Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cybersecurity risk management and enhance our Information Security Risk Management Framework.
- Company: Join a top-tier tech firm shaping the future of computing.
- Benefits: Hybrid working, competitive pay, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: Certifications like CRISC or CISSP preferred; experience and courage to challenge are key.
- Other info: Dynamic role with global collaboration and a focus on AI and automation.
The predicted salary is between 48000 - 72000 £ per year.
Are you a Risk Expert who thrives on complexity? I’m recruiting for a Senior Technical Risk & Governance Lead for one of the world’s most influential technology firms. This is a contract engagement, inside IR35, based out of their Cambridge offices (hybrid working).
Key Responsibilities:
- Framework Evolution: Expertly navigate and enhance our Information Security Risk Management Framework within ServiceNow IRM, applying qualitative and quantitative risk management principles to empower decision-making.
- Third-Party Risk: Lead third-party cyber risk management by conducting structured assessments, reviewing contracts, and overseeing ongoing supplier monitoring.
- Post-Incident Leadership: Run post-incident reviews to identify root causes, extract systemic insights, and ensure lessons learned are integrated into the control environment and risk register.
- Metric Development: Develop Key Risk and Key Control Indicators (KRIs/KCIs) to monitor security control effectiveness across critical assets and third-party domains.
- Cross-Functional Collaboration: Work across the business to reduce risk, ensure accountability for remediation, and improve visibility at speed.
Required Skills and Experience:
- Qualifications: Holds certifications such as CRISC, CISM, CISSP, or FAIR. Although experience, impact, and the courage to challenge matter more than acronyms.
- Technical Expertise: Must have hands-on experience with risk assessment methodologies, risk quantification, and ServiceNow IRM.
- Framework Knowledge: Deep knowledge of security technologies and control frameworks such as ISO 27001, NIST CSF, and NIST SP800-53.
- Third-Party Mastery: Proven experience in third-party security risk management—comfortable leading assessments, influencing decisions, and challenging skilfully.
- Data-Driven: Confident working with metrics and data, drawing conclusions, and using dashboards to inform senior-level decisions.
- Future-Focused: A champion of AI and Automation within the GRC space.
- Communication: Advanced communicator able to translate technical risks into actionable business impact for senior leadership.
- Scale: Experience with globally distributed teams, large-scale vendor ecosystems, and fast-moving, dynamic environments.
Risk Manager in Cambridge employer: European Tech Recruit
Contact Detail:
European Tech Recruit Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Risk Manager in Cambridge
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Understand their risk management framework and be ready to discuss how your experience aligns with their needs. We want to see you shine!
✨Tip Number 3
Showcase your skills through real-world examples. When discussing your experience, focus on specific projects where you led risk assessments or improved security measures. This will help us see your impact clearly.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who take that extra step to engage with us directly.
We think you need these skills to ace Risk Manager in Cambridge
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of Risk Manager. Highlight your experience with risk assessment methodologies and any relevant certifications like CRISC or CISM. We want to see how your skills align with the job description!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your past experiences have prepared you for this role. We love seeing genuine enthusiasm and a clear understanding of the responsibilities.
Showcase Your Technical Expertise: Don’t shy away from mentioning your hands-on experience with tools like ServiceNow IRM. We’re looking for someone who can navigate complex frameworks, so make sure to include specific examples that demonstrate your technical prowess.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep everything organised and ensures your application gets the attention it deserves. Plus, it’s super easy!
How to prepare for a job interview at European Tech Recruit
✨Know Your Frameworks
Make sure you’re well-versed in the Information Security Risk Management Framework and familiar with ServiceNow IRM. Brush up on ISO 27001, NIST CSF, and NIST SP800-53, as these will likely come up during your interview.
✨Showcase Your Data Skills
Be prepared to discuss how you've used metrics and data in past roles. Bring examples of Key Risk Indicators (KRIs) or Key Control Indicators (KCIs) you've developed and how they influenced decision-making.
✨Demonstrate Third-Party Mastery
Highlight your experience in third-party risk management. Be ready to talk about specific assessments you've led, how you’ve influenced decisions, and any challenges you’ve overcome in this area.
✨Communicate Effectively
Practice translating complex technical risks into business impacts. You’ll need to demonstrate that you can communicate effectively with senior leadership, so think of examples where you’ve done this successfully.
