IT Risk and Control Manager
Salary: £64,000 - £79,900 (dependent on experience and location)
Location status: Hybrid – about 2 days in the office
Location: Angel Court, London / Bupa Place, Manchester or other UK Locations
Role Type: Permanent
Shift pattern: Full‑time – 37.5 hours per week
Number of Positions: 2
At Bupa, we help people live longer, healthier, happier lives. That purpose shapes everything we do.
As an IT Risk & Control Manager, you will help ensure our technology is safe, reliable and ready to support customers and colleagues daily. You will manage risk across around 400 business applications, ensuring services run smoothly.
This role works closely with senior leaders across technology and the wider business, helping them understand risk, make informed decisions, and implement proper controls. It offers an opportunity to impact across cloud and digital platforms.
Key Responsibilities
* Identify and assess technology and information security risks across the business
* Ensure risks are clearly understood and managed with strong, practical controls
* Support teams to design and improve controls that reduce risk and protect services
* Oversee control testing and address any gaps
* Lead and track plans to fix control issues and improve risk management processes
* Build strong relationships with senior stakeholders, including CIOs and business leaders
* Prepare clear, simple reports on risks and controls for senior committees
* Monitor risk levels and control performance through dashboards and regular updates
* Support incident planning and help teams respond to technology or service risks
* Promote a risk‑aware culture by providing guidance and training where needed
What We're Looking For
We seek a confident, collaborative professional ready to make a difference.
* Experience managing IT risk and controls in a regulated environment (financial services experience is essential)
* Understanding of technology risks, including cloud services and modern IT environments
* Experience designing, testing, or reviewing IT controls
* Knowledge of security frameworks such as ISO 27001, NIST or similar
* Awareness of UK regulatory bodies (e.g., FCA, PRA, ICO, CQC)
* Strong communication skills, with the ability to explain complex ideas simply
* Confidence working with senior stakeholders and influencing decisions
* Experience in IT audit, assurance or risk roles (qualifications like CISM, CISA or CISSP are helpful but not essential)
* Ability to stay organised and focused, even when working to tight deadlines
Benefits
Our benefits are designed to promote wellbeing across physical, mental, financial, social and environmental dimensions. We support flexible working and offer family‑friendly benefits.
* 25 days holiday, increasing through length of service, with option to buy or sell
* Bupa health insurance as a benefit in kind
* Enhanced pension plan and life insurance
* Onsite gyms or local discounts where no onsite gym available
* Various other benefits and online discounts
Bupa is a Level 2 Disability Confident Employer. We offer fair treatment and reasonable adjustments to disabled applicants who meet the minimum criteria for the role.
Time Type: Full time
Job Area: Legal, Risk & Audit
Locations: Angel Court, London; Bupa Place, Manchester
#J-18808-Ljbffr