Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive risk management activities to enhance information security across the firm.
- Company: Join PwC, a leader in cybersecurity and risk management.
- Benefits: Flexible working, private medical cover, and volunteering days.
- Why this job: Make a real impact on cybersecurity while collaborating with top professionals.
- Qualifications: Experience in information security risk management and relevant certifications.
- Other info: Dynamic role with opportunities for growth in a global enterprise.
The predicted salary is between 48000 - 72000 £ per year.
About the role:
PwC continues to invest in cyber security capabilities to protect our business and our clients. Within PwC's Global Network Information Security (NIS) team, the UK CISO Governance Risk & Compliance (GRC) team acts as a trusted risk advisor to the UK business. By providing guidance on cybersecurity-related risks and ensuring alignment with PwC's global cybersecurity strategy, we help our UK stakeholders implement effective security measures to mitigate risks and protect the firm's interests.
What your days will look like:
As the Information Security Risk Manager, your role is to drive risk management activities to help identify and reduce the risks related to information security associated with technology used within the firm. Establish a robust information security risk management framework along with clear policies and procedures to provide visibility of aggregated risk at the enterprise/executive level through analysis and reporting. Drive the implementation of risk mitigation strategies by collaborating closely with leadership, internal risk teams, and other stakeholders to ensure alignment with strategic objectives, fostering a culture of risk-awareness, enhanced communication, and informed decision-making. Prioritise activities by organisational risk and criticality to align risk management with business goals and enhance operational resilience. Focus on high-impact areas to ensure efficient resource allocation and provide leadership with a comprehensive risk perspective. Collaborate with senior stakeholders for insights on existing and emerging technologies like GenAI, offering strategic updates and impact assessments for informed decision-making.
This role is for you if:
- Strong communication and influencing skills to assist, inform, and build relationships with stakeholders in both the business and support teams to enable effective information security activities and processes aligned to the firm's security strategy.
- Bring high energy and thrive on helping people to solve problems; stakeholder management/customer service outlook - working with business teams to achieve positive outcomes.
- Inquisitive nature and intuition regarding what questions to ask when and their relative significance.
- Excellent time management skills balancing working efficiently on your own and contributing as part of a wider team - prioritising and recognising when to escalate to management.
- An interest in PwC's business model, service offerings, and business operating environment as it pertains to the firm's threat landscape.
Ideal Experience & Qualifications:
- Previous proven management experience in an information security risk management role.
- Formal certifications/qualifications in Information Security (CISSP, CISM, CRISC, CompTIA Security).
- Extensive knowledge of risk assurance frameworks essential such as ISO 31000, NIST CSF, ISO 27001.
- Knowledge of technical security principles highly desirable.
- Broad understanding of technology and how security is applied to technology in a large enterprise setting.
- Experience at an enterprise global company or big four firm is desirable.
- Strong data manipulation and visualisation skills (PowerBI, Alteryx, Excel).
What you'll receive from us:
No matter where you may be in your career or personal life, our benefits are designed to add value and support, recognising and rewarding you fairly for your contributions. We offer a range of benefits including empowered flexibility and a working week split between office, home, and client site; private medical cover and 24/7 access to a qualified virtual GP; six volunteering days a year and much more.
Optional Skills:
- Accepting Feedback
- Active Listening
- Analytical Thinking
- Azure Data Factory
- Coaching and Feedback
- Communication
- Creativity
- Cybersecurity
- Cybersecurity Governance
- Data Architecture
- Data Archiving
- Data Flow Mapping
- Data Privacy Act
- Embracing Change
- Emotional Regulation
- Empathy
- Enterprise Content Management
- Incident Response Plan
- Inclusion
- Information Rights Management (IRM)
- Information Security
- Information Security Governance
- Information Security Management System (ISMS)
- Intellectual Curiosity
Travel Requirements: Not Specified
Available for Work Visa Sponsorship: Yes
Government Clearance Required: No
Required Experience: Manager
Key Skills: International Development, EMC, JavaScript, Import & Export, Airlines, Asp.Net MVC
Employment Type: Full-Time
Experience: years
Vacancy: 1
UK Information Security Risk Manager in Manchester employer: PricewaterhouseCoopers
Contact Detail:
PricewaterhouseCoopers Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land UK Information Security Risk Manager in Manchester
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, webinars, or even local meetups. The more you engage with others, the better your chances of hearing about job openings that might not even be advertised.
✨Show Off Your Skills
When you get the chance to chat with potential employers, don’t hold back! Share specific examples of how you've tackled information security challenges in the past. This will help them see you as a problem-solver who can add real value to their team.
✨Tailor Your Approach
Every company is different, so make sure you understand PwC's culture and values. When you apply through our website, highlight how your experience aligns with their goals and how you can contribute to their cybersecurity strategy.
✨Follow Up Like a Boss
After interviews or networking events, send a quick thank-you note. It shows your appreciation and keeps you on their radar. A little follow-up can go a long way in making a lasting impression!
We think you need these skills to ace UK Information Security Risk Manager in Manchester
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of Information Security Risk Manager. Highlight your relevant experience in risk management and cybersecurity, and don’t forget to mention any certifications you have that align with the job description.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your skills can help PwC achieve its goals. Be sure to mention specific experiences that demonstrate your ability to manage risks effectively.
Showcase Your Communication Skills: Since strong communication is key for this role, make sure your application reflects your ability to convey complex information clearly. Use straightforward language and structure your documents well to make them easy to read.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It’s the best way to ensure your application gets the attention it deserves, and you’ll find all the details you need right there!
How to prepare for a job interview at PricewaterhouseCoopers
✨Know Your Cybersecurity Basics
Make sure you brush up on key cybersecurity concepts and frameworks like ISO 27001 and NIST CSF. Being able to discuss these in detail will show that you understand the landscape and can contribute effectively to PwC's risk management strategies.
✨Showcase Your Communication Skills
Since this role involves a lot of stakeholder management, practice articulating your thoughts clearly. Prepare examples of how you've influenced decisions or built relationships in previous roles, as this will demonstrate your ability to engage with both technical and non-technical teams.
✨Prepare for Scenario-Based Questions
Expect questions that ask how you would handle specific risk management scenarios. Think about past experiences where you identified risks and implemented mitigation strategies, and be ready to explain your thought process and the outcomes.
✨Demonstrate Your Inquisitive Nature
During the interview, don’t hesitate to ask insightful questions about PwC’s current cybersecurity challenges or their approach to emerging technologies like GenAI. This shows your genuine interest in the role and helps you gauge if the company aligns with your career goals.
