Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Shape and maintain risk frameworks to protect against cyber and technology risks.
- Company: Join Pay.UK, the backbone of UK retail payment systems.
- Benefits: Competitive salary, professional development, and a chance to work with cutting-edge technologies.
- Why this job: Make a real impact on national infrastructure and help secure the future of payments.
- Qualifications: Degree in relevant field and significant experience in cyber and technology risk.
- Other info: Dynamic role with opportunities for growth in a crucial sector.
The predicted salary is between 72000 - 84000 £ per year.
This role serves as the 2nd line cyber and technology risk expert, shaping and maintaining our risk frameworks to protect the organisation as we adopt advanced technologies such as AI and post-quantum solutions. Your responsibilities will include supervising cyber and technology risks for our crucial national infrastructure and main technology partners, assisting us in our aim to maintain a leading ’Run’ organisation for UK payments. As a reliable second line collaborator, you will offer guidance, oversight, and confidence on all issues related to cyber and technology risks. The role reports directly to the Chief Risk Officer.
Key Accountabilities
- Be a trusted 2nd Line partner to the whole organisation from a cyber and technology risk perspective, cultivating effective relationships and networks ensuring rapid escalation of technology and cyber risks/issues/incidents across Pay.UK.
- Supervise and assess the CNI provider regarding cyber and technology aspects, confirming they possess suitable measures to uphold their robustness and resilience.
- Stay abreast of current technology trends, vulnerabilities and emerging technologies. Continuously monitor advancement in cyber and technology practices utilising relationships with the NCSC and other agencies.
- Define and deliver a Cyber and Technology oversight and assurance strategy to help the business attain and support a technology and security posture.
- Manage the development and delivery of the 2LoD cyber and technology oversight and assurance frameworks and policies in line with regulatory requirements and industry good practice, such as NIST, COBIT5 / ITIL etc.
- Oversee and challenge the Pay.UK cyber and technology risk & control environment, including both Principal and Directorate Risk & Control Self-Assessment (RCSA) processes, ensuring accurate, complete, timely and meaningful reporting to the relevant risk management committees, including attending Risk and Board committees to provide confidence in assurance outcomes.
- Deliver a programme of targeted cyber and technology assessment and assurance reviews where necessary, and collaborate with 1LoD SME input.
- Provide oversight of our innovative technology projects and report in accordance with broader integrated assurance plans.
- Support cyber and technology issue management and risk acceptance processes together with associated aggregation and reporting activities.
- Support the Pay.UK's incident & event reporting processes, ensuring that actual/potential losses, fix details and root cause analysis are reported accurately and timely to internal management and our regulators.
- Make cyber and technology risk meaningful and relevant to your stakeholders through training and awareness materials, sharing best practice in clear easy to understand language.
- Maintain full awareness of and adherence to the Enterprise Risk Management Framework as well as other relevant Cyber, Technology, Information System and GDPR frameworks.
Qualifications, Skills and Experience
- Degree in a relevant field or equivalent professional technology qualification.
- Significant experience in cyber, technology, and operational risk in a 2nd line (2LoD) role.
- Background in Financial Services or FinTech.
- Demonstrated capability to create, improve, or manage Technology Risk Management Frameworks that adhere to industry best practices.
- Comprehensive knowledge of frameworks such as ITIL, COBIT and NIST.
- Understanding of emerging technologies (e.g., AI, post-quantum) and their associated risks and regulatory expectations.
- Skilled in engaging with senior stakeholders and acting as a trusted advisor.
- Skilled in producing clear, high-quality risk reporting for Executive and Board audiences.
- Able to apply technical insight in a practical, balanced and commercially aware manner.
- Able to provide helpful feedback while maintaining professionalism and clarity in communication.
- Highly organised, with the ability to prioritise and deliver effectively in a demanding environment.
Who we are
Pay.UK maintains and develops the UK retail payment systems and standards that are core to the economy being able to function on a day-to-day basis. From Bacs to Faster Payments and cheques - we act as the single operator for all UK retail payments. We put the needs of consumers and businesses at the heart of everything we do, working in the public interest to ensure that the systems the country relies on for its banking transactions are safe, open, innovative and resilient. Our payment systems underpin the services that enable funds to be transferred between people and institutions.
Senior Cyber and Technology Risk Manager employer: Pay.UK
Contact Detail:
Pay.UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Cyber and Technology Risk Manager
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the cyber and technology risk space. Attend industry events, webinars, or even local meetups. The more people you know, the better your chances of landing that dream job!
✨Tip Number 2
Show off your expertise! When you get the chance to chat with potential employers, don’t hold back on sharing your knowledge about emerging technologies and risk frameworks. Make it clear that you’re not just a candidate; you’re a valuable asset ready to tackle their challenges.
✨Tip Number 3
Prepare for interviews by diving deep into the company’s current projects and challenges. Tailor your responses to show how your skills can directly benefit them, especially in areas like AI and post-quantum solutions. This will make you stand out as a candidate who truly understands their needs.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets the attention it deserves. Plus, we love seeing candidates who are proactive and engaged with our mission at Pay.UK.
We think you need these skills to ace Senior Cyber and Technology Risk Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Cyber and Technology Risk Manager role. Highlight your experience in cyber and technology risk, especially in a 2nd line capacity. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter: Your cover letter should tell us why you're the perfect fit for this role. Share specific examples of how you've managed technology risks and built relationships in previous roles. We love a good story that showcases your expertise!
Showcase Relevant Qualifications: Don’t forget to mention your degree or any relevant professional qualifications. If you’ve got experience with frameworks like ITIL, COBIT, or NIST, make sure to highlight that too. We’re looking for someone who knows their stuff!
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates. We can’t wait to hear from you!
How to prepare for a job interview at Pay.UK
✨Know Your Cyber and Tech Risk Frameworks
Make sure you’re well-versed in the key frameworks like NIST, COBIT, and ITIL. Be ready to discuss how you've applied these in your previous roles, especially in a 2LoD context. This shows you not only understand the theory but can also implement it effectively.
✨Stay Updated on Emerging Technologies
Familiarise yourself with the latest trends in AI and post-quantum technologies. During the interview, share insights on how these advancements could impact cyber and technology risks. This demonstrates your proactive approach and ability to think ahead.
✨Build Relationships with Stakeholders
Prepare examples of how you’ve successfully engaged with senior stakeholders in the past. Highlight your communication skills and how you’ve acted as a trusted advisor. This is crucial for a role that requires collaboration across the organisation.
✨Showcase Your Reporting Skills
Be ready to present samples of high-quality risk reporting you've produced for executive audiences. Discuss how you ensure clarity and relevance in your reports, as this will be key in providing confidence to the board and risk management committees.
