Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Risk & Assurance Manager - IT & Cyber
Apply now
Job Board
Companies
Audit & Risk Recruitment
Risk & Assurance Manager - IT & Cyber

Risk & Assurance Manager - IT & Cyber

Manchester Full-Time 43200 - 72000 £ / year (est.) No home office possible
Apply now Go Premium
A

At a Glance

  • Tasks: Manage IT and cybersecurity risk, ensuring effective practices across the company.
  • Company: Join a leading technology business focused on innovation and security.
  • Benefits: Enjoy hybrid working, flexible hours, and a supportive work environment.
  • Why this job: Be part of a dynamic team driving impactful change in IT risk management.
  • Qualifications: 5+ years in risk management or internal audit, with strong IT security knowledge.
  • Other info: Flexible arrangements for school pick-ups and drop-offs are available.

The predicted salary is between 43200 - 72000 £ per year.

Audit & Risk Recruitment are working on a fantastic Technology Risk and Assurance opportunity for a large Technology business.

This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the company\’s technology and cybersecurity domains.

As a Risk & Assurance Manager, you\’ll be responsible for and have ownership for:

  • Partnering with senior IT, Security, and business leaders to embed risk management practices into operational processes and strategic initiatives.
  • Owning and maintaining IT Risk and Control Matrices (RCMs), ensuring they remain current, comprehensive, and aligned with industry standards and audit expectations.
  • Reviewing effectiveness of first line functions in testing and validation of key IT controls (e.g., access management, change control, incident response, vulnerability management), ensuring effectiveness and consistency.
  • Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements.
  • Coordinating and representing IT risk in internal, external audits and certification processes (e.g., ISO 27001, Cyber Essentials, ISO22301, etc.), acting as the primary point of contact.

We\’d love you to have

  • Minimum 5 years of experience in second-line risk management or internal audit, with a strong focus on IT or Information Security.
  • Experience in consultancy or professional services, with a proven ability to support complex transformation or change programmes is preferred.
  • Demonstrated leadership in delivering IT risk or audit initiatives, including managing projects, mentoring team members, and driving outcomes.
  • Strong knowledge of industry frameworks and standards, such as ISO 27001, NIST, CIS Controls, and regulatory requirements like GDPR.
  • Proven ability to engage and influence stakeholders across IT, Information Security, and business functions, building trusted relationships at all levels.

Flexibility

  • Hybrid working – 3 days in the office and 2 days working from home
  • Working flexible hours – flexing the times you start and finish during the day
  • Flexibility around school pick up and drop offs

#J-18808-Ljbffr

Risk & Assurance Manager - IT & Cyber employer: Audit & Risk Recruitment

As a Risk & Assurance Manager at this leading Technology business in Manchester, you will thrive in a dynamic work culture that prioritises innovation and collaboration. The company offers flexible working arrangements, including hybrid options and adaptable hours, ensuring a healthy work-life balance while providing ample opportunities for professional growth and development within the IT and cybersecurity domains.
A

Contact Detail:

Audit & Risk Recruitment Recruiting Team

View Audit & Risk Recruitment Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Risk & Assurance Manager - IT & Cyber

✨Tip Number 1

Network with professionals in the IT and cybersecurity fields. Attend industry events, webinars, or local meetups to connect with potential colleagues and leaders in risk management. Building these relationships can provide valuable insights and may lead to referrals.

✨Tip Number 2

Stay updated on the latest trends and developments in IT risk management and cybersecurity. Follow relevant blogs, podcasts, and news sources to demonstrate your knowledge during interviews and discussions with stakeholders.

✨Tip Number 3

Prepare to discuss specific frameworks and standards like ISO 27001 and NIST during your conversations. Familiarise yourself with how these frameworks apply to the role and be ready to share examples of how you've implemented them in past positions.

✨Tip Number 4

Practice your communication skills, especially in explaining complex risk concepts to non-technical stakeholders. Being able to convey your ideas clearly will help you build trust and influence within the organisation.

We think you need these skills to ace Risk & Assurance Manager - IT & Cyber

Risk Management
Information Security
IT Audit
Stakeholder Engagement
Project Management
ISO 27001
NIST Framework
GDPR Compliance
Control Framework Development
Change Management
Analytical Skills
Leadership Skills
Communication Skills
Flexibility in Working Hours
Team Mentoring

Some tips for your application 🫡

Tailor Your CV: Make sure your CV highlights relevant experience in IT risk management and internal audit. Focus on your achievements in embedding risk management practices and your familiarity with industry frameworks like ISO 27001 and NIST.

Craft a Compelling Cover Letter: In your cover letter, emphasise your leadership skills and ability to engage stakeholders. Mention specific examples of how you've successfully managed IT risk initiatives or audits in the past.

Showcase Relevant Skills: Clearly outline your technical skills related to IT security and risk management. Include any certifications you hold that are relevant to the role, such as ISO 27001 or Cyber Essentials.

Prepare for Interviews: Anticipate questions about your experience with risk control matrices and your approach to managing audits. Be ready to discuss how you would enhance IT and infosec risk frameworks in line with business objectives.

How to prepare for a job interview at Audit & Risk Recruitment

✨Understand the Risk Landscape

Familiarise yourself with the current IT and cybersecurity risk landscape. Be prepared to discuss how you would manage and enhance these risks, referencing specific frameworks like ISO 27001 or NIST.

✨Showcase Your Leadership Skills

Highlight your experience in leading IT risk or audit initiatives. Be ready to share examples of how you've mentored team members or driven successful outcomes in previous roles.

✨Engage with Stakeholders

Demonstrate your ability to engage and influence stakeholders across various functions. Prepare to discuss how you've built trusted relationships and collaborated with senior IT and business leaders.

✨Prepare for Technical Questions

Expect technical questions related to IT controls and risk management practices. Brush up on key concepts such as access management, change control, and incident response to showcase your expertise.

Risk & Assurance Manager - IT & Cyber
Audit & Risk Recruitment
Location: Manchester

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

A
Similar positions in other companies
UK’s top job board for Gen Z
discover-jobs-cta
Discover now
>