Come and join JLR as a Senior Cyber Security Risk Specialist!
JLR is transforming the customer experience through connected vehicle technology, allowing vehicles to evolve throughout their lifecycle. As these capabilities grow, managing cyber security risk is critical to protecting customers, the brand and continued innovation. We are now recruiting a Senior Cyber Security Risk Specialist to help shape how risk is identified, assessed and managed across this connected environment.
This role sits at the intersection of technology, delivery and business decision‑making. You will work closely with senior stakeholders and agile delivery teams, providing clear, practical risk insight to support the secure development and operation of customer‑facing services. Operating as a trusted advisor, you will help embed security‑by‑design principles, balancing governance, compliance and cyber risk with the need for speed and continuous delivery.
As part of the wider Vehicle Cyber Security Chapter, you will contribute to enterprise resilience and assurance across all customer products. This is a role for someone who enjoys operating at senior level, is comfortable navigating complexity, and can translate cyber risk into meaningful business outcomes while influencing without authority in a fast‑moving, evolving environment.
WHAT TO EXPECT
In this role, you’ll play a key part in delivering high-quality outcomes and supporting the wider team through a range of responsibilities, including –
* Partner with the Chapter Lead to shape and deliver the long‑term vision and strategic roadmap for Security Risk Management, aligned to wider vehicle cyber security objectives
* Provide expert input to the UNECE R155 programme, advising on cyber security risk and compliance while applying best practice from multiple industries in a pragmatic JLR context
* Lead the operation and governance of key security forums, including Platform and Domain Security Working Groups, driving regular risk reviews with risk owners and senior leadership
* Work closely with Product Owners to ensure risks are identified, assessed and managed in line with the risk governance framework, providing leadership on complex or high‑impact risks
* Engage with development squads and delivery teams to ensure security controls are implemented effectively and proportionately, focusing on areas of elevated risk or technical complexity
* Manage the escalation of significant risks through Cyber and Product Compliance forums, supporting Product Owners through escalation, discussion and decision‑making
* Drive continuous improvement of security risk and compliance capability, progressing towards a future‑state model that increases automation and enables a focus on high‑value outcomes
WHAT YOU’LL NEED
To thrive in this role, you’ll bring a solid background, relevant certifications, and the following key skills –
* Proven senior‑level experience in Security Governance, Risk and Compliance (GRC), ideally gained across multiple industries or complex enterprise environments
* Strong track record of engaging with senior business stakeholders and Directors, clearly articulating cyber and security risk in practical, business‑focused language
* Excellent working knowledge of ISO/IEC 27001 or equivalent information security frameworks, with experience applying standards pragmatically rather than theoretically
* Ability to operate autonomously, providing direction and guidance to others while remaining effective within highly collaborative, cross‑functional teams
* Highly developed stakeholder management and collaboration skills, with the confidence to influence, challenge and advise without formal authority
* Proactive, pragmatic and solutions‑focused mindset, comfortable working in fast‑paced and evolving environments
* Experience delivering outcomes within Agile or product‑led delivery teams, balancing speed, risk and compliance
BENEFITS
This role is rewarding in more ways than one. On top of our core offering, you’ll do extraordinary work with amazing people. In addition, you can expect a wide range of benefits:
* Discounted car purchase (open to family members, too)
* A 52 week maternity leave policy and a 4 week paternity leave policy. Other parental leave policies are available
* A competitive pension
* A JLR company performance-related bonus
* An employee learning scheme providing funding for; education, training and other activities which support the development of personal skills and promote lifelong learning
* Access to open, employee-led support and social networks
* Comprehensive Life Assurance and Income Protection policies
* Flexible working
Flexible working is offered for specific roles dependant on responsibilities. Please speak to the hiring team for details
Creating Modern Luxury requires a modern approach to work. At JLR, hybrid working is a voluntary, non-contractual arrangement providing employees more choice and flexibility around how, when and where they work. Some roles require more on-site work, but details of this can be discussed with the hiring manager during the interview stage.
We work hard to nurture a culture that is inclusive and welcoming to all. We understand candidates may require reasonable adjustments during the recruitment process. Please discuss these with your recruiter so we can accommodate your needs.
Applicants from all backgrounds are welcome. If you’re unsure that you meet the full criteria of a role – but you're interested in where it could take you – we still encourage you to apply. We believe in people's ability to grow and develop within their role – it’s what makes living the exceptional with soul possible.
JLR is committed to equal opportunity for all.