Overview
Principal Cyber Security Risk Manager, AD WARRIOR – Location: Birmingham, Bristol, Leeds, Newcastle-upon-Tyne, Nottingham, Oldham, Swansea. Salary: Up to £80,400 per annum. Vacancy Type: Permanent. Closing Date: 21st September 2025.
The organisation is strengthening security capability across the business. This role forms part of a growing Cyber function to embed and maintain an assurance and response function protecting Services and customer data. The role supports the Data Strategy, which has recently been refreshed, to make the Agency an evidence-based and data-driven organisation while maintaining appropriate security of services and data.
You will work with the wider Security function and support Service Owners and multi-disciplinary teams to ensure security is built into the service development lifecycle and strategic planning. You will provide a consolidated risk picture for the Products within the Service and recommend risk acceptance aligned with defined risk appetites. You will lead a small service group of security professionals to support assurance and engage with Enterprise Architecture processes to influence pattern adoption.
If this challenge is attractive, they’d love to hear from you.
Responsibilities
* Lead and undertake risk management activities against complex or novel scenarios, applying fundamental risk management principles and leading regulatory or legislative compliance activities.
* Guide and direct specialist activities, promote development of applicable skills, provide leadership to other risk managers, and share best practice across government, the public sector, and industry.
* Lead analysis and derivation of complex security needs.
* Lead Cyber Security risk assessments and related governance activities; provide guidance on establishing the organisation’s Cyber Security governance arrangements.
* Provide guidance to ensure ongoing confidence that fundamental security needs are met, integrating a range of assurance approaches and techniques.
* Shape leadership decision-making through effective reporting on security processes, provide recommendations to solve highly complex problems, and act as an SME for complex cyber risk management concerns.
Great line management is important to the organisation. The role will empower line managers to develop skills, enabling teams to flourish and deliver excellent outcomes for the public.
Qualifications & Licenses
* A Chartered Cyber Professional or willingness to work towards Chartered status.
* Demonstrated experience in cloud security on at least one platform (AWS or Azure) and willingness to undertake formal training and certifications in this area.
Required Experience & Profile
As a Principal Cyber Risk Manager you are inquisitive and understand the full service and product context you support. You work in a matrix team with developers, user experience and service design, business analysis to bring a rounded approach to a Service. You make evidence-based recommendations to Service Owners and Senior Security Leadership about the level of security risk within each Product. You enjoy learning about new technology and support the development of the Security profession as part of a leadership role, bringing strategic influence to your Services and Products.
Benefits
* Employer pension contribution of 28.97% of salary.
* 25 days annual leave, increasing by 1 day per year of service (up to 30 days).
* 8 Bank Holidays plus an additional Privilege Day for the King’s birthday.
* Access to the staff discount portal.
* Career development opportunities and potential to undertake professional qualifications paid for by the department (e.g., CIPD, Prince2, apprenticeships).
* Joining a diverse and inclusive workforce with support across staff communities.
* 24-hour Employee Assistance Programme with free confidential help and advice for staff.
* Flexible working options supporting work-life balance.
To Apply
If you are a suitable candidate, please click apply to be redirected to the employer’s website to complete your application.
#J-18808-Ljbffr