IT Risk Consultant

IT Risk Consultant

Working hours: This role is available on a part-time, job-share or full-time basis.

Salary: Attractive compensation package depending on experience

Location: Swindon or Fareham, hybrid

Closing date for applications: 5th June 2026

The opportunity

This is an opportunity to join the UK IT and Operations team, reporting to the Head of IT Service Delivery, where you will collaborate with the management team, bursting with ideas on how to move our UK business forward.

You will be asked to drive change and improve on a set of already well-established IT Controls and an IT Risk Management Framework to allow senior IT management, business functions and 3rd party service providers to demonstrate they are managing and safeguarding company assets, data, and operations. Your ideas will be heard.

You will collaborate and influence IT management, the IT Governance and Controls Manager and other governance colleagues to gather data and collate, aggregate and interpret information to provide the Boards of Directors, Business Executives and other interested parties with an assessment of the UK IT Risk and Controls landscape. You will also manage multiple demands for IT risk-based information within Zurich, ensuring all reporting commitments are met. 

You will work alongside local and regional Group IT functions, Service Providers (through internal and external suppliers), and business functions to ensure that Zurich is proactive in the management of IT Operational Risk and Controls.

The role is varied, interesting, and there are genuine opportunities to get stuck in and make a difference

Many of our employees work flexibly in a variety of different ways, including part-time, flexible hours, job share, an element of working from home or compressed hours. This is because we want the best people for our roles, and we recognise that sometimes those people aren’t available full-time. Please talk to us at the interview about the flexibility you may need.

What will you be doing?

• Perform regular and ad hoc risk reporting for Boards of Directors, Business Executives and other interested parties
• Shape, influence and deliver IT risk and control assurance activity for both external IT Service providers and Group, working with senior level representatives from all areas.
• Drive, facilitate and participate in regular IT risk assessment initiatives, including the quarterly cyber risk and control assessment, the annual IT operational resilience assessment and IT supplier risk assessments
• Maintain and operate IT risk and control frameworks that serve as a basis for regulatory compliance, internal control processes and management of IT risks and controls, influencing continuous improvement activity.
• Ensure compliance with IT-related policies and regulatory requirements; develop plan to remediate compliance gaps.
• Maintain a strong network with other governance colleagues, senior stakeholders and major partners across IT and the wider Zurich business.
• Provide regional support and co-ordination for external/internal audit and other assurance processes.
• Manage the activity of the UK Supplier IT Risk and Controls Consultant and the IT Risk Consultant.
  
  

What are we looking for?

• You will ideally have a Risk Management qualification (CIRM, CRISC) or a Professional Security Qualification (CISA, CISM, CISSP) with solid practical experience as an IT Risk Specialist, with a good understanding of common information security management frameworks, such as NIST Cyber Security Framework and International Standards Organization (ISO) 27000.
• You will have great written and verbal communication skills, being able to produce written IT risk reporting on technical issues that requires little re-write, and is clear, concise and meaningful to both IT and non-IT stakeholders. 
• You will have the confidence to take part in and contribute to meetings in an insightful but succinct way and be able to provide expert advice when required.  The ability to understand when to listen, when to question and how to set the scene for and keep the conversation relevant to the issue in hand is a pre-requisite of the role.
• The ability to develop trusted and collaborative working relationships with stakeholders at all levels is a key requirement of the role to enable open and transparent discussions to identify areas of concern.
• Having a pragmatic approach is essential as is understanding the goals and challenges faced by the stakeholders with whom you interact.
• It would be great if you have a good understanding of the UK Financial Services Regulatory environment, and an understanding of IT Supplier contracts would be a real bonus.
  
  

What will you get in return?

Everyone’s different. That’s why at Zurich, we offer a wide range of employee benefits so our people can choose what fits them and their life. Our benefits provide real flexibility so our people can make considered choices and tailor their benefits throughout the year. Our benefits include 12% defined non-contributory pension scheme, annual company bonus, private medical insurance and the option to buy up to an additional 20 days or sell some of your holiday, alongside a range of other flexible benefits

You can find out more about our wide range of employee benefits on our website.

Who we are

At Zurich we aspire to be one of the most responsible and impactful businesses in the world. Together, we’re creating a brighter future for our customers, our people and our planet.

With over 65,000 employees, you’ll feel the support of being part of a strong and stable company that is a long-standing player in the insurance industry.

We’ve made a promise to each other and every employee: to focus on sustainable impact, to care about each other’s wellbeing, to use our diverse expertise to be curious and optimistic and to develop the skills needed for our future.

If you’re interested in working in a dynamic and challenging environment where your creativity, ideas and contributions are recognised and rewarded, Zurich could be just the place for you. Be part of something great.

Our culture

At Zurich, our strength comes from the diverse experiences, perspectives and talents of our people. Our goal is to create a workplace where every employee can flourish and where everyone feels valued, heard and respected.

Over a quarter of our employees are members of at least one of our inclusion communities (Employee Resource Groups), with groups focused on areas such as social mobility and cultural awareness. We’re proud to have received numerous industry awards recognising our diversity and inclusion policies and initiatives.

We’ve created an environment that places real importance on our people’s wellbeing from a physical, mental, social and financial perspective. We work with our wellbeing partners and industry experts to provide practical advice and access to a wide range of lifestyle support, alongside opportunities to learn, grow and develop the skills needed for the future.

We actively support our employees to give back to their communities through volunteering and charitable activity. Our charitable arm, Zurich Community Trust, is one of the longest‑established corporate trusts in the UK. Together, we’ve supported causes across the UK through grants and volunteering, contributing over £100 million in funding and volunteered time.

Your application

We’re committed to treating all applicants fairly and with respect, irrespective of their actual or assumed background, sexual orientation, disability or any other protected characteristic.

As an inclusive employer we also want to ensure that all candidates feel comfortable and are able to perform at their best during the interview. You’ll have the opportunity to let us know of any reasonable adjustment or practical support needed when you apply.

We’d love it if you could submit your application online. If you require an alternative method of applying, please send an email to recruitment@uk.zurich.com

So, make a difference. Be challenged. Be inspired. Be supported. Love what you do. Work for us.