Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Enhance risk management frameworks and lead supplier assessments in a dynamic tech environment.
- Company: World-leading semiconductor company with a focus on innovation and security.
- Benefits: Hybrid working, competitive pay, and opportunities for professional growth.
- Why this job: Make a real impact on enterprise security while working with cutting-edge technology.
- Qualifications: Experience in risk quantification and familiarity with key security frameworks required.
- Other info: Join a collaborative team and drive meaningful change in the tech industry.
The predicted salary is between 36000 - 60000 £ per year.
We are partnered with a world leading semiconductor company in the UK looking to bring on a GRC Risk Manager for their Enterprise Security team. This is a contract engagement, inside IR35, based out of their Cambridge offices (hybrid working).
Responsibilities
- Enhance the Information Security Risk Management Framework within ServiceNow IRM, applying both qualitative and quantitative principles.
- Lead structured supplier assessments, review complex contracts, and oversee ongoing monitoring for a global vendor ecosystem.
- Conduct deep-dive reviews to identify root causes and ensure systemic lessons are integrated into the control environment.
- Develop KRIs (Key Risk Indicators) and KCIs (Key Control Indicators) to measure security control effectiveness across critical assets.
- Partner with engineering and business leads to ensure accountability for remediation and increase risk visibility at speed.
Qualifications
- Hands-on experience with risk quantification (FAIR) and ServiceNow IRM is essential.
- Deep familiarity with NIST CSF, NIST SP800-53, and ISO 27001.
- Comfortable leading high-stakes vendor assessments and challenging technical stakeholders skillfully.
- Confident utilizing metrics and dashboards to translate technical risks into actionable business insights for senior leadership.
- A champion of AI and Automation to streamline GRC processes.
- Ideally already certified in CRISC, CISM, CISSP, or FAIR.
If you are interested in this GRC Risk Manager position, please send a copy of your CV to ts@eu-recruit.com.
Risk Manager - GRC / Cyber / Third-Party in Cambridge employer: European Tech Recruit
Contact Detail:
European Tech Recruit Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Risk Manager - GRC / Cyber / Third-Party in Cambridge
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who work at companies you're interested in. A friendly chat can sometimes lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Understand their approach to risk management and be ready to discuss how your experience aligns with their needs. We want you to shine!
✨Tip Number 3
Practice your pitch! You should be able to clearly articulate your skills and experiences related to GRC and cyber risk management. Keep it concise and impactful – think of it as your personal brand statement.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who take that extra step to engage with us directly.
We think you need these skills to ace Risk Manager - GRC / Cyber / Third-Party in Cambridge
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Risk Manager role. Highlight your experience with risk quantification and frameworks like NIST CSF and ISO 27001. We want to see how your skills match what we're looking for!
Showcase Your Achievements: Don’t just list your responsibilities; showcase your achievements! Use metrics to demonstrate how you’ve improved risk management processes or led successful vendor assessments. This helps us see the impact you've made in previous roles.
Be Clear and Concise: Keep your application clear and concise. Avoid jargon unless it’s relevant to the role. We appreciate straightforward communication, so make it easy for us to understand your qualifications and experiences.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications better and ensures you don’t miss any important updates from us!
How to prepare for a job interview at European Tech Recruit
✨Know Your Frameworks
Make sure you’re well-versed in the Information Security Risk Management Framework, especially within ServiceNow IRM. Brush up on NIST CSF, NIST SP800-53, and ISO 27001, as these will likely come up during your interview.
✨Showcase Your Experience
Prepare to discuss your hands-on experience with risk quantification, particularly using FAIR. Be ready to share specific examples of how you've led vendor assessments and tackled complex contracts.
✨Metrics Matter
Demonstrate your ability to use metrics and dashboards effectively. Think of ways you can translate technical risks into actionable insights for senior leadership, as this is crucial for the role.
✨Be a Problem Solver
Highlight your skills in conducting deep-dive reviews and identifying root causes. Show that you can integrate lessons learned into the control environment, which is key for enhancing risk management processes.
