Join to apply for the Senior Cyber Risk Manager role at EDF (UK).

About The Role

As the Senior Cyber Risk Manager here at EDF, you will be responsible for providing organisational oversight, leadership, and delivery of risk management across EDF Business Units together with producing the aggregated EDF UK holistic risk management position.

What You’ll Be Doing

• Identify and oversee the mitigation of cyber risks owned by the central Enterprise Information Security team – involving identifying, managing, mitigating and reporting cyber‑related risks.
• Develop and manage the organisational Cyber Risk Management Framework including related processes aligned with industry best practices and organisational capabilities.
• Develop risk management‑related policies and ensure alignment of the policy with regulation and wider EDF UK business policies.
• Oversee and govern organisational risk management, ensuring effective and comprehensive risk oversight, and that Risk Owners are actively managing and remediating their risks.
• Monitor the efficiency and effectiveness of the risk management processes across EDF UK and make recommendations for continuous improvement and incorporate emerging risks such as those related to AI systems and other disruptive technologies.
• Actively communicate the cyber risk position to stakeholders, attend senior risk forums, and provide advice to address cybersecurity risk; foster strong relationships with internal stakeholders, acting as an advocate to ensure cyber risk considerations are integrated into all business processes.
• Build, maintain and manage risk tooling, currently ServiceNow Integrated Risk Management to facilitate active risk management, supporting an up‑to‑date central risk register; be accountable for ensuring continuous review and reporting to senior leaders so that cyber risks are understood and managed.
• Work with the Assurance team to keep the Enterprise ISMS current and effective, ensure cyber security controls are defined and deployed, capture and report exceptions and control gaps.

You Will

• Own the delivery of the EDF Enterprise risk position, drive risk management operational practices and embed a proactive risk culture in central and business‑unit risk teams.
• Work with and challenge businesses to create and maintain appropriate risk registers.
• Curate the aggregate risk position for the EDF UK business, covering the cyber security top risks and control statements.
• Communicate the aggregated risk position to senior executive stakeholders.
• Lead the Cyber Risk Management Community of Practice to align and share best practice across EDF UK businesses.
• Stay current with emerging cyber threats, risk management techniques, and regulatory changes.

Who You Are

Looking for experience in risk management delivery within a large, complex, and regulated environment; ability to evaluate risk treatment options and ensure decisions align with strategic and business objectives; ability to establish and operationalise risk processes and produce actionable risk reporting. Hands‑on delivery experience in the cyber security field, with practical exposure to implementing and managing technical or procedural controls in operational environments. Confidence in influencing stakeholders, building strong relationships based on trust and credibility. Proven experience working with external partners and ensuring controls are tested and improved in line with standards such as Cyber Essentials+, ISO27001, covering supplier‑related risk and third‑party assurance. Experience identifying, assessing and mitigating cyber risks, strong grasp of CNI or enterprise‑level risk frameworks (ISO 27001/27005, NIST, CAF, Cyber Essentials+) and knowledge of security concepts and controls within IT and OT environments.

Pay, Benefits And Culture

Salary is negotiable based on experience, with potential to earn 10% bonus, 28 days holiday plus bank holidays and a market‑leading pension scheme. Benefits include enhanced parental leave, electric vehicle leasing, health insurance, product discounts, critical illness insurance, technology vouchers, gym membership and season ticket loans. EDF UK embraces flexibility, supporting collaboration, connection and comfort whether in office, on site or remotely. We champion equity, diversity and inclusion, aiming for a balanced workforce with representation from minority ethnic backgrounds, LGBTQ+, disabled individuals and social mobility.

We’re a disability confident employer

We’ll do all we can to help with your application – please let us know if you need reasonable adjustments.

Closing date for applications

16.11.2025

Location

Home working