Cyber Risk Manager, Active Security Clearance Required

Solirius Consulting

Cyber Risk Manager supporting major public sector clients in cyber risk management practices. Leading assessments and improving cyber risk governance processes in local government.

Posted 6/10/2026full-timeLondon • 🇬🇧 United KingdomMid-LevelSeniorWebsite

About the role

Key responsibilities & impact

Work closely with client stakeholders to identify, assess, manage, and communicate cyber risks across a variety of programmes and operational environments.
Act as a trusted advisor to help organisations establish effective cyber risk management practices, improve governance processes, and implement proportionate controls aligned to their risk appetite.
Support the continued evolution of Local Digital Cyber Risk capability, helping to mature reporting processes, strengthen risk insights, and enhance the use of the NCSC Cyber Assessment Framework (CAF).
Lead cyber risk activities, supporting and developing colleagues, fostering best practice, and ensuring clients remain resilient against an evolving threat landscape.

Requirements

What you’ll need

Leading and facilitating cyber risk assessments across programmes, projects, and operational environments.
Supporting and maintaining the Cyber Risk reporting process for the Local Government sector, ensuring timely and accurate reporting of cyber risks and emerging trends.
Supporting the continued development and maturity of the Local Digital Cyber Risk function through the enhancement of metrics, reporting frameworks, and governance structures.
Analysing NCSC Cyber Assessment Framework (CAF) returns to identify themes, trends, and actionable risk insights that inform decision-making and prioritisation.
Planning and executing assessments to determine the cyber risk levels associated with strategic departmental goals, programmes, and initiatives.
Providing a cyber risk perspective on the development, refinement, and implementation of the CAF process to ensure it remains effective and aligned to organisational objectives.
Directly engaging with councils, when required, to validate risk profiles, understand local challenges, and provide pragmatic risk-based guidance.
Developing and maintaining cyber risk registers, ensuring risks are appropriately documented, prioritised, assigned, and managed through to resolution.
Assessing the effectiveness of security controls and recommending proportionate improvements to reduce risk exposure.
Producing high-quality risk reports, dashboards, and presentations for senior stakeholders and governance forums.
Providing risk-based guidance to technical and business teams throughout project lifecycles.
Conducting third-party and supplier cyber risk assessments where appropriate.
Supporting internal and external audits, assurance reviews, and regulatory activities.
Monitoring emerging threats and vulnerabilities to assess potential impacts to client environments.
Promoting cyber risk awareness and embedding a positive security culture across client organisations.

Benefits

Comp & perks

Competitive Salary
Bonus Scheme
Private Healthcare Insurance
25 Days Annual Leave + Bank Holidays
Up to 10 days allocated for development training per year
Enhanced Parental Leave
Paid Fertility Leave (5 Days)
Statutory & Contributory Pension
EAP with Help@Hand
Gym Membership Benefits
Cycle to Work and Electric Vehicle Schemes
Flexible Working
Annual Away Days/Company Socials

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cyber risk assessmentcyber risk managementNCSC Cyber Assessment Frameworkrisk reportingrisk analysissecurity controls assessmentrisk register developmentthird-party risk assessmentaudit supportemerging threats monitoring

Soft Skills

stakeholder communicationtrusted advisorleadershipcollaborationproblem-solvingguidance provisionreportingpresentation skillsrisk awareness promotionculture embedding