×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Cyber and Technology Risk Manager

Job in Nottingham, Nottinghamshire, NG1, England, UK
Listing for: Nottingham Building Society
Full Time, Part Time, Contract position
Listed on 2026-02-19
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below
Cyber and Technology Risk Manager - Nottingham City

Contract type:
Permanent

Hours:

Full-time, 35 hours

Location:

Head Office, Nottingham (Hybrid working, minimum 2 days per week)

Application process:

Please apply via the application button which will direct you to our careers site. If you require any adjustments to assist you in applying, please contact

At Nottingham Building Society our talent acquisition approach is rooted in openness and inclusive hiring, so even if you don’t feel you tick every box, we’d still genuinely love to hear from you.

As a Cyber and Technology Risk Manager, you’ll operate as part of our second line of defence, providing expert oversight across our digital and technology transformation journey. You’ll play a pivotal role in ensuring the organisation remains secure as we modernise, offering robust risk assurance across information security, technology initiatives, major transformation programmes and change portfolios.

You’ll build strong relationships across the business and act as a trusted, influential voice on cyber and technology risk at all levels. With a focus on embedding smart technology solutions, you’ll help drive our strategic agenda while continuously enhancing our risk management frameworks and processes to protect the organisation now and in the future.

Here’s a taste of what you will be doing as a Cyber and Technology Risk Manager at Nottingham Building Society:

  • Independent Risk Oversight: Deliver objective assurance over cyber and technology risks, using strong technical knowledge to assess controls, challenge effectively, and guide stakeholders.
  • Strategic Transformation Support: Align with the digital strategy and roadmap to provide proactive risk insight, building trusted relationships across Technology & Transformation.
  • Change Risk Management: Ensure risks are properly identified and managed throughout change initiatives by reviewing assessments and monitoring supporting controls.
  • Incident Monitoring & Assurance: Oversee robust processes for tracking cyber and technology incidents, ensuring clear visibility of themes, actions and residual risks.
  • Insightful Reporting: Develop forward-looking MI and produce clear, high-quality reports for the CRO, Director of Risk, and risk committees.
  • Second Line Challenge: Provide an independent perspective on incidents and risk matters at the Operational Risk Committee, ensuring strong governance and accountability.
  • Continuous Improvement: Identify opportunities to strengthen frameworks, processes and controls to stay ahead of emerging cyber and technology threats.
  • Stakeholder Influence: Act as a trusted partner across the business, offering credible challenge and expert guidance to drive effective risk management behaviours.

About you:

  • Cyber Security Expertise: Strong, transferable experience in cyber security with a solid understanding of threat vectors, security controls and modern IT architectures.
  • Risk Framework Knowledge: Practical experience using recognised information security and risk management methodologies such as NIST, COBIT and ISO
    27001.
  • Broader Risk Awareness: Understanding of wider risk management systems and methodologies beyond cyber and technology.
  • Insightful Reporting: Ability to design and produce clear, meaningful MI and committee‑level risk reporting.
  • Proven Industry Experience: 5+ years in cyber/technology risk, internal audit or change assurance within regulated financial services; 2nd line experience desirable.
  • Strong Decision-Making: Able to use initiative, make sound judgements and respond confidently to complex issues.
  • Collaborative Influencer: Skilled at building strong stakeholder relationships, offering credible challenge and communicating clearly at all levels.
  • Qualified & Knowledgeable: Degree-level education preferred; CISSP or CISM qualifications advantageous but not essential.

Reward & Benefits:

  • Competitive Package :
    Fair salary benchmarked against market data, annual discretionary bonus, and 29 days holiday plus bank holidays.
  • Health & Wellbeing :
    Access to Medicash healthcare, mental health first aiders, and a suite of wellbeing resources to support you inside and outside of work.
  • Work-Life Balance :…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search