Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the implementation of risk management frameworks to tackle information security risks.
- Company: Join a global financial services firm focused on innovative security solutions.
- Benefits: Enjoy hybrid work options, competitive salary, and opportunities for career growth.
- Why this job: Be part of a dynamic team that values creativity and problem-solving in a fast-paced environment.
- Qualifications: 10+ years in information security governance with relevant certifications preferred.
- Other info: This role offers accelerated career progression and expert training.
The predicted salary is between 120000 - 140000 £ per year.
The Information Security Risk Management Lead is a key member of the Risk Management team and is responsible for leading the implementation of the Enterprise and Operational Risk Management frameworks designed by my client to identify, measure, monitor and mitigate information security risks. The successful candidate serves as a second set of eyes to management to provide review and credible challenge of the effectiveness of information security processes and controls. This position is highly engaged with the firm-wide Information Security teams who provide security solutions as well as all corporate departments that own information security risk.
What they are looking for:
- 10+ years of experience specifically related to information security governance, operations, and risk management.
- Broad-based technology experience at substantial scale and complexity in a global, highly regulated, high-volume transaction environment.
- Experience must include time operating within transaction services environments characterized by the need for continuous availability and the highest levels of security.
- Experience with developing and managing Operational Risk programs, establishing framework and on-going process in accordance with best practices and Basel requirements.
- Comfortable leading in a complex matrixed organization, ideally in a global firm with a dynamic and rapidly changing environment.
- Experience leading within a highly regulated environment, with a preference for experience at the international and federal levels.
- Deep knowledge of policy frameworks and a strong understanding of policies, procedures, guidelines, and structure.
- Functional expertise, with operational knowledge of and exposure to various current and emerging information security areas such as:
- Cyber resilience
- Identity & privileged access management
- Secure coding practices
- Incident response
- Artificial Intelligence
- Third-party risk management
- Cloud security configuration and control frameworks
- Threat/vulnerability management
- Network security
Professional qualifications / certifications:
- B.S. in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent).
- Relevant certification is desirable, e.g., CISSP, CISM, CISA, CRISC.
- Working knowledge of Risk Management life cycles based on an established framework: NIST CSF, NIST SP 800-53, ORX, ISO 27001, SANS, CERT, ENISA, CSA, OACA, ISACA.
- Proficiency in MS PowerPoint and Excel.
- Experience in broader MS Office suite, including Project and Visio is a plus.
- Experience with enterprise GRC tools, e.g. Archer is a plus.
If the above role is of interest please apply to this ad or call me on 0207 509 8040 for more info.
About the job
- Contract Type: FULL_TIME
- Focus: Information Security
- Workplace Type: Hybrid
- Experience Level: Director
- Location: London
- Salary: £120,000 - £140,000 per annum
- Job Reference: R9TEE5-DABABA25
- Date posted: 4 April 2025
- Consultant: Darius Goodarzi
Come join our global team of creative thinkers, problem solvers and game changers. We offer accelerated career progression, a dynamic culture and expert training.
Information Security Risk Lead (Financial Services) employer: Robert Walters UK
Contact Detail:
Robert Walters UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Risk Lead (Financial Services)
✨Tip Number 1
Network with professionals in the information security field, especially those who have experience in financial services. Attend industry conferences or webinars to connect with potential colleagues and learn about the latest trends and challenges in the sector.
✨Tip Number 2
Familiarise yourself with the specific risk management frameworks mentioned in the job description, such as NIST CSF and ISO 27001. Being able to discuss these frameworks in detail during interviews will demonstrate your expertise and commitment to the role.
✨Tip Number 3
Prepare to showcase your leadership skills by gathering examples of how you've successfully led teams in complex environments. Highlight your experience in managing operational risk programs and how you’ve navigated regulatory challenges in previous roles.
✨Tip Number 4
Stay updated on current and emerging information security threats, particularly in the financial sector. Being knowledgeable about recent incidents and trends will help you engage in meaningful discussions during interviews and show that you are proactive in your field.
We think you need these skills to ace Information Security Risk Lead (Financial Services)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your 10+ years of experience in information security governance, operations, and risk management. Emphasise your familiarity with transaction services environments and your ability to lead in complex, regulated settings.
Craft a Strong Cover Letter: In your cover letter, explain how your background aligns with the specific requirements of the role. Mention your experience with operational risk programs and your knowledge of relevant frameworks like NIST CSF or ISO 27001.
Highlight Relevant Certifications: If you have certifications such as CISSP, CISM, or CISA, make sure to include them prominently in your application. These qualifications are desirable for the role and can set you apart from other candidates.
Showcase Technical Proficiency: Demonstrate your proficiency in MS PowerPoint, Excel, and any enterprise GRC tools you have used, such as Archer. Mentioning your experience with the broader MS Office suite can also be beneficial.
How to prepare for a job interview at Robert Walters UK
✨Showcase Your Experience
With over 10 years in information security governance and risk management, be ready to discuss specific projects or challenges you've faced. Highlight your experience in high-volume transaction environments and how you ensured continuous availability and security.
✨Demonstrate Knowledge of Frameworks
Familiarise yourself with the relevant risk management frameworks like NIST CSF and ISO 27001. Be prepared to explain how you've applied these frameworks in past roles, particularly in developing and managing operational risk programmes.
✨Prepare for Technical Questions
Expect questions on current and emerging information security areas such as cyber resilience and cloud security. Brush up on your knowledge of secure coding practices and incident response strategies to demonstrate your functional expertise.
✨Emphasise Leadership Skills
As this role involves leading within a complex matrixed organisation, be ready to share examples of how you've successfully led teams in dynamic environments. Discuss your approach to providing credible challenges to management regarding security processes and controls.
