Enterprise Risk Manager - Technology Services

Salford
3 months ago
Applications closed

Related Jobs

View all jobs

Risk and Compliance Manager

Senior Cyber Security Governance Manager

Control Testing Lead - Cyber Security

Information Security Manager

Cyber Security Resilience Manager

Product Delivery Manager

An exciting opportunity has arisen for an experienced risk professional to join our high performing Risk Team at our award winning investment platform. This role is ideal for someone who enjoys working closely with Technology functions and wants to make a real impact on how enterprise risk is understood, managed and embedded across a growing FTSE 250 business.

As the primary Risk Team business partner for our Technology Services division, you will play a key role in supporting the delivery of our enterprise wide risk management framework. You will help ensure risks are identified, assessed and managed effectively, and contribute to a strong risk culture across the organisation.

What the role involves:

  • Partner with Technology Services to embed the Group Risk Management Framework.

  • Support the ongoing development of the framework across AJ Bell.

  • Promote a positive risk culture and provide education and guidance on risk processes.

  • Participate in risk forums to help strengthen first line risk maturity.

  • Support and challenge risk owners on risk and control assessments.

  • Prepare and deliver training to increase business understanding of risk management.

  • Oversee risk and control self assessments and complete controls testing as part of the annual control effectiveness review & Ensure the accuracy and quality of data within the Group’s risk system and promote its effective use.

  • Support the risk incident process and provide independent assessment of incidents.

  • Produce high quality, insightful reporting for forums, committees and external requirements.

  • Conduct thematic risk reviews where additional assurance is required & Contribute to the Internal Capital Adequacy and Risk Assessment process, including scenario workshops.

    What we’re looking for:

  • Strong understanding of IT and technology risk areas such as cyber security, information security, IT resilience, disaster recovery, business continuity, data governance, privacy, change, and third party risk.

  • At least five years’ experience in a risk focused role.

  • Knowledge of risk management frameworks such as ISO31000, NIST, COBIT or COSO.

  • Understanding of control frameworks and IT general controls.

  • Experience in control assurance is desirable.

  • Certifications such as ITIL Master or Expert, CISA or CRISC would be beneficial.

  • Strong communication skills and the ability to work with both technical and non technical stakeholders.

  • Commercial awareness and a pragmatic approach to risk.

  • Excellent report writing, presentation skills and attention to detail.

  • Strong planning, organisation and time management abilities.

    About Us

    AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions that caters for everyone, from professional financial advisers to DIY investors with little to no experience. We have over 644,000 customers using our award-winning platform propositions to manage assets totalling more than £103.3 billion. Our customers trust us with their investments, and by continuously striving to make investing easier, we aim to help even more people take control of their financial futures.

    Having listed on the Main Market of the London Stock Exchange in December 2018, AJ Bell is now a FTSE 250 company.

    Headquartered in Manchester with offices in central London and Bristol, we now have over 1,500 employees and have been named one of the UK's 'Best 100 Companies to Work For’ for six consecutive years and in 2024 named a Great Place to Work®.

    At AJ Bell you can expect a friendly working environment with a strong sense of teamwork, we have a great sense of pride in what we do, and this is reflected in our guiding principles.

    What we offer:

  • Competitive starting salary

  • Starting holiday entitlement of 27, increasing up to 31 days with length of service and a holiday buy and sell scheme

  • A choice of pension schemes with matched contributions up to 8%

  • Discretionary bonus scheme, Annual free share awards scheme & Buy As You Earn (BAYE) Scheme

  • Health Cash Plan – provided by Simply Health & Discounted private healthcare scheme and dental plan

  • Free gym & Employee Assistance Programme

  • Enhanced maternity, paternity, and shared parental leave

  • Death in service scheme

  • Calendar of social events, including monthly payday drinks, annual Christmas party, summer party and much more

    Hybrid working:

    At AJ Bell, our people are the heart of our culture. We believe in building strong connections by working together. That's why we offer a hybrid working model, where you'll spend 3-4 days per week in the office. For new team members, the first 3 months will be spent full-time in the office to help you immerse yourself in our business and build valuable relationships with your colleagues.

    AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work.

    We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on qualifications, merit and business need.

    If you like the sound of the above, or just want to know more about the company and the role, we'd love to speak to you

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.