Cyber Security Risk Manager | £55,000 - £60,000 base We’re working with a financial services organization that’s looking to strengthen its risk function with the addition of a dedicated Cyber Security Risk Manager. This role sits at the intersection of cybersecurity and enterprise risk, helping to protect systems, data, and people by driving effective oversight of technology and information security risks. As part of a wider risk and compliance team, you’ll help define and deliver assurance activities, shape risk frameworks, and support the ongoing maturity of cyber and technology controls across the business. It’s a great fit for someone who enjoys working across both technical and strategic layers of security, contributing to a safer, more resilient organization. Responsibilities: Collaborate with technical teams to ensure that controls are well-designed, embedded, and consistently applied. Play a vital role in evolving the risk management framework, particularly across cybersecurity and IT domains. Deliver independent assessments of the effectiveness of controls and identify areas for improvement. Act as a key second-line risk partner across technology and information security functions. Lead assurance activities, including reviews and thematic testing, to measure alignment with internal standards and external regulations. Communicate findings and risk exposures clearly to senior stakeholders, supporting informed decision-making. Work in close partnership with internal audit, data protection, and compliance functions to ensure cohesive oversight. Help embed a strong risk culture and raise awareness of security risks across the business. Requirements: Strong working knowledge of risk and control frameworks such as ISO 27001, NIST, or equivalent. Skilled in stakeholder engagement, with the confidence to challenge and influence across different teams. Solid background in technology or cyber risk management, ideally within a regulated environment. Practical experience conducting risk reviews, audits, or similar assurance activities. A proactive and analytical mindset, with the ability to interpret complex issues and propose clear solutions. Relevant professional certifications (CISM, CISSP, CRISC, etc.) are a plus, but not a must. Passion for improving risk maturity and contributing to a secure, well-governed technology environment. This role is ideal for someone who enjoys balancing both the strategic and technical aspects of security - helping to shape risk frameworks while working closely with technology teams to strengthen controls and drive best-in-class security practices.