Cyber Risk Oversight VP

My client, an International Bank, are looking for a Cyber Risk Oversight VP to join their growing team in London. This role will require you to be in the office up to 3 times per week. Unfortunately, no Sponsorship offered in this role.

About the Cyber Risk Oversight Role:

To assist with the development of the firm's Second Line of Defence capabilities (policies, procedures, risks and controls) to manage Information Security and Cyber risk in London and further support across the EMEA region, in line with regulatory requirements, and to support the achievement of the Bank's strategic objectives.

Key Responsibilities

• Assist with the continuous embedding of the Operational Risk framework for the Technology and Cyber risks and controls within the Technology function working in conjunction with the First Line teams and Head Office.
• Monitoring regulatory changes in approach to Technology and Cyber and recommend changes enhancements to the Control framework.
• Support the development and delivery of medium to long term objectives and actions within the framework, including greater oversight and additional testing of the Technology and Cyber Controls and RCSA's.
• Participate actively in the delivery of changes, enhancements and projects in conjunction with the Cyber Security teams.
• Provide robust challenge to the First Line of Defence as they identify, assess, manage and report their risks and issues through various tools and activities including risk and control assessments, key indicators, issue and incident management, and control assurance.
• Deep dive on the Technology and Cyber KPI/KRI's monitoring monthly trends and threats. Provide challenge on a SME level to the 1st line.
• Perform Second Line of Defence activities in the evaluation of risks for new products, systems and material change projects.
• Provide subject matter expertise, and monitor and communicate the risk environment to management, and other key stakeholders effectively.
• When required, supervise junior members of the team in second line oversight, business as usual (BAU) activities and change initiatives.
• Assist in the creation and maintenance of a good 3LoD model and work across the region to promote Technology and Cyber Awareness and 2nd line challenge.

Regulatory compliance, affairs and change

• Comply with and ensure that all staff under your responsibility (where applicable) comply with the entities' policies and procedures as well as all rules, laws and regulatory requirements emanating from any of the regulatory authorities to which the entities are subject.
• Remain up to date with regulatory changes; ensure that changes are well understood and plans are developed for implementation as appropriate.

Work Experience

• Knowledge of banking and securities products and services.
• Excellent knowledge and experience of Information Security, Technology and Cyber risk management and their application within the financial services industry.
• Proven and demonstrable ability to understand, identify, analyse and communicate clearly an organisation's Technology and Cyber risks.
• Proven experience in interpreting, understanding and applying legal/regulatory requirements to technology and cyber security.
• Solid technical and functional knowledge of external regulations, policies and developments for Information Security and Cyber Risk and ability to read across to understand organisational impact.
• Solid technical and functional knowledge of financial services internal rules and policies.
• Good understanding of the overall operational processes and technology challenges within the financial services industry.
• Ability to facilitate smooth communications between London, HO and EMEA offices.

Skills And Experience Functional / Technical Knowledge and Awareness

Cyber and Information Security best practice (including industry frameworks such as NIST and ISO 27001/2)

Cyber Security Risk Assessment and Risk management experience with a focus on;

• Vulnerability Risk
• Cloud Security Risk
• IAM Risk
• Network and System Risk
• Third Party Risk
• Knowledge of Cyber Incident detection, response and remediation best practice
• Understanding of Governance, compliance and audit approaches
• Knowledge of data analysis methods for risk modelling would be advantageous

Education / Qualifications

• Educated to degree level or equivalent industry experience
• CISSP, CISM, or equivalent Information Security certifications are desirable

Personal Requirements

• Strong team player with the ability to collaborate with business stakeholders.
• Clear and concise written and oral communication.
• Ability to translate technical requirements for a general audience.
• Strong analytical skills to evaluate risk, understand and communicate underlying causes.
• Excellent accuracy and attention to detail.
• Good time management and ability to prioritise.
• Strong problem solving and critical thinking skills.
• Japanese language ability advantageous.

If the above role is of interest please apply to this job ad, call me on or email me your CV to

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates.

Job Details

• Contract Type: Permanent
• Specialism: Technology & Digital
• Focus: Information Security
• Industry: Banking
• Salary: £90,000 - £115,000 per annum
• Workplace Type: Hybrid
• Experience Level: Senior Management
• Location: London
• Job Reference: U89T02-176CE54E
• Date posted: 27 February 2026
• Consultant: Darius Goodarzi