Information Security Risk Manager
Role details
Job location
Tech stack
Job description
Telefónica Tech is looking for an experienced IS Risk Manager to lead and mature the technology risk management function for our key Customer. This is a key role overseeing IT and OT risk across a large, complex digital estate, ensuring alignment with business objectives, regulatory requirements and ongoing transformation programmes., You'll own and drive the Risk Management framework within the IS department, embedding a strong risk culture, improving processes, and ensuring technology risks are effectively identified, assessed, and governed. Working closely with the Group CISO, leadership teams and technical stakeholders, you'll provide expert guidance, steer risk remediation, and ensure consistent governance across the organisation., * Lead and develop the IS/IT/OT Risk Management framework and associated governance.
- Provide expert risk assessment, analysis and guidance across all IS functions.
- Track and report risk metrics, KPIs/KRIs, and progress against remediation plans.
- Drive continual improvement of risk processes, policies and awareness.
- Embed a strong risk culture through training, education, and stakeholder engagement.
- Represent risk at committees and senior governance forums.
- Ensure risks are escalated, managed and aligned with wider enterprise risk activity.
Requirements
- Strong background in IT/IS risk management within complex organisations.
- Knowledge of frameworks such as ISO 31000, ITIL, and structured PM environments (Agile/Prince2).
- Experience developing and implementing Risk Management frameworks and governance.
- Skilled at influencing senior stakeholders and driving risk mitigation.
- Confident communicator able to engage both technical and non-technical audiences.
- Experience in Critical National Infrastructure (Utilities) and OT environments essential
