Accessibility Links

Information Risk Manager

  • Location: London / Remote
  • Salary: £650 per day (Inside IR35)
  • Job type: Contract/Temp
  • Job reference: JEM / 173369
  • Sector: Cyber Security, Resilience , Technology Risk, Information Security
Job Description

Information Risk Manager required for market-leading financial services firm. The role will involve providing a range of information risk services across the 1st and 2nd lines of Defence.


Your main role is to act as an Information Risk Manager within the Global I&ORM team and are responsible for:

  • Promoting a strong risk culture of ownership & Accountability in the 1LoD by ensuring that all Information risks are identified, assessed, measured, monitored, managed, and properly reported on by all business units.
  • Promoting cyber-security resilience and to drive improvements in information security risk management by working closely with the business to review and uplift the internal control framework for Information Security risks such that it aligns with internal control frameworks and meets cybersecurity standards.
  • Overseeing the implementation of the NIST Cybersecurity framework through challenge and advice to the 1LoD. Setup and maintenance of control management systems and regular reporting.
  • Provide assurance on the performance of 2LoD risk management activities in relation to information risks in accordance with adopted frameworks, tools and processes, and in accordance with the firm’s policies, applicable laws and regulatory standards.
  • Testing the control framework and challenge the effectiveness of the key controls.
  • Alerting management by providing information risk opinions based on identified, known and emerging issues that may affect the risk posture.
  • Performing reporting, administration or other duties as assigned by Global Information Risk Manager from time to time


In addition to your main role, you will coordinate the I&ORM role together with one colleague (whose primary responsibility is to act as local 2LoD Operational Risk Manager & 1LoD Business Continuity Management officer). The joint responsibilities include:

  • Ensure risk ownership is taken within the 1LoD and to provide oversight, objective review and challenge of the manner in which operational risk, business continuity and information risk is handled across all activities, including within the UK.
  • Closely work together with other 2LoD functions (Compliance and Legal) to optimize the local regulatory requirements within the Control Framework of the firm
  • Perform ad hoc requests from Management.
  • Perform independent reviews and testing of various components of the risk and control environment.
  • Perform crisis management activities to support the EU and UK Crisis Manager and Business Crisis Teams


As an ideal candidate, you will have an industry certification such as CISSP/ CISM/ CRISC and have expert knowledge of information risk. You will also have a proven track record of delivery in a similar role. Experience within Financial Services is highly advantageous.


Similar jobs
Information Security Architect
  • Location Remote (with expat relocation to mainland Europe later in 2021)
  • Salary £Expat package
  • Job type Permanent
  • Sector Commerce and Industry
  • Description Opportunity for an Information Security Architect to relocate as an expat to a vibrant European city post Covid (initially remote).
Cloud Security Architect
  • Location Remote with occasional travel to Leeds or London
  • Salary £80,000 + bonus + benefits
  • Job type Permanent
  • Sector Commerce and Industry , Information Security
  • Description Security Architect with previous experience of cloud (Azure of AWS ideally) is sought for global company to work on cloud migration.
SOC Manager- 12 Month FTC
  • Location London - With Flexible Working
  • Salary £65,000-75,000+Bens
  • Job type Permanent
  • Sector Cyber Security, Information Security
  • Description My client, a property development and management firm, are seeking a SOC manager to lead their technical security function on a 12 month FTC.
Related news