hackajob
Cyber Risk Manager - Active Security Clearance Required

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Cyber Risk Manager - Active Security Clearance Required
hackajob is collaborating with Solirius Reply to connect them with exceptional professionals for this role.
About Us
Solirius Reply, part of the Reply Group, is a technology consultancy and digital transformation partner that helps organisations solve complex challenges through strategy, design, engineering, and delivery.
We work closely with our clients to deliver secure, accessible, user-focused services that evolve with their needs. By combining deep technical expertise with people-centred design, we create solutions that deliver meaningful, lasting impact.
Our consultants partner directly with client teams, embedding into organisations to understand their goals, challenges, and users. This collaborative approach enables us to deliver tailored solutions that drive measurable outcomes across public and private sectors.
Past and present clients include the Ministry of Justice, Department for Education, Ministry of Housing, Communities and Local Government, UEFA, International Olympic Committee, and Mercedes-Benz. Our services span the full digital delivery lifecycle, including architecture, engineering, delivery management, user-centred design, business analysis, data, DevOps, and AI.
We operate as a collaborative and inclusive organisation that empowers our people to take ownership, innovate, and develop their expertise. As an equal opportunities employer, we are committed to encouraging equality, diversity, and social mobility, while creating opportunities for our teams to work on meaningful projects that deliver lasting impact
About You
You are a motivated and adaptable professional with a strong analytical mindset and a passion for using technology to solve real-world problems. You enjoy working in collaborative, agile teams and take pride in delivering high-quality solutions that make a tangible impact. With strong communication skills and a consultative approach, you’re comfortable engaging with clients, understanding their needs, and translating them into effective outcomes.
The Role
We are looking for an experienced Cyber Risk Manager to join our growing cyber practice on a permanent basis, supporting major public sector clients, with a particular focus on Local Government.
You will work closely with client stakeholders to identify, assess, manage, and communicate cyber risks across a variety of programmes and operational environments. Acting as a trusted advisor, you will help organisations establish effective cyber risk management practices, improve governance processes, and implement proportionate controls aligned to their risk appetite.
You will play a key role in supporting the continued evolution of our Local Digital Cyber Risk capability, helping to mature reporting processes, strengthen risk insights, and enhance the use of the NCSC Cyber Assessment Framework (CAF) to support informed decision-making across the sector.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
You will be a fundamental member of the team, responsible for leading cyber risk activities, supporting and developing colleagues, fostering best practice, and ensuring our clients remain resilient against an evolving threat landscape.
Requirements
Leading and facilitating cyber risk assessments across programmes, projects, and operational environments. Supporting and maintaining the Cyber Risk reporting process for the Local Government sector, ensuring timely and accurate reporting of cyber risks and emerging trends. Supporting the continued development and maturity of the Local Digital Cyber Risk function through the enhancement of metrics, reporting frameworks, and governance structures. Analysing NCSC Cyber Assessment Framework (CAF) returns to identify themes, trends, and actionable risk insights that inform decision-making and prioritisation. Planning and executing assessments to determine the cyber risk levels associated with strategic departmental goals, programmes, and initiatives. Providing a cyber risk perspective on the development, refinement, and implementation of the CAF process to ensure it remains effective and aligned to organisational objectives. Directly engaging with councils, when required, to validate risk profiles, understand local challenges, and provide pragmatic risk-based guidance. Developing and maintaining cyber risk registers, ensuring risks are appropriately documented, prioritised, assigned, and managed through to resolution. Assessing the effectiveness of security controls and recommending proportionate improvements to reduce risk exposure. Producing high-quality risk reports, dashboards, and presentations for senior stakeholders and governance forums. Providing risk-based guidance to technical and business teams throughout project lifecycles. Conducting third-party and supplier cyber risk assessments where appropriate. Supporting internal and external audits, assurance reviews, and regulatory activities. Monitoring emerging threats and vulnerabilities to assess potential impacts to client environments. Promoting cyber risk awareness and embedding a positive security culture across client organisations.
Key Skills And Experience
Demonstrable experience working in cyber security, technology risk, information security, or enterprise risk management roles. Strong understanding of cyber risk management principles and methodologies. Experience working with recognised frameworks and standards, including: NIST Cybersecurity Framework (CSF) NCSC Cyber Assessment Framework (CAF) ISO/IEC 27001 and ISO/IEC 27005 CIS Critical Security Controls COBIT Experience analysing risk data and translating findings into meaningful recommendations and reporting outputs. Experience maintaining risk registers and tracking remediation activities. Strong stakeholder management skills, with experience engaging senior leaders, executive audiences, and external organisations. Ability to communicate technical risks effectively to both technical and non-technical stakeholders. Experience facilitating workshops and conducting interviews to gather evidence and validate risk assessments. Experience operating within Agile and multidisciplinary delivery environments. Knowledge of cloud security risks and controls across platforms such as Azure, AWS, or Google Cloud is beneficial. Experience within Local Government, the wider public sector, or regulated environments would be highly advantageous. Experience using data and reporting tools to develop metrics and management information would be beneficial. Desirable Certifications


Get help with your application
Your very own career expert that helps elevate your application to the next level.
CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CRISC (Certified in Risk and Information Systems Control) CISA (Certified Information Systems Auditor) ISO 27001 Lead Implementer or Lead Auditor NCSC or other recognised cyber security and risk management certifications.
Benefits
Competitive Salary Bonus Scheme Private Healthcare Insurance 25 Days Annual Leave + Bank Holidays Up to 10 days allocated for development training per year Enhanced Parental Leave Paid Fertility Leave (5 Days) Statutory & Contributory Pension EAP with Help@Hand Gym Membership Benefits Cycle to Work and Electric Vehicle Schemes Flexible Working Annual Away Days/Company Socials
Diversity and Inclusion
As an equal opportunities employer, we are committed to creating a work environment that supports, celebrates, encourages and respects all individuals, where all processes are based on merit, competence, and business needs.
Encouraging high social mobility is really important to us. We foster an inclusive culture by welcoming different perspectives, enabling equitable opportunities, and promoting open dialogue. This commitment is reflected in initiatives that support diversity, mental health, wellbeing, and professional development. Whatever stage you are at in your career, you will find an environment where you can thrive.
Should you require further assistance or require any reasonable adjustments to be put in place to better support your application process, please do not hesitate to raise this with us.
As a Disability Confident employer, we are committed to ensuring our recruitment process is accessible and inclusive, enabling all candidates to demonstrate their skills, experience and potential.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location