At a Glance
- Tasks: Lead the development of IT risk and cyber controls frameworks to enhance security.
- Company: Join a FTSE 30 business at the forefront of IT governance evolution.
- Benefits: Competitive salary, 20% bonus, and hybrid working model.
- Other info: Opportunity for significant autonomy and influence in a high-performing team.
- Why this job: Shape the future of IT risk management in a dynamic environment.
- Qualifications: Experience in IT risk, audit, or governance with strong stakeholder engagement skills.
The predicted salary is between 55000 - 70000 € per year.
Salary: Circa £55,000-70,000 plus 20% bonus
Birmingham office 3 days per week hybrid working model
Unfortunately this role cannot sponsor at this time.
Audit and Risk Recruitment are delighted to be partnering with a FTSE 30 business to recruit an IT Risk and Cyber Controls advisor. This is a rare opportunity to join a high-performing, forward-looking organisation at a pivotal stage of its IT and governance evolution.
About the Role
We're looking for a strategic and proactive IT Risk and Cyber Controls advisor to lead the development of a forward-thinking risk and controls framework. This role offers significant autonomy and influence and you’ll have rein to shape the direction of IT risk and controls across the organisation, aligned with regulatory expectations including Provision 29 of the UK Corporate Governance Code, working closely with management and senior stakeholders across the business.
You’ll be instrumental in embedding a strong IT controls and Cyber culture, collaborating across teams to build a resilient and secure technology environment that supports the business’s growth and governance ambitions.
What You'll Be Doing
- Lead the design and implementation of a fit-for-purpose IT Controls, Cyber controls and IT Risk framework from the ground up.
- Embed a risk culture aligned with Provision 29, ensuring robust internal controls for effective risk management.
- Strengthen governance through policies, standards, and control documentation.
- Monitor control effectiveness and drive remediation of deficiencies.
- Lead monthly IT control reporting and governance forums.
- Provide oversight across key cyber domains (DR, BCP, vulnerability management, patching).
- Support Internal Audit and external assurance activity.
- Deliver insight on emerging risks and continuous improvement opportunities.
- Identify, assess, and mitigate IT risks, covering cybersecurity, data privacy, infrastructure, and operational technology.
- Work collaboratively with technology and business units to integrate risk considerations into all projects and operations.
- Stay ahead of evolving threats and industry best practices.
- Lead training and awareness initiatives across the organisation to strengthen understanding and ownership of IT risk.
We’re looking for someone who combines technical control expertise with strong stakeholder engagement:
Essential:
- Experience in IT Risk, Audit, or Governance.
- Knowledge of control frameworks (IT SOX, ICFR, UK Corporate Governance Code).
- Strong understanding of IT controls (access, change, operations).
- Cyber controls experience/exposure to cyber frameworks such as NIST, COBIT and ISO27001.
- Experience working in complex or decentralised environments.
- Excellent communication and ability to challenge constructively.
Desirable:
- SAP knowledge.
- Experience with automation / AI tools (e.g. Copilot, ChatGPT).
- Flowcharting tools (e.g. Visio).
IT Risk and Cyber Controls Advisor in Birmingham employer: Audit & Risk Recruitment
Join a prestigious FTSE 30 company in Birmingham as an IT Risk and Cyber Controls Advisor, where you will thrive in a dynamic and supportive work culture that prioritises employee growth and innovation. With a competitive salary and a generous bonus structure, this role offers the unique opportunity to shape the future of IT governance while collaborating with senior stakeholders in a hybrid working environment. Embrace the chance to enhance your career in a forward-thinking organisation that values strategic input and fosters a strong sense of community among its employees.
Contact Detail:
Audit & Risk Recruitment Recruiting Team
StudySmarter Expert Advice🤫
We think this is how you could land IT Risk and Cyber Controls Advisor in Birmingham
✨Tip Number 1
Network like a pro! Reach out to your connections in the IT risk and cyber controls space. Attend industry events or webinars, and don’t be shy about introducing yourself. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your expertise! Prepare a portfolio or a presentation that highlights your experience with IT controls and risk frameworks. When you get the chance to chat with potential employers, use this to demonstrate how you can add value to their organisation.
✨Tip Number 3
Be proactive! If you see a company you’re keen on, don’t wait for them to post a job. Reach out directly to their HR or hiring managers. Express your interest in their work and how your skills align with their needs. It shows initiative and could set you apart!
✨Tip Number 4
Keep learning and stay updated! The IT risk landscape is always changing, so make sure you’re on top of the latest trends and best practices. Consider taking online courses or certifications that can boost your profile and show employers you’re committed to growth.
We think you need these skills to ace IT Risk and Cyber Controls Advisor in Birmingham
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the IT Risk and Cyber Controls Advisor role. Highlight your relevant experience in IT risk, governance, and controls, and don’t forget to mention any frameworks you’re familiar with, like NIST or ISO27001.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for this role. Share specific examples of how you've embedded risk cultures or improved IT controls in previous positions.
Showcase Your Communication Skills:Since this role involves working closely with stakeholders, make sure to demonstrate your excellent communication skills in your application. Use clear and concise language, and don’t shy away from showing your ability to challenge constructively.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and ensure it gets the attention it deserves!
How to prepare for a job interview at Audit & Risk Recruitment
✨Know Your Frameworks
Make sure you brush up on your knowledge of control frameworks like IT SOX, NIST, and COBIT. Be ready to discuss how you've applied these in past roles, as this will show your technical expertise and understanding of the regulatory landscape.
✨Showcase Your Stakeholder Skills
This role requires strong stakeholder engagement, so prepare examples of how you've successfully collaborated with different teams. Think about times when you had to challenge constructively or influence decisions—these stories will highlight your communication skills.
✨Demonstrate a Risk Culture Mindset
Be prepared to talk about how you've embedded a risk culture in previous positions. Share specific initiatives you've led or participated in that align with effective risk management and governance, especially those that relate to the UK Corporate Governance Code.
✨Stay Ahead of Emerging Threats
Research current trends in cybersecurity and IT risk management. Be ready to discuss how you stay informed about evolving threats and best practices, as this shows your proactive approach and commitment to continuous improvement in the field.
