At a Glance
- Tasks: Oversee and assess information security risks while engaging with tech and business teams.
- Company: Leading derivatives trading firm focused on operational resilience.
- Benefits: Competitive salary, flexible working, and opportunities for professional growth.
- Other info: Work 3 days a week in the office with a supportive team.
- Why this job: Shape the future of information security in a dynamic trading environment.
- Qualifications: Experience in Information Security Risk or GRC; relevant certifications preferred.
The predicted salary is between 80000 - 95000 £ per year.
A leading derivatives trading business is looking for an experienced Information Security Risk Manager to join its Operational Resilience function. This is a second line of defence role focused on providing independent oversight, challenge and risk assessment across Information Security Risk. Working closely with Technology and business stakeholders, you will help shape the organisation’s approach to information security governance, risk appetite, policy management and regulatory alignment.
This is not a cyber operations or SOC role. We are looking for someone from an Information Security Risk, Technology Risk, GRC or Operational Resilience background who understands how to translate technical risks into business impact and provide effective second line challenge.
Key areas of focus include:
- Information Security Risk management and governance
- Independent risk assessments and control effectiveness reviews
- Policy ownership and risk appetite management
- Technology and business stakeholder engagement
- Operational Resilience integration
- Supporting regulatory requirements including DORA, FCA Operational Resilience and GDPR
The ideal candidate will have:
- Strong experience in Information Security Risk, Technology Risk or GRC within a second line environment
- Experience assessing technology risks and challenging control effectiveness
- Relevant qualifications such as CISM, CISSP, CRISC or equivalent
Working pattern: 3 days per week in the office
Hours: 8:00am – 5:00pm
A great opportunity for an Information Security Risk professional looking to operate at the intersection of technology, risk and operational resilience within a regulated trading environment.
Information Security Risk Manager in London employer: Kite Consulting Group
Kite Consulting Group is an exceptional employer, offering a dynamic work environment where legal professionals can thrive. With a focus on employee growth and development, this role provides the chance to collaborate with industry leaders in a prestigious global investment firm located in the UK, all while enjoying a flexible four-day work week and competitive bonuses. The company fosters a culture of innovation and inclusivity, making it an ideal place for those seeking meaningful and rewarding employment.