Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as a Cyber & Data Security Risk Consultant, advising on strategic risk management.
- Company: Royal London is the UK's largest mutual life and pensions company, committed to inclusivity.
- Benefits: Enjoy a hybrid working style, corporate perks, and a supportive work environment.
- Why this job: Make an impact in cybersecurity while collaborating with diverse teams and enhancing your skills.
- Qualifications: A degree in IT or related field, with experience in cybersecurity preferred.
- Other info: We value diverse backgrounds and perspectives, fostering an inclusive workplace.
The predicted salary is between 36000 - 60000 £ per year.
Location: Edinburgh / Alderley Park
Contract Type: Permanent
Working style: Hybrid 50% home/office based
About the Role: Are you passionate about cyber security and data protection? Do you have a knack for identifying and managing risks? If so, we have the perfect opportunity for you! As a Cyber & Data Security Risk Consultant, you will play a crucial role in advising the Board and senior management on strategic planning and decision-making. You will independently oversee and challenge the Group’s strategic and business risk profiles, provide formal independent opinions on significant risks, and monitor Group-wide risk exposures compared to risk appetite. This role operates within the 2nd line of defence in GR&C, focusing on risk management and compliance. While 2nd line experience is not essential, a background in risk management is highly beneficial.
Your responsibilities will include:
- Conducting risk-based independent assurance, facilitating risk management activities, promoting strong risk culture and behaviours, and supporting risk-related communication and management information flows across the Group.
- Overseeing processes and mechanisms to identify, record, assess, manage, and report Information and Cyber Security related risks.
About You: We are looking for someone with a solid understanding or willingness to gain of the Royal London Group business vision, values, and strategy, as well as the wider industry. Ideally a degree in Computer Science, Information Technology, or a related field. Experience in cybersecurity, preferably within financial services. Relevant professional certifications such as CISSP, CISM, CDPSE, CDMP, CRISC, CompTIA Security+ and GIAC Security Essentials. Strong technical skills in cybersecurity domains such as IAM, Application and Endpoint Security, Security Operations and Incident Response. Experience in Data Security and Data Privacy, including knowledge of data protection regulations (e.g., GDPR, CCPA), data encryption, secure data storage, and privacy impact assessments. A deep understanding of Information Risk Management processes to protect information assets, maintain regulatory compliance, meet operational resilience objectives, and deliver outcomes for customers, regulators, and the business. Ability to work independently and as part of a team.
About Royal London: We’re the UK’s largest mutual life, pensions and investment company, offering protection, long-term savings and asset management products and services. Our People Promise to our colleagues is that we will all work somewhere inclusive, responsible, enjoyable and fulfilling. This is underpinned by our Spirit of Royal London values; Empowered, Trustworthy, Collaborate, Achieve. We’re an Inclusive employer. We celebrate and value different backgrounds and cultures across Royal London. Our diverse people and perspectives give us a range of skills which are recognised and respected – whatever their background.
Cyber & Data Security Risk Consultant employer: Royal London
Contact Detail:
Royal London Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber & Data Security Risk Consultant
✨Tip Number 1
Familiarise yourself with the Royal London Group's business vision and values. Understanding their strategic goals will help you align your skills and experiences with what they are looking for in a Cyber & Data Security Risk Consultant.
✨Tip Number 2
Network with professionals in the cybersecurity field, especially those who have experience in financial services. Engaging with industry experts can provide insights into the role and may even lead to referrals within the company.
✨Tip Number 3
Stay updated on the latest trends and regulations in data protection and cybersecurity. Being knowledgeable about GDPR, CCPA, and other relevant laws will demonstrate your commitment to the field and your readiness to tackle the challenges of the role.
✨Tip Number 4
Prepare to discuss your risk management experiences in detail during interviews. Be ready to share specific examples of how you've identified and managed risks in previous roles, as this will showcase your ability to fulfil the responsibilities of the position.
We think you need these skills to ace Cyber & Data Security Risk Consultant
Some tips for your application 🫡
Understand the Role: Before applying, make sure you fully understand the responsibilities and requirements of the Cyber & Data Security Risk Consultant position. Tailor your application to highlight relevant experience in risk management and cybersecurity.
Highlight Relevant Experience: In your CV and cover letter, emphasise any experience you have in cybersecurity, particularly within financial services. Mention specific projects or roles where you managed risks or implemented security measures.
Showcase Certifications: If you hold any relevant professional certifications such as CISSP, CISM, or CompTIA Security+, be sure to include these prominently in your application. They demonstrate your commitment and expertise in the field.
Tailor Your Cover Letter: Craft a personalised cover letter that reflects your understanding of Royal London Group's values and mission. Explain how your skills and experiences align with their goals, particularly in promoting a strong risk culture.
How to prepare for a job interview at Royal London
✨Understand the Company Culture
Before your interview, take some time to research Royal London Group's values and culture. Familiarise yourself with their Spirit of Royal London values: Empowered, Trustworthy, Collaborate, Achieve. Showing that you align with these values can make a strong impression.
✨Demonstrate Your Technical Knowledge
Be prepared to discuss your technical skills in cybersecurity, especially in areas like IAM, Application Security, and Incident Response. Highlight any relevant certifications you hold, such as CISSP or CISM, and be ready to explain how they apply to the role.
✨Showcase Your Risk Management Experience
Even if you don't have direct 2nd line experience, emphasise your background in risk management. Prepare examples of how you've identified and managed risks in previous roles, particularly in the context of cybersecurity and data protection.
✨Prepare Questions for the Interviewers
Have a list of insightful questions ready to ask your interviewers. This could include inquiries about the company's approach to risk management, their current challenges in cybersecurity, or how they foster a strong risk culture within the organisation.
