About the business: This business is a £1billion+ technology solutions business which is continuing to grow organically and is one of the top 10 businesses in the UK to work for regarding work/life balance! About the opportunity: This role focuses on managing and enhancing the IT and Information Security risk landscape. Reporting directly to the Head of Risk and Assurance, you will play a key role in embedding effective risk management practices across the bsuiness's technology and cybersecurity domains. You will be leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. You will also own and maintain IT Risk and Control Matrices (RCMs), ensuring they remain current, comprehensive, and aligned with industry standards and audit expectations. A bit about you:

Minimum 5 years of experience in second-line risk management or internal audit, with a strong focus on IT or Information Security. Experience in consultancy or professional services, with a proven ability to support complex transformation or change programmes is preferred. Demonstrated leadership in delivering IT risk or audit initiatives, including managing projects, mentoring team members, and driving outcomes. Strong knowledge of industry frameworks and standards, such as ISO 27001, NIST, CIS Controls, and regulatory requirements like GDPR. Proven ability to engage and influence stakeholders across IT, Information Security, and business functions, building trusted relationships at all levels.

This is a hybrid opportunity, with the business needing you in the office 3 days a week. #J-18808-Ljbffr