-Time/Permanent Salary: Up to £65,000 (Dependant on Experience) & Bonus Scheme Company: EG Group *This is an office-based role 5 days a week* About the Role: Are you an IT Risk and Control Manager looking to grow your … with an international business? EG Group are on the lookout for an analytical and motivated individual to work closely with our UK and Global colleagues to develop our IT Risk and Control capability in line with our IT control framework. This role will involve working very closely with our IT colleagues, Control Owners, and Operators to deliver new IT … is a great time to join us at a period of significant growth, change and opportunity. If you have experience working in IT audit and have a passion for Risk and Control management, then we would love to hear from you! What you’ll be doing: Perform IT Control implementation in line with EG’s IT Control framework and More ❯

Data Risk & Control Monitoring Manager – Sheffield (Hybrid) – Permanent Location: Sheffield (Hybrid – 2–3 days per week on-site) Type: Permanent Sector: Consultancy/Financial Services/Data & Analytics Salary: Competitive + package The Opportunity We’re partnering with a leading consultancy to recruit a Data Risk & Control Monitoring Manager for their growing Data & Analytics practice. This … role offers the chance to make a real impact with high-profile clients in the financial services sector by shaping and embedding effective data risk and control frameworks that strengthen governance and regulatory compliance. You’ll act as a trusted advisor to business, risk, compliance, and technology teams — ensuring that data is properly governed, controlled, and aligned with … enterprise and regulatory expectations. Key Responsibilities Develop and implement data risk and control frameworks, including the design of key control indicators (KCIs). Identify and mitigate risks related to data quality, usage, access, and retention. Work closely with Risk, Compliance, and Internal Audit functions to ensure consistent regulatory alignment. Translate governance policies and standards into operational data control More ❯

people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com. Internal Grade C Job Description Experian is looking for a strategic Senior Manager of Insider Risk to help lead and expand our global Insider Risk Program within the Cyber Fusion Centre. You will report directly to the Head of Insider Risk Management and manage a team of investigators, overseeing complex security investigations, and enhancing insider risk detection and response capabilities. You will play an important leadership role in developing programmes, driving continuous improvement, and encouraging collaboration. Summary of Primary Responsibilities Collaborate with the Head of Insider Risk Management to implement strategic projects and guide program maturity. Identify operational … improvements, including automation, analytics, and process optimization. Oversee and conduct comprehensive insider risk investigations involving data theft, sabotage, espionage, misuse, and workplace violence. Develop investigative strategies, conduct interviews, coordinate with internal partners, and produce objective, well-documented case summaries. Analyze data from technical and behavioral sources to detect and respond to insider risk incidents. Develop & maintain insider threat More ❯

major UK-based technology and infrastructure provider offering connectivity, cloud, and security services. The organisation operates across several UK and international sites. Job Description Conduct and maintain supplier security risk assessments and due diligence activities. Review and report on supplier security declarations in line with national telecom regulations. Provide strategic advice on managing supplier related risks and compliance gaps. … clearly to non-technical stakeholders to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. The Successful Applicant Extensive experience in security risk management, particularly in third party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector More ❯