Rodeo
ResourcesPartnersSign in

Lawfront

Cyber Security Risk & Governance Manager

London
Posted about 5 hours ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Cyber Security Risk & Governance Manager

Lawfront is one of the UK's most ambitious and rapidly expanding Legal Groups. Through strategic acquisition and the integration of high‑performing regional law firms, we are building a national platform that combines local excellence with the strength, investment, and innovation of a modern Legal organisation.

Our growth trajectory is significant — and accelerating. As we continue to welcome new firms into the Lawfront family, we are strengthening our central functions to ensure we deliver consistent, scalable, and best-in-class support across the Group.

Role Purpose

The Cyber Security Risk & Assurance Lead is responsible for defining, implementing, and governing IT security policies, standards, and compliance frameworks across the organisation. This role ensures that security controls are embedded into IT architecture and delivery, while maintaining alignment with regulatory requirements and organisational risk appetite.

Operating as part of a central (horizontal) IT Security function, this role works closely with Architecture, Delivery, and Service teams; providing oversight, assurance, and governance rather than hands-on operational security execution.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

This role is governance-led rather than operational, focusing on defining what "good" looks like and ensuring it is consistently applied. The Cyber Security Risk & Assurance Lead provides oversight and assurance, while operational security execution remains with IT Security Engineers within the Service Delivery function. The success of this role depends on effectively embedding security into architecture and delivery without creating unnecessary friction, ensuring a risk-based, business-aligned approach to security and compliance.

Key Responsibilities

  • Security Policy & Standards
  • Governance- & Compliance
  • Audit & Assurance
  • Security Architecture Alignment
  • Risk Management
  • Stakeholder Engagement
  • Vendor & Third-Party Security
  • Continuous Improvement & Awareness

Experience

  • Holder of relevant CyberSecurity Certifications - e.g. CISM, CCSP or CISSP
  • Strong knowledge of security frameworks (e.g., ISO 27001, NIST, CIS Controls)
  • Understanding of cloud security principles (Azure, AWS, or GCP)
  • Familiarity with the concepts, standards and tools involved in controlling identity and access management, data protection, resilience & loss prevention, and network security
  • Experience with risk management and compliance tooling (GRC platforms desirable)
  • Experience with selecting, deploying, maintaining and securing IT systems in a mid-sized (200-2000 user) UK organisation.
  • Familiarity with popular UK law firm applications and services is advantageous.
  • Ideally around 7-10 years in IT and security, with strong focus on governance, risk, and compliance
  • Experience managing audits and regulatory requirements
  • Experience working within enterprise IT environments and architecture governance structures, ideally within a legal environment.
  • Experience in regulated industries (preferred)

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

It's an exciting time to join our organisation, and this will give you a fantastic opportunity to be a key part of our development. If this sounds like you then please get in touch by clicking apply below.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Cybersecurity Certifications
Security Frameworks
Cloud Security Principles
Identity Management
Data Protection
Risk Management
Compliance Tooling
IT Systems Security
Audit Management
Regulatory Requirements
Enterprise IT Environments
Architecture Governance
Legal Environment Experience
Continuous Improvement
Stakeholder Engagement
Vendor Security

Location

London, England, United Kingdom

Sign up to applySee more jobs like this