Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead risk management initiatives and assess cybersecurity risks to protect the business.
- Company: Join a top global insurance firm making waves in the financial services sector.
- Benefits: Enjoy a hybrid work model, competitive salary, and performance bonuses.
- Why this job: Be at the forefront of cybersecurity, driving impactful change in a dynamic environment.
- Qualifications: Strong background in Information Security with expertise in GRC and risk frameworks required.
- Other info: Opportunity to collaborate with auditors and regulators while enhancing your professional network.
The predicted salary is between 57000 - 95000 £ per year.
La Fosse has partnered with a leading global insurance firm to hire an Information Security Risk Manager. This strategic role is focused on identifying, assessing, and mitigating IT and cybersecurity risks across the business.
You will drive key risk management initiatives, working closely with stakeholders to strengthen security controls and ensure organisational resilience in a rapidly evolving threat landscape.
- Develop and implement IT risk management strategies, identifying vulnerabilities and prioritising risks.
- Lead end-to-end risk remediation, ensuring security enables business operations.
- Conduct risk assessments, monitor threats, and maintain control frameworks (NIST, ISO 27001, Cyber Essentials).
- Produce risk management reports and support board-level reporting.
- Collaborate with auditors, regulators, and vendors to evaluate IT controls.
- Manage vendor risk, maintain information asset registers, and drive incident management.
Strong experience in Information Security, focusing on Governance, Risk, and Compliance (GRC). Expertise in risk frameworks (NIST, ISO 27001, Cyber Essentials) and IT policy development.
Information Security Risk Manager (Permanent) employer: La Fosse
Contact Detail:
La Fosse Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Risk Manager (Permanent)
✨Tip Number 1
Network with professionals in the information security field, especially those who work in risk management. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends and challenges in cybersecurity.
✨Tip Number 2
Familiarise yourself with the specific risk frameworks mentioned in the job description, such as NIST and ISO 27001. Consider obtaining relevant certifications if you haven't already, as this can demonstrate your commitment and expertise in these areas.
✨Tip Number 3
Prepare to discuss real-world examples of how you've identified and mitigated risks in previous roles. Be ready to explain your thought process and the impact of your actions on the organisation's security posture.
✨Tip Number 4
Research the company’s current security initiatives and any recent news related to their cybersecurity efforts. This will help you tailor your discussions and show that you're genuinely interested in contributing to their mission.
We think you need these skills to ace Information Security Risk Manager (Permanent)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in Information Security, particularly in Governance, Risk, and Compliance (GRC). Emphasise your familiarity with risk frameworks like NIST, ISO 27001, and Cyber Essentials.
Craft a Compelling Cover Letter: In your cover letter, explain why you are passionate about information security and how your skills align with the role. Mention specific examples of how you've identified and mitigated risks in previous positions.
Highlight Relevant Experience: When detailing your work history, focus on roles where you conducted risk assessments, managed vendor risks, or developed IT policies. Use metrics to demonstrate your impact, such as improvements in security posture or successful audits.
Prepare for Interviews: If invited for an interview, be ready to discuss your approach to risk management and how you stay updated on evolving threats. Prepare to share insights on how you would implement risk management strategies in the new role.
How to prepare for a job interview at La Fosse
✨Understand the Risk Frameworks
Familiarise yourself with NIST, ISO 27001, and Cyber Essentials. Be prepared to discuss how you've applied these frameworks in previous roles and how they can be leveraged to enhance security controls.
✨Showcase Your Stakeholder Management Skills
This role involves working closely with various stakeholders. Prepare examples of how you've successfully collaborated with different teams to drive risk management initiatives and strengthen security measures.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world situations. Think of specific instances where you identified vulnerabilities or led risk remediation efforts, and be ready to explain your thought process.
✨Highlight Your Reporting Experience
Since the role involves producing risk management reports and supporting board-level reporting, be ready to discuss your experience in creating clear, concise reports that communicate complex information effectively.
