First Line Security Risk Manager

Join to apply for the First Line Security Risk Manager role at CFC

4 days ago Be among the first 25 applicants

Join to apply for the First Line Security Risk Manager role at CFC

We are seeking a proactive and experienced First Line Security Risk Manager to lead the implementation and management of information security risk practices across our organisation. In this role, you will be the first line of defense for security risk management and play a critical part in ensuring security governance, policy compliance, and operational risk ownership across business functions.

You will report directly to the Group CISO and work closely with business units, IT, compliance, and audit to ensure security risks are effectively identified, assessed, documented, and mitigated in line with our overall risk appetite.

About the role

The ideal manager for this position will lead and maintain the first line Information Security Risk Management function. Additionally, this person will be responsible for:

• Conducting and documenting security risk assessments across systems, projects, and processes.
• Owning and managing the Group security risk register, ensuring timely updates, mitigation tracking, and escalation where required.
• Working closely with the 2nd line to manage security risks across the group.
• Supporting the Group CISO in risk reporting to executive stakeholders.
• Managing the exception to security policy process, including risk-based reviews, documentation, approvals, and renewals.
• Liaising with business stakeholders to assess and document residual risk where security standards cannot be met
• Supporting the creation, maintenance, and review of security policies and procedures to ensure alignment with regulatory, industry, and business requirements.
• Mapping security policies to procedures and controls to ensure clear operational accountability.
• Facilitating awareness and compliance of security policies across business units
• And many other security-related activities!

About you

The ideal candidate for this position will have:

• Hands-on experience managing risk assessments, policy exceptions, and governance processes.
• Proven experience (minimum 5+ years) in security risk management, essential that this is within financial services or a regulated industry.
• Strong understanding of information security principles, standards (e.g., ISO 27001, NIST), and regulatory requirements (e.g., NYDFS, GDPR).
• Experience with risk and control frameworks (e.g., IRAM2, FAIR, COBIT) essential.
• Working knowledge of global regulations: GDPR, DORA, APRA CPS 234, CCPA, etc.
• Strong familiarity with UK and international regulatory frameworks in the US, Europe and Australia.
• Adept at translating complex regulatory or technical requirements into practical business-aligned risk management principles.
• Collaborative, adaptable, and capable of operating across time zones and cultures.
• Comfortable working with audit and compliance stakeholders during assessments, certifications, or investigations.

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  Insurance and Computer and Network Security

Referrals increase your chances of interviewing at CFC by 2x

Get notified about new Security Risk Manager jobs in London Area, United Kingdom.

Greater London, England, United Kingdom £65,000.00-£70,000.00 10 hours ago

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 1 month ago

London Area, United Kingdom £90,000.00-£110,000.00 7 hours ago

Croydon, England, United Kingdom 4 days ago

London, England, United Kingdom 6 days ago

Greatstone-On-Sea, England, United Kingdom £29,994.00-£29,994.00 3 weeks ago

Croydon, England, United Kingdom 2 weeks ago

Canterbury, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 2 months ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 5 days ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 5 days ago

London, England, United Kingdom 3 days ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.