Lead Technology Risk Manager - UK - 03A

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

Job Description

Who we're looking for

We are excited to offer an opportunity for an IT risk and security professional to join our team at Schroders. We are seeking a motivated individual with strong expertise and a proven ability to build trusted relationships. The ideal candidate will have extensive experience collaborating with auditors, managing challenging conversations, and providing pragmatic, well-reasoned arguments that balance requirements with practical business needs. They will be skilled at presenting complex issues clearly, supporting recommendations with evidence, and influencing key stakeholders towards effective risk-based decisions. Candidates should also possess a thorough understanding of security risk and control frameworks along with experience in drafting risk assessments and appetite statements for senior management.

The team

At Schroders, technology is not just about systems and tools - it is about collaboration, solving problems that support our business and deliver high-quality outcomes. We value excellence and actively encourage innovation in all that we do. The global Information Security function safeguards our business by effectively managing risks to our information assets in an ever-evolving threat and technology landscape. This is achieved through specialist teams focused on Cyber Security, Architecture, Engineering, Governance, Risk and Compliance, and the Information Security Change Programme. Reporting directly to the Head of InfoSec and Technology Risk, you will play an active role in developing, questioning, and delivering our shared vision.

What you'll do

Sitting within Information Security, Technology Risk is a dynamic team that provides guidance and constructive challenge to ensure the security and resilience of our systems and services. By joining us, you will be instrumental in developing and driving risk strategy across the estate with some focus on vulnerability management, IT vendor oversight and operational resilience. In this role, you will build strong working relationships with auditors and other stakeholders demonstrating confidence and skill in managing complex issues and topics.

Key activities:

• Deliver an integrated Schroders Technology Policy and Control Framework aligned with regulatory and international standards, reducing risk and supporting global audit readiness.
• Provide pragmatic, well-reasoned recommendations that balance compliance requirements and risks with business needs.
• Collaborate with compliance, legal, IT, business stakeholders, and external clients to understand operational requirements, regulatory obligations, and risk tolerance.
• Communicate complex issues clearly in audience-tailored language, backed by robust, evidence-based analysis, to influence stakeholders and drive risk-based decisions.
• Proactively identify emerging risks and engage technology teams across the business.
• Lead the timely resolution of technology issues and audit actions by assessing evidence, escalating where appropriate, and ensuring effective closure.
• Provide analysis and thought leadership to drive improvements in the Tech Risk framework, risk management platforms, and the end-to-end Technology Risk Management lifecycle.
• Lead and conduct risk assessments, track control gaps, manage end-of-life and vulnerabilities, assess downtime events, ensure supplier security assurance, and coordinate IT audits.
• Analyse and present key risk items and metrics to the Global Technology Risk Committee.
• Collaborate with Information Security, Software Engineering, and Infrastructure teams to improve processes and operational resilience.
• Lead responses to regulatory and client requests and drive strategic enhancements to the technology risk management framework.

The knowledge, experience, and qualifications you need

• Prior industry experience within the financial services or insurance sector in an IT Risk Management or Security role.
• Experience with SSAE16, ISAE 3402/AAF or SOX control reporting requirements.
• Sound knowledge of operational resilience, third-party risk management, risk and control Frameworks, COBIT, ISF, NIST CSF.
• Strong communicator in presenting and articulating risks to senior stakeholders. Must be comfortable in navigating ambiguity to extract meaningful insights.

The knowledge, experience and qualifications that will help

• Consultancy experience welcomed.
• Degree-educated, Information Security certification: CISSP, CISSP-ISSMP, CRISC, CISA,
• Prior industry experience within the financial services or insurance sector in an IT Risk Management or Security role.
• A sound understanding of cloud and AI technology, as well as the corresponding regulatory and privacy requirements within financial services.
• Operational resilience exposure
• Experience in overseeing IT-managed services within the context of technology risk.
• Basic knowledge of automated risk reporting tools (such as SQL, Python, Bash) and real-time risk visibility dashboards is desirable.

What you'll be like

• Analytical and tenacious, with a focus on resolving issues through to completion.
• Strong relationship-builder who fosters trust and collaboration.
• Inspiring and collaborative leader, empowering teams to embrace and drive change.
• Adaptable and able to multitask effectively in dynamic environments.
• Naturally inquisitive and comfortable challenging the status quo, with a proven ability to drive ideas forward and influence outcomes.
• Committed to continuous improvement and ongoing personal development.

We're looking for the best, whoever they are

Our purpose is to provide excellent investment performance to clients through active management. Diversity of thought facilitated by an inclusive culture will allow us to make better decisions and better achieve our purpose. This is why inclusion and diversity are a strategic priority for us and why we are an equal opportunities employer: you are welcome here regardless of your age, disability, gender identity, religious beliefs, sexual orientation, socio-economic background, or any other protected characteristics.

About Us

We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future.

We have around 6,000 people on six continents. And we've been around for over 200 years, but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper.