Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

Technology Risk Senior Manager

Ludgate Hill
6 days ago
Create job alert

Our Business Services team is a collective of creative, strategic, forward-thinking business enablers. Together the People & Culture, Clients & Markets, IT, Operations, Change Management, Innovation, Finance and Quality & Risk Management teams make it their mission to ensure Forvis Mazars has the right tools, technology, strategies, and services in place to deliver exceptional client service and future-proof our growing business.

As an Enterprise Risk Management  (ERM) – Technology Risk Senior Manager, you will play a key role in overseeing the maintenance and continuous improvement of an appropriate and resilient technology and cyber risk management framework. You will provide independent and proactive oversight, challenge and advisory support to technology stakeholders to identify, assess, manage and monitor technology risks. As a Senior Manager within ERM, you will have the opportunity to help develop and embed effective firmwide enterprise risk processes, risk culture, and maturity across the firm across all Service Lines by delivering proactive, high quality and value-added service as part of a maturing central Risk Function at Forvis Mazars.

This internal facing role will principally involve working with the Enterprise Risk Director in helping to enhance and develop high-quality risk management processes, frameworks, and culture across the organisation, with a particular focus on technology risk and AI. This will include developing the strategic approach for Enterprise Risk Management reporting firmwide, developing a sustainable and value adding service for the business to manage its risk profile.

You will report to the Enterprise Risk Director. They in turn report to the Executive Committee, Chair of the Risk and Quality Committee (RQC) as well as the Audit and Risk Committee (ARC), and Governance Council (GC). You will operate within the Second Line of Defence (2LoD) framework to deliver effective oversight and challenge to senior technology stakeholders across the organisation, ensuring that technology and cyber risk functions remain within the established risk appetite and that remediation strategies are adequate.

Key Responsibilities 

Evaluate and document cyber security, technology and data governance control compliance according to Service Line, Firmwide, and Regulatory Policies and Standards.

Lead the oversight and challenge of Information Security risk management, ensuring alignment with strategic objectives and regulatory expectations. For example ISO27001 and cyber Essentials +

Developing risk measurement methodologies to model and continually enhance the technology and cyber risk profile

Conduct oversight assessments of technology change and AI related projects to identify potential vulnerabilities, compliance issues, and ethical considerations.

Stay up to date with relevant regulatory requirements, data protection laws, and industry standards, ensuring that all technology and AI change initiatives adhere to these requirements.

Oversee the ethical implementation of AI, ensuring that concerns regarding bias, fairness, and transparency in AI algorithms and decision-making are appropriately addressed.

Provide regular reports and updates to senior management and relevant stakeholders regarding technology risk management activities, including identified risks and mitigation strategies.

Maintain relationships with stakeholders to facilitate oversight and effectiveness of the technical control environment

Validate that technology Key Risk Indicators are accurately captured and included in prioritisation activities

Provide strategic risk management advice and guidance on technology and cyber risks, identifying emerging risks and required actions associated with advances in technology and digital capabilities

Provide oversight, advice and guidance around the development of a robust data governance framework, ensuring high data quality and regulatory compliance.

Support the Director of Enterprise Risk Management in promoting risk management practices and risk culture aligned with the firm's risk appetite and strategy.

Provide people management responsibilities within the Enterprise Risk Management team.

Skills, Knowledge, and Experience

Expertise in technology, data governance, information security, and AI risk management, including experience working within regulated industries.

Professional/industry certification, or technology specific certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems (CRISC) or Certified Information Systems Auditor (CISA).

Experience engaging with and presenting to senior stakeholders, and challenging rationales as part of an independent function

Knowledge of legal and regulatory requirements related to technology, cybersecurity, data privacy, and AI.

Strong understanding of AI technologies, machine learning, and data analytics.

Self-motivated and with a desire to learn, ability to operate on multiple tasks whilst still achieving high delivery standards.

Excellent written and verbal communication and presentation skills

Inclusion and Diversity

At Forvis Mazars inclusion and diversity are central to our values. We recognise that being an inclusive and diverse organisation makes us stronger as a business.

We seek to attract and recruit people who reflect the diverse nature of our clients and communities, regardless of sexual orientation, gender identity, ethnicity, nationality, faith or belief, social background, age, and disability. Mazars selects candidates based on skills, knowledge, qualifications, and experience

Related Jobs

View all jobs

Information Security & Compliance Officer

Senior Global IT Manager

Cyber Security Programme Manager

IT Risk & Control Analyst

CISO

Director of IT - Digital & Infrastructure

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Why Cyber Security Careers in the UK Are Becoming More Multidisciplinary

Cyber security used to be viewed primarily as a technical discipline: firewalls, encryption, intrusion detection, penetration testing. In the UK today, it’s far broader. Organisations now face complex legal frameworks, ethical dilemmas, human-behaviour risks, communication challenges & usability hurdles. This shift means cyber security careers are becoming more multidisciplinary. From protecting NHS patient records to defending financial services, securing supply chains & safeguarding national infrastructure, cyber security now touches every sector. Employers increasingly want professionals who understand law, ethics, psychology, linguistics & design alongside traditional technical skills. In this article, we’ll explore why UK cyber security careers are expanding in this way, how these five disciplines shape the profession, and what job-seekers & employers need to know to thrive in this new landscape.

Jobs

Cyber Security Team Structures Explained: Who Does What in a Modern Cyber Security Department

Cyber security has become a top priority for UK organisations of all sizes. From small businesses to financial institutions, healthcare providers, and government bodies, the risk of cyber attack is now a constant concern. Threats are more sophisticated, regulations more demanding, and customers more aware of data privacy than ever before. But defending against cyber threats isn’t simply about having the right tools — it’s about having the right team. A modern cyber security department relies on clearly defined roles and responsibilities to ensure that defences are proactive, incidents are managed swiftly, and compliance is maintained. This article explains the structure of a modern cyber security team, the roles you’ll typically find within it, how they collaborate, and what skills, qualifications, and salaries are expected in the UK job market.

Jobs

Why the UK Could Be the World’s Next Cyber Security Jobs Hub

Cyber security has become one of the defining challenges of the digital age. From protecting personal data and financial transactions to defending national infrastructure and corporate systems, the demand for strong cyber defences has never been higher. As businesses, governments, and individuals depend more heavily on digital services, the scale and sophistication of cyber threats have risen dramatically. Ransomware attacks, data breaches, state-sponsored cyber operations, and insider threats are now everyday risks. In response, organisations worldwide are investing heavily in cyber security talent. The United Kingdom is uniquely positioned to become a global cyber security jobs hub. With its strong tech sector, world-class universities, advanced defence capabilities, and established financial markets, the UK already has the foundations. The question is whether it can scale up, attract, and retain the right talent to meet global demand. This article explores why the UK is poised to become the world’s next cyber security jobs hub, the opportunities available, the challenges ahead, and what needs to happen for this vision to be realised.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.