Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the design and implementation of robust information security governance and risk management.
- Company: Join Arqiva, a leader in UK media and connectivity solutions.
- Benefits: Up to £110,000 salary, 15% bonus, private medical insurance, and 25 days annual leave.
- Why this job: Shape the future of connectivity while ensuring security compliance and resilience.
- Qualifications: Expertise in cyber risk, governance frameworks, and incident response strategies required.
- Other info: Flexible hybrid working environment with opportunities for career growth.
The predicted salary is between 66000 - 77000 £ per year.
Location: We operate a flexible, hybrid working environment, with the successful candidate required to travel to our London (Newman Street) or Winchester office 2-3 days a week, depending on business needs.
We offer:
- Up to £110,000 base salary
- 15% Bonus
- 6% Pension contribution
- Private Medical Insurance
- 25 days annual leave
- Access to our comprehensive flexible benefits platform, including discounts on big brands, wellness and employee assistance programmes, gymflex, travel and dental insurance
Work. Life. Smarter. Our commitment to a flexible and hybrid working culture.
Role Purpose
Design and implement changes to information security governance & risk management, to ensure that the organisation's security posture is robust, compliant, and adaptable to emerging threats while aligning with strategic business goals.
Accountabilities
- Ensure ISO27001 compliance and maturity by identifying and recommending changes to Infosec policies, processes, control frameworks.
- Ensure that we are consistently compliant with customer, regulatory, and shareholder obligations.
- Implement and continuously improve a risk management process across the organisation.
- Maintain and assess the effectiveness of the security controls catalogue; recommend improvements.
- Own the Information Security Management System (ISMS) to ensure compliance with internal and external requirements.
- Provide assurance that security controls are operating effectively and aligned with defined frameworks.
- Maintain company risk portfolio and actively review and risk finding.
- Conduct internal assessments against regulatory and customer obligations, compliance assessments, and gap analyses.
- Develop and implement governance frameworks aligned with business and regulatory requirements.
Skills
- Cyber Risk Oversight - Strategic understanding of cyber security risks and the ability to oversee the implementation of appropriate controls, assurance mechanisms, and reporting frameworks.
- Cyber Governance & Advisory - Expertise in leading the adoption of industry cyber frameworks (e.g., NIST, ISO) and providing high-level advisory to boards, executives, and stakeholders on emerging threats and compliance posture.
- Incident Oversight & Resilience - Executive capability to govern cyber incident response strategies, ensuring the organisation's preparedness, crisis management, and post-incident assurance processes.
- Security Governance Principles - Deep knowledge of foundational security principles and the ability to embed these into governance, assurance, and risk management practices across the organisation.
- Information Security & Compliance - Strategic leadership in the application and assurance of security and compliance frameworks (e.g., ISO 27001, GDPR, NIS2), ensuring audit readiness and regulatory alignment.
Knowledge & Experience
- Deep understanding of enterprise risk management (ERM), governance, and control frameworks.
- In-depth knowledge of security, information assurance, and compliance frameworks (e.g., ISO 27001, NIST CSF, COBIT).
- Familiarity with legal and regulatory requirements across cyber and operational domains (e.g., GDPR, NIS2, TSA, CSR).
- Awareness of internal audit methodology, assurance planning, and reporting mechanisms.
- Understanding of board-level reporting, risk appetite, and strategic alignment of risk functions.
- Knowledge of business continuity, resilience planning, and risk treatment strategies.
We are the undisputed leader in UK TV and radio broadcast, and the UK's leading Smart utilities platform, directly shaping the future of connectivity. Through our established infrastructure we ensure that media and data are delivered exactly where they're needed most, whether it's bringing content to your TV or radio or transmitting data from your smart meter to your utility provider - chances are our services are a part of your daily life, seamlessly connecting you through our behind-the-scenes technology. With an impressive history and an innovative future ahead of us, leading the transition of global media distribution to cloud based solutions and creating scalable solutions for new connectivity sectors - you'll have many opportunities to develop and grow your unique career with us.
Why Arqiva?
Reward Connection Growth At Arqiva, we believe in supporting you to be your best, both at work and outside of it. That's why our rewards and benefits go far beyond your pay; take a look at our totalreward2025 booklet. Here, you'll find endless opportunities to connect, whether that's with colleagues through our internal networks and events or by making a difference in the communities where we work. And when it comes to your career, we're committed to helping you grow. Whether you want to become a specialist in your field or climb to the top, we'll support you every step of the way.
Head of Technology Risk & Assurance in City of London employer: Arqiva
Contact Detail:
Arqiva Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Technology Risk & Assurance in City of London
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, join online forums, and don’t be shy about reaching out on LinkedIn. The more connections you make, the better your chances of hearing about job openings before they’re even advertised.
✨Ace the Interview
Prepare for your interviews by researching the company and understanding their values and goals. Practice common interview questions and think about how your experience aligns with the role. Remember, it’s not just about answering questions; it’s about showing them why you’re the perfect fit!
✨Showcase Your Skills
Don’t just tell them what you can do; show them! Create a portfolio or a presentation that highlights your past projects and achievements. This is especially important for roles like Head of Technology Risk & Assurance where demonstrating your expertise can set you apart from other candidates.
✨Apply Through Our Website
Make sure to apply directly through our website for the best chance at landing the job. It shows you’re genuinely interested and gives us a clear view of your application. Plus, we love seeing candidates who take that extra step!
We think you need these skills to ace Head of Technology Risk & Assurance in City of London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Head of Technology Risk & Assurance role. Highlight your experience with ISO27001 compliance and risk management, as these are key aspects of the job. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about technology risk and assurance. Share specific examples of how you've successfully implemented security frameworks or managed risks in previous roles. We love a good story!
Showcase Relevant Experience: When filling out your application, be sure to showcase your experience with cyber governance and compliance frameworks like NIST and GDPR. We’re looking for someone who can hit the ground running, so make it clear how your background fits the bill.
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about our company culture and values.
How to prepare for a job interview at Arqiva
✨Know Your Frameworks
Make sure you’re well-versed in the key frameworks mentioned in the job description, like ISO 27001 and NIST. Be ready to discuss how you've applied these in previous roles and how they can be adapted to meet the company's needs.
✨Showcase Your Strategic Thinking
Prepare examples that demonstrate your ability to align security governance with business goals. Think about times when you’ve successfully implemented risk management processes or improved compliance measures, and be ready to share those stories.
✨Understand the Company’s Culture
Research Arqiva’s commitment to flexible working and their focus on innovation. Be prepared to discuss how you can contribute to this culture and how your values align with theirs, especially regarding work-life balance and employee support.
✨Prepare for Scenario Questions
Expect scenario-based questions that assess your incident oversight and resilience capabilities. Think through potential cyber incidents and how you would govern the response, ensuring you can articulate your thought process clearly.