24 of 24 Risk Manager Jobs in the UK excluding London

Senior Risk Manager – Data Risk Location: London/Chatham/Wolverhampton Our longstanding client that operates within the financial services domain is hiring a Senior Risk Manager to lead our Data Rick function and provide second-line oversight across the Group. Reporting to the Group Head of Data, IT & Cyber Risk, you’ll play … a key role in embedding a robust data risk framework, ensuring compliance with regulatory requirements (incl. GDPR), and advising on risk posture across key business areas.Our client is offering £80,000 + 15% bonus + 28 days holiday + 13% pension + Hybrid working to be based in Chatham, Kent. What You’ll Do Provide second-line challenge … and assurance over data risk managed by first-line teams. Lead the development and implementation of data risk frameworks aligned with Group risk appetite. Conduct and support RCSAs, scenario analysis, and data risk reporting. Ensure oversight of data governance processes, data quality risks, and regulatory reporting (incl. GDPR compliance). Manage and develop a small team More ❯

We have exclusively partnered with a high-growth fintech providing payment administration, escrow, and loan agency solutions across Europe, the UK, and North America. They are seeking an experienced Risk Manager to lead its UK and European function. Risk Manager - UK/Europe (Fintech/Payments) | London Hybrid | Fully Flexible We have exclusively partnered with a … high-growth fintech providing payment administration, escrow, and loan agency solutions across Europe, the UK, and North America. They are seeking an experienced Risk Manager to lead its UK and European function. You'll oversee the delivery and continuous improvement of enterprise-wide risk frameworks, ensuring regulatory alignment across multiple jurisdictions, including the FCA and De Nederlandsche … Bank. The position partners with senior stakeholders to strengthen risk culture in a scaling, regulated technology business. Key duties include developing risk programmes, maintaining registers, supporting regulatory and compliance functions, training risk owners, horizon scanning, and regularly advising the senior leadership team. Required: 7+ years' experience in risk management, audit, or compliance for regulated payments, fintech More ❯

Third Party Risk Manager - Belfast (Hybrid, Outside IR35) - £500 per day - 3 Months We are seeking an experienced Third Party Risk Manager to oversee and enhance third-party cybersecurity and compliance practices across the enterprise. This critical role involves managing supplier risk assessments, ensuring regulatory alignment, and collaborating with cross-functional teams to maintain a … robust and transparent third-party risk management framework. Key Responsibilities: Maintain and evolve the Third-Party Risk Register, mapping vendors to business criticality, data access, and overall risk exposure. Conduct pre-contract due diligence and ongoing risk assessments for suppliers, service providers, and strategic partners. Review and negotiate security and data protection clauses within contracts, including … security standards, and regulatory obligations, escalating non-conformance where required. Coordinate third-party incident response and escalation procedures, ensuring prompt remediation and communication. Produce regular reporting on third-party risk posture for governance committees, senior stakeholders, and regulators. Align third-party risk practices with broader enterprise risk management and cybersecurity frameworks. What You Will Ideally Bring: Deep More ❯

Role: Information Security and Risk Manager Location: Aberford Leeds Contract: Permanent Working: Hybrid 3 days in the office As MICHELIN Connected Fleet, a division of the Michelin Group, leader in sustainable mobility for 130 years, we specialise in connected fleet management services and solutions. We are a market leader with over 30 years expertise in a high-growth … operating under the Michelin Connected Fleet name, we intend to be a major player in this market in the coming years. OUR DREAM We know our planet is at risk and we urgently need to find innovative ways to protect it. At Michelin, pioneering is what we do: We are innovating constantly, to explore new opportunities, with, around and … people. We nurture our team's growth with several company wide development programs - including our Diversity, Mentoring and Sustainability programs. THE ROLE IN SHORT: As the Information Security and Risk Manager, you are the central leader responsible for the company's overall security and compliance posture. You will manage the entire Information Security Management System (ISMS), ensuring the More ❯

The Risk- & Opportunity Manager implements Risk & Opportunity Management within the Project. The R&O Manager responsibilities are as follows: Responsible for continuous Risk and Opportunity Management on projects and services Actively drive and support R&O identification & develop robust R&O response plans Ensure the transparent communication of R&O information with the bid and … Project team, and relevant stakeholders Drive de-risking and opportunity development on an operational level. Create a Risk and Opportunity Management Plan explaining how R&Os will be managed on the Project (RAIDO inputs) Establish continuity in the Project R&O management by taking the R&O register from the bid as the baseline Regularly analyse the full scope … updated Ensure that robust mitigation actions are defined and reflected in the Project plan (cost, schedule, resources, scope) Regularly assess the progress and effectiveness of defined actions Implement regular Risk Review Boards and submit risk reports Regularly compare R&O exposure with the contingency amount in the EAC Ensure compliance with applicable accounting standards by sizing the Project More ❯

Senior Cyber Security Risk Manager Hybrid, Edinburgh Up to £70,000 + benefits Benefits In return for your expertise and commitment, youll receive: Annual bonus Flexible hybrid working Excellent healthcare and pension scheme Life assurance Electric Vehicle Scheme About the Role This is a brilliant opportunity for an experienced Cyber Security Risk professional to take ownership of … a global organisations risk management and compliance strategy. Youll be joining a forward-thinking cyber team thats investing heavily in maturing its Governance, Risk, and Compliance capability, giving you the chance to shape frameworks, influence senior leaders, and make a real impact on how the business manages risk. Youll lead key initiatives around risk governance, audit readiness … certifications and audits. About You Youll bring a mix of technical understanding, commercial awareness, and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes More ❯

Join a Leading Semiconductor Company as a GRC & Cyber Risk Manager ! Our client is at the forefront of secure, scalable computing. As part of our Enterprise Security team, you’ll play a pivotal role in shaping how we manage cyber risk across their global operations and supply chain. This is a high-impact contract role for a … technical risk expert who thrives in complexity and values innovation. Contract Details Contract Length: 6 months (with potential extension) Daily Rate: £700 per day (inside IR35) Location: Cambridge (hybrid – twice per week on-site) Key Responsibilities Lead and enhance Arm’s Information Security Risk Management Framework within ServiceNow IRM. Act as technical SME for ServiceNow IRM, embedding frameworks … and best practices. Oversee third-party cyber risk assessments, contract reviews, and supplier monitoring. Conduct post-incident reviews and integrate lessons learned into the control environment. Develop and monitor Key Risk and Control Indicators to inform decision-making. Collaborate across Enterprise IT and Engineering to identify and manage service security risks. Support AI and automation initiatives to streamline More ❯

the either the Vitality Bournemouth or London office. Full time, 35 hours per week. We are happy to discuss flexible working! Top 3 skills needed for this role: IT risk & compliance expertise – strong knowledge of controls and regulatory frameworks Capacity planning & performance monitoring – forecasting, optimisation, and tool usage Stakeholder communication – translating technical risks and influencing decisions What this role … is all about: As our IT Capacity and Risk Manager, you’ll play a pivotal role in ensuring our technology environment remains robust, compliant, and future-ready. Lead cross-team efforts to embed risk management and capacity planning, advancing IT operations and strategic goals with excellence and compliance.This is a high-impact role where you’ll translate … activities across infrastructure and applications Forecast resource needs based on business growth and usage trends Ensure systems meet SLAs without over-provisioning Identify performance bottlenecks and underutilised resources Governance & Risk Management Design and assess IT controls (e.g., access, change, application, general IT controls) Conduct gap analyses against different frameworks such as ISO 27001 Maintain and enhance the IT risk More ❯

Company Overview A prominent global financial institution is seeking a dynamic leader to oversee the engineering function within its risk technology division. The organisation values diversity, innovation, and a collaborative approach to solving complex challenges in the financial sector. Role Summary The successful candidate will take charge of a London-based engineering team responsible for developing and maintaining technology … solutions that underpin the firm's risk management capabilities. This is a hands-on leadership position, requiring active involvement in technical discussions, architectural decisions, and the overall delivery of robust, scalable, and secure risk systems. Main Duties Guide and support a team of engineers in designing, building, and deploying platforms for risk analysis and management. Collaborate closely … with stakeholders across risk, quantitative analysis, trading, and technology to deliver solutions that meet business and regulatory needs. Champion the use of modern development practices, including automation, continuous integration, and cloud-native technologies. Ensure all systems are resilient, high-performing, and capable of handling sensitive financial information securely. Oversee project delivery to ensure compliance with relevant regulations (such as More ❯

We have an exciting opportunity to join our team as a Techn ology Governance and Risk Manager . You will be responsible for developing and overseeing governance practices that align IT operations with strategic business objectives, regulatory standards, and enterprise risk tolerance. You will also manage a team of analysts to embed accountability and continuous improvement across … the technology landscape. What you will do: This is an overview and not an exhaustive list of responsibilities. Collaborating with your line manager, you will develop your own objectives but focus on all the following: Develop, update, and enforce comprehensive IT governance policies and align to our risk management frameworks that support organisational objectives, regulatory compliance, and best … practices. Work closely with risk owners across Technology to review, validate, and refine risk mitigations and action plans before submitting them to the risk department. Ensure that all identified risks are clearly documented, prioritised, and aligned with established governance standards. Lead regular risk assessments and facilitate workshops to promote risk awareness and proactive management throughout More ❯

Job Title: Risk and Compliance Manager Location: Cambridge (Hybrid) Salary: £60,000 to £70,000 plus package Function: Risk & Compliance within a Fintech/Technology-focused company Primary Objective To lead and manage compliance and risk management operations—ensuring the company remains compliant with internal policies, external standards (like ISO27001, GDPR), and regulatory bodies. Key Responsibilities … Management Review and enhance existing compliance policies Draft new policies aligned with standards like ISO27001 Audits & Controls Conduct internal audits; support external audits Validate and test the effectiveness of risk controls Training & Awareness Organise workshops and training sessions for staff on compliance topics Risk Management Perform risk assessments Define risk tolerance and implement control measures Manage … risk management software and reporting Stakeholder Communication Prepare reports for executives Advise leadership on risk mitigation strategies External Engagement Keep up-to-date with evolving regulations Build relationships with regulators and industry bodies Required Skills & Experience Essential 5+ years in a similar Risk and Compliance role ISO27001 GDPR Experience managing audits Policy and procedure development Solid risk More ❯

Senior Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Senior Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities. This role supports … informed decision-making across the enterprise by providing expert insight into the effectiveness of security controls, risk management practices, and supply chain security. The position may sit within one of several assurance functions, including internal security assurance, supply chain assurance, or enterprise-level risk management. Key Responsibilities Lead and manage a team of security professionals to deliver high … in assurance practices. Ensure assurance reports are accurate, actionable, and meet quality standards. Share good practices and lessons learned across the organisation. Experience Required Proven leadership experience in security risk assurance or related fields. Strong understanding of enterprise security risk management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at More ❯

McFall Recruitment are partnering with a Global Financial Services organisation on a Security Governance, Risk & Compliance Manager 📍 London or Edinburgh | Hybrid We’re looking for an experienced Security Governance, Risk & Compliance Manager (GRC) to lead a global team responsible for strengthening and harmonising the organisation’s cybersecurity control framework. Reporting directly to the CISO, you’ll … manage a team of six covering governance, risk, and audit, driving consistency, compliance, and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you’ll do Lead and … develop a global GRC team, ensuring effective cyber risk management and governance practices. Maintain and enhance policies, standards, and documentation to meet regulatory and audit requirements. Oversee vendor and third-party due diligence, supplier notifications, and control assurance. Utilise tools such as SecurityScorecard, RiskConnect, and SharePoint for risk monitoring and reporting. Translate technical risk into board-level More ❯

McFall Recruitment are partnering with a Global Financial Services organisation on a Security Governance, Risk & Compliance Manager London or Edinburgh Hybrid We're looking for an experienced Security Governance, Risk & Compliance Manager (GRC) to lead a global team responsible for strengthening and harmonising the organisation's cybersecurity control framework. Reporting directly to the CISO, you'll … manage a team of six covering governance, risk, and audit, driving consistency, compliance, and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you'll do Lead and … develop a global GRC team, ensuring effective cyber risk management and governance practices. Maintain and enhance policies, standards, and documentation to meet regulatory and audit requirements. Oversee vendor and third-party due diligence, supplier notifications, and control assurance. Utilise tools such as SecurityScorecard, RiskConnect, and SharePoint for risk monitoring and reporting. Translate technical risk into board-level More ❯

Security Risk Assurance Manager - SC cleared Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Security Assurance Manager supports the organisation's enterprise security risk management function by conducting assurance activities that evaluate the effectiveness of security controls across people, processes, and … of security posture, evaluates supply chain security, and identifies enterprise-level risks. This role offers the opportunity to work across multiple assurance functions, including internal security assurance, supply chain risk, and strategic enterprise risk management. Key Responsibilities Conduct research and gather evidence to assess the effectiveness of security controls. Evaluate and interpret assurance data to support a holistic … to stakeholders and represent the assurance function in meetings and forums. Maintain awareness of current threats, vulnerabilities, and best practices in security assurance Experience Required Experience in information security, risk management, or assurance roles. Desirable qualifications - CISM, CRISC, CISSP, CISA, CGEIT, ISO 27001 Lead Auditor (or equivalent) Hold an active and transferable SC clearance Strong analytical skills with the More ❯

Audit & Risk Recruitment are working on a fantastic Technology Risk and Assurance opportunity for a large Technology business. This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the … company's technology and cybersecurity domains. As a Risk & Assurance Manager, you'll be responsible for and have ownership for: Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives. Owning and maintaining IT Risk and Control Matrices (RCMs) , ensuring they remain current, comprehensive, and aligned with … and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency. Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. Coordinating and representing IT risk in internal, external audits and certification More ❯

Audit & Risk Recruitment are working on a fantastic Technology Risk and Assurance opportunity for a large Technology business. This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the … company's technology and cybersecurity domains. As a Risk & Assurance Manager, you'll be responsible for and have ownership for: Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives. Owning and maintaining IT Risk and Control Matrices (RCMs) , ensuring they remain current, comprehensive, and aligned with … and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency. Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. Coordinating and representing IT risk in internal, external audits and certification More ❯

Data Risk & Control Monitoring Manager – Sheffield (Hybrid) – Permanent Location: Sheffield (Hybrid – 2–3 days per week on-site) Type: Permanent Sector: Consultancy/Financial Services/Data & Analytics Salary: Competitive + package The Opportunity We’re partnering with a leading consultancy to recruit a Data Risk & Control Monitoring Manager for their growing Data & Analytics practice. This … role offers the chance to make a real impact with high-profile clients in the financial services sector by shaping and embedding effective data risk and control frameworks that strengthen governance and regulatory compliance. You’ll act as a trusted advisor to business, risk, compliance, and technology teams — ensuring that data is properly governed, controlled, and aligned with … enterprise and regulatory expectations. Key Responsibilities Develop and implement data risk and control frameworks, including the design of key control indicators (KCIs). Identify and mitigate risks related to data quality, usage, access, and retention. Work closely with Risk, Compliance, and Internal Audit functions to ensure consistent regulatory alignment. Translate governance policies and standards into operational data control More ❯

McFall Recruitment are partnering with a Financial Services company seeking a pragmatic and experienced Security Governance, Risk & Compliance Manager to lead and evolve our global Information Security control framework. This pivotal role will shape the resilience, responsiveness, and maturity of our Information Security function across all regions and business units. Reporting directly to the Chief Information Security Officer … key leadership role in transforming Cyber Security -enhancing people, processes, and technology to protect the business and maintain operational resilience. What you'll do Lead the global Cyber Security risk management programme , driving best-in-class governance and compliance. Develop and maintain cybersecurity policies, standards, and procedures aligned with regulatory requirements and business objectives. Conduct risk assessments , manage … control evaluations, and oversee treatment planning. Embed cyber risk into enterprise risk frameworks through collaboration with global teams. Oversee vendor risk management and ensure third-party compliance. Chair and lead the Cyber Security Digital Resilience Forum . Support the NIST maturity uplift programme and alignment with ISO 27001:2022 . Ensure compliance with key regulatory standards (e.g. More ❯

people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com. Internal Grade C Job Description Experian is looking for a strategic Senior Manager of Insider Risk to help lead and expand our global Insider Risk Program within the Cyber Fusion Centre. You will report directly to the Head of Insider Risk Management and manage a team of investigators, overseeing complex security investigations, and enhancing insider risk detection and response capabilities. You will play an important leadership role in developing programmes, driving continuous improvement, and encouraging collaboration. Summary of Primary Responsibilities Collaborate with the Head of Insider Risk Management to implement strategic projects and guide program maturity. Identify operational … improvements, including automation, analytics, and process optimization. Oversee and conduct comprehensive insider risk investigations involving data theft, sabotage, espionage, misuse, and workplace violence. Develop investigative strategies, conduct interviews, coordinate with internal partners, and produce objective, well-documented case summaries. Analyze data from technical and behavioral sources to detect and respond to insider risk incidents. Develop & maintain insider threat More ❯

Job Summary The Data Risk & Control Monitoring Manager plays a critical role in ensuring the organisation maintains a robust and effective data control environment. The role is responsible for designing, implementing, and overseeing data control frameworks that mitigate data-related risks across data quality, access, usage, retention, and movement. This position works closely with Data Risk Stewards … Compliance, Internal Audit, and Risk functions to ensure alignment with data governance policies, regulatory expectations, and internal standards. The role requires strong analytical capability, governance acumen, and the ability to influence stakeholders across business and technology functions. Key Responsibilities Design and implement a comprehensive data control monitoring strategy aligned with enterprise data governance policies and regulatory requirements. Develop and … maintain a data risk and control framework , ensuring effective management of data quality, access, retention, and movement risks. Partner with Data Risk Stewards and business data owners to define and embed key controls across critical data processes. Monitor and assess the effectiveness of data management controls , identifying gaps and recommending remediation or enhancement actions. Engage with Risk More ❯

This is a position within a security risk team, focused on assessing and managing third-party risks. The role involves conducting supplier due diligence, reviewing compliance declarations, and supporting audit readiness across multiple frameworks. Reporting to Head of GRC, this is a FTC role with hybrid working in Manchester Client Details A major UK-based technology and infrastructure provider … offering connectivity, cloud, and security services. The organisation operates across several UK and international sites. Description Conduct and maintain supplier security risk assessments and due diligence activities. Review and report on supplier security declarations in line with national telecom regulations. Provide strategic advice on managing supplier-related risks and compliance gaps. Govern relationships with critical suppliers to ensure alignment … Communicate risks clearly to non-technical stakeholders to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. Profile Extensive experience in security risk management, particularly in third-party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector More ❯

The Audit & Risk Recruitment company is working with a rapidly growing retail business to help them find a IT Risk and Control Manager. They are looking for an analytical and motivated individual to work closely with UK and Global colleagues to develop an IT Risk and Control capability. This role will involve working very closely with our … drive through remediation to completion. Proactively look for opportunities to centralise and automate controls and processes to drive efficiency using existing tools and technologies. Support the Head of IT Risk in collation and delivery of information for Audit, Risk and Board meetings. Support rollout of new Cyber Initiatives Build relationships globally to become a trusted advisor to our … we’re looking for: Qualified to degree level with CISA, CRISC or similar professional qualifications/QBE Desirable: Project Management qualifications 4 years minimum experience of working within IT Risk and Control Confident in designing and documenting new and/or existing IT General Controls from across access, change, and operations domains drawing on experience to do so independently More ❯

We are currently seeking a Data Risk & Control Monitoring Manager to work with our Private/Banking sector client 6 months contract Excellent rates inside IR35 Location : Sheffield 2 days per week attendance 3 remote The ideal candidates will have a proven Data Risk & Control Monitoring Management background with Banking/Financial sector experience Role description: Data … Control Management is responsible for designing, implementing and managing robust data control frameworks to effectively mitigate data risk related to quality, usage, access, retention and movement for the organization. Example responsibilities include drive the monitoring strategy across data management controls in compliance with data governance policies and standards in partnership with Data Risk Stewards to ensure data risk is effectively managed, engage with Risk, Compliance and Internal Audit to ensure data management controls align with regulatory requirements and internal policies and standards and monitor and track key data quality metrics and key control indicators More ❯