The primary focus of this position is to oversee and manage the organisation’s risk management framework, including strategic risks, the risk appetite and tolerance statement, and the operational risk registers. The role will also take responsibility for reviewing the wider risk policy framework and leading Board and Senior Leadership sessions on risk management. A key part of the role is ensuring that risk appetite and tolerance principles are actively considered in all major decisions and projects. In addition, the postholder will manage the risk management function as a whole, embedding strong operational risk practices and ensuring the effectiveness of our three lines model so that it remains appropriate, fully embedded across the organisation, and compliant with all relevant regulations and legislation. The role will also oversee GDPR compliance by providing guidance on applicable legislation, reviewing organisational practices, strengthening internal procedures, and delivering appropriate training programmes. The ideal candidate will be of graduate calibre or hold a relevant risk management qualification, and will bring substantial experience in risk management. They will have a proven background in working within or alongside regulatory bodies such as a Private Registered Provider, HoS, or the RSH, and will also possess significant experience in GDPR compliance.