Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the development of IT risk management and controls framework, ensuring robust internal controls.
- Company: Join a leading FTSE 250 business at a pivotal stage of its IT evolution.
- Benefits: Enjoy competitive pay, flexible working options, and a supportive environment for professional growth.
- Why this job: Shape the future of IT risk strategy while collaborating with senior leadership in a dynamic setting.
- Qualifications: 5+ years in IT risk management or audit, with strong knowledge of compliance regulations.
- Other info: This role offers significant autonomy and influence in a fast-paced environment.
The predicted salary is between 36000 - 60000 £ per year.
Audit and Risk Recruitment is delighted to be partnering with a FTSE 250 leading business to recruit an IT Risk & Controls Manager. This is a rare opportunity to join a high-performing, forward-looking organisation at a pivotal stage of its IT and governance evolution.
About the Role
Are you passionate about safeguarding critical IT systems and shaping how organisations manage digital risk? We’re looking for a strategic and proactive IT Risk & Controls Manager to lead the development of a forward-thinking risk and controls framework. This role offers significant autonomy and influence—you’ll have full rein to shape the direction of IT risk and controls across the organisation, aligned with regulatory expectations including Provision 29 of the UK Corporate Governance Code. You’ll be instrumental in embedding a strong risk culture, collaborating across teams to build a resilient and secure technology environment that supports the business’s growth and governance ambitions.
What You’ll Be Doing
- Lead the design and implementation of a fit-for-purpose IT risk management and internal controls framework from the ground up.
- Embed a risk culture aligned with Provision 29—ensuring robust internal controls for effective risk management.
- Identify, assess, and mitigate IT risks, covering cybersecurity, data privacy, infrastructure, and operational technology.
- Create and maintain effective IT controls and conduct regular audits and risk reviews.
- Act as a trusted advisor to business and IT leaders on risk and compliance issues.
- Provide regular, insightful reports to senior leadership and the board on the state of IT risk.
- Work collaboratively with technology and business units to integrate risk considerations into all projects and operations.
- Stay ahead of evolving threats and industry best practices.
- Lead training and awareness initiatives across the organisation to strengthen understanding and ownership of IT risk.
What We’re Looking For
- A background in a Professional services firm environment (top 10 ideally).
- 5+ years of experience in IT Controls, IT risk management, IT audit, or a related area.
- Proven experience developing and embedding risk and control frameworks.
- A strong understanding of compliance and control requirements, including Provision 29, GDPR, ISO 27001, and other relevant regulations.
- Familiarity with frameworks such as COBIT, ITIL and NIST.
- Strong analytical, interpersonal, and communication skills.
- Confidence and initiative to lead independently in a fast-paced environment.
- Strategic thinking with hands-on execution.
- Excellent stakeholder and project management skills.
- High attention to detail and problem-solving mindset.
- Clear communicator, capable of influencing at all levels.
- Leadership and vision in shaping risk culture.
Why Join Us?
- Be the architect of IT risk and controls strategy at a pivotal time of growth.
- Work directly with senior leadership and influence company-wide decision-making.
- A supportive environment that values innovation, independence, and professional growth.
- Competitive compensation and benefits, with flexible working options.
IT Risk and Controls/Governance Manager employer: Audit & Risk Recruitment
Contact Detail:
Audit & Risk Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Risk and Controls/Governance Manager
✨Tip Number 1
Familiarise yourself with the key regulations and frameworks mentioned in the job description, such as Provision 29 of the UK Corporate Governance Code, GDPR, and ISO 27001. This knowledge will not only help you understand the role better but also demonstrate your commitment to compliance during discussions.
✨Tip Number 2
Network with professionals in the IT risk and controls space, especially those who have experience in top-tier professional services firms. Engaging with industry peers can provide valuable insights and potentially lead to referrals that could enhance your application.
✨Tip Number 3
Prepare to discuss your previous experiences in developing and embedding risk and control frameworks. Be ready to share specific examples of how you've identified and mitigated IT risks, as this will showcase your hands-on expertise and strategic thinking.
✨Tip Number 4
Stay updated on the latest trends and threats in IT risk management. Being knowledgeable about current challenges and best practices will allow you to engage in meaningful conversations with interviewers and position yourself as a forward-thinking candidate.
We think you need these skills to ace IT Risk and Controls/Governance Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in IT risk management, controls, and compliance. Use specific examples that demonstrate your ability to develop and implement risk frameworks, as well as your familiarity with regulations like GDPR and ISO 27001.
Craft a Compelling Cover Letter: In your cover letter, express your passion for safeguarding IT systems and your strategic vision for risk management. Mention how your background aligns with the company's goals and how you can contribute to building a strong risk culture.
Highlight Key Skills: Emphasise your analytical, communication, and project management skills. Provide examples of how you've successfully led initiatives in fast-paced environments and influenced decision-making at senior levels.
Showcase Continuous Learning: Mention any relevant certifications or training you've completed, such as COBIT, ITIL, or NIST. This demonstrates your commitment to staying updated on industry best practices and evolving threats.
How to prepare for a job interview at Audit & Risk Recruitment
✨Understand the Regulatory Landscape
Familiarise yourself with key regulations such as Provision 29 of the UK Corporate Governance Code, GDPR, and ISO 27001. Being able to discuss these frameworks confidently will demonstrate your expertise and readiness for the role.
✨Showcase Your Risk Management Experience
Prepare specific examples from your past roles where you successfully developed and implemented risk management frameworks. Highlight your analytical skills and how you've identified and mitigated IT risks in previous positions.
✨Emphasise Collaboration Skills
This role requires working closely with various teams. Be ready to discuss how you've effectively collaborated with stakeholders in the past to integrate risk considerations into projects and operations.
✨Demonstrate Strategic Thinking
Articulate your vision for shaping a strong risk culture within an organisation. Discuss how you can lead initiatives that not only address current risks but also anticipate future challenges in the IT landscape.
