Senior Principal Consultant - Operational Resilience & Cyber Risk

Role Overview Position: Senior Principal Consultant - Operational Resilience & Cyber Risk Location: London (Hybrid) Practice Area: Finance, Risk, Regulatory & Financial Crime Type: Permanent About the Role Capco seeks experienced Principal Consultants with expertise in Operational Resilience and Cyber Risk to strengthen the Financial Services Risk and Regulatory Framework (FRRF) practice. This senior leadership role involves guiding complex client projects across financial services and energy, with a focus on regulatory frameworks such as PRA and DORA. The position offers the chance to shape resilience strategies, influence client direction, and support transformation initiatives that drive growth. What You Will Do Lead operational resilience assessments, scenario testing, and the rollout of control programs. Advise clients on regulatory compliance, particularly around PRA, DORA, and related resilience frameworks. Oversee evaluations of cyber risk, third-party risk, and vendor resilience to uncover and address vulnerabilities. Develop governance structures, dashboards, and reporting approaches for senior management audiences. Direct cyber and technology resilience transformation projects, focusing on tool upgrades and control improvements.

About the Role Capco seeks an Operational Resilience & Cyber Risk Consultant to support clients in the financial services and energy sectors. This role focuses on helping organizations meet regulatory requirements such as PRA and DORA, while strengthening their resilience frameworks and closing exposure gaps. What You Will Do Conduct operational resilience assessments and scenario testing, then implement controls based on findings. Guide clients toward regulatory readiness for frameworks including PRA and DORA. Analyze cyber risk posture, assess third-party exposures, and address vendor resilience concerns. Develop governance models, dashboards, and reporting processes to monitor resilience efforts. Lead the implementation of tooling and support technology transformations that enhance cyber and operational resilience. Location This position is based in London, UK.

Role Overview Capco is hiring a Principal Consultant for Cyber & Operational Resilience in London (hybrid). This permanent position sits within the Finance, Risk, Regulatory & Financial Crime practice area. The role focuses on strengthening cyber and operational resilience for financial services clients, working closely with senior stakeholders to design and implement effective strategies that meet regulatory standards. Main Responsibilities Lead programs that transform cyber and operational resilience, ensuring compliance with frameworks such as PRA and DORA. Assess and enhance existing cyber resilience frameworks, controls, and operational models. Perform third-party and vendor risk assessments to uncover vulnerabilities in supply chains and technology environments. Create and deliver governance frameworks for resilience, including scenario testing and reporting (such as IBS/ITOL). Partner with technology teams to improve cyber tooling, cloud security, and related controls. What Capco Looks For Background in cyber risk management and operational resilience. Solid understanding of regulatory requirements and frameworks in financial services. Strong stakeholder management and communication abilities. Comfort working collaboratively in a hybrid (onsite and remote) setting.

Role Overview Capco is hiring a Managing Principal (Director) for Cyber & Operational Resilience in London. This permanent position sits within the Finance, Risk, Regulatory & Financial Crime practice. Work is hybrid, with time split between the London office and remote. What You Will Do Lead major cyber and operational resilience transformation projects for financial services clients. Act as a strategic advisor, helping clients shape and refine their resilience strategies. Oversee the delivery of complex programs, ensuring solutions are comprehensive and effective. Collaborate closely with senior stakeholders at leading financial institutions. Drive growth and capability within Capco’s Risk practice. Location and Practice Area Location: London (Hybrid) Practice Area: Finance, Risk, Regulatory & Financial Crime Type: Permanent

Methods is a leading IT Services Consultancy with a revenue exceeding £100M, dedicated to transforming the public sector in the UK. With over 30 years of experience, we partner with various central government departments and agencies to enhance operational efficiency and effectiveness.Our unique approach combines technology, data, and a human touch, which distinguishes us from other consultancies, system integrators, and software houses. We are committed to delivering sustainable and impactful solutions for our clients, staff, communities, and the environment.At Methods, we cultivate a collaborative atmosphere that fosters skill-sharing and problem-solving while enjoying our work. We embrace challenges, learn from our experiences, and strive for excellence.While primarily serving the public sector, we are actively expanding our portfolio to include significant private sector clients. Methods became part of the Alten Group in early 2022.Role Overview: As a prominent digital transformation consultancy, Methods collaborates with public and private organizations to provide innovative and secure solutions. Our focus on governance, risk, and compliance (GRC) empowers businesses to navigate intricate security landscapes while maintaining regulatory and operational resilience.We are currently looking for a Principal Cyber Security Risk & Audit Consultant to join our dynamic team. This position is perfect for a professional with extensive expertise in cyber security, risk management, and internal audit. Candidates should possess experience in both public and private sectors, ideally with a background in management consultancy. Strong leadership and team-building skills are highly preferred.

Due to our ongoing expansion, Control Risks is excited to announce an opportunity for a dynamic and experienced Senior Consultant to join our esteemed Digital Risks Protect Advisory team in London. This is a rare chance for a dedicated, client-oriented professional to contribute to a successful team renowned for its expertise in cyber security. In this role, you will spearhead cyber security risk assessment projects primarily across the EMEA region and serve as a trusted subject matter expert in the realm of cyber security risk assessments. We are looking for candidates who can showcase their extensive experience in delivering cyber security evaluations and who possess the ability to engage effectively with senior client stakeholders. A collaborative mindset and a passion for providing high-quality cyber security guidance to some of the world's largest organizations are essential.This position entails a hybrid working model, requiring at least three days per week in our London office, along with the flexibility to travel up to 50% of the time, occasionally over weekends. Travel will mainly focus on destinations within Europe, with potential trips to Africa and beyond. This role is well-suited for individuals with a strong background in cyber security assurance and advisory functions, along with a deep understanding of the cyber security challenges faced by our clients.

We are seeking a highly skilled and experienced Technology Risk & Resilience Manager to become a vital part of our second line risk team in London, United Kingdom or Dublin, Ireland. In this crucial position, your responsibilities will include:Providing independent second line oversight and constructive challenge regarding Technology Risk (Information Technology and Information Security) throughout the organization, ensuring that technology risk is effectively integrated into our comprehensive second line Risk Management Framework, in alignment with DORA, third-party risk, and service resilience expectations.While this role will not own or operate technology risk controls, you will be responsible for evaluating, challenging, and providing assurance regarding the identification, management, and reporting of technology risks by the first line.Key ResponsibilitiesSecond Line Oversight & Framework IntegrationEstablish and integrate Technology Risk (IT & Information Security) within the Operational Risk Taxonomy and Framework, ensuring a clear, documented distinction between 1LOD and 2LOD accountability in accordance with the company’s governance models.Deliver independent second line oversight of the Technology Risk Management Framework, evaluating its alignment and interdependencies with first-line control frameworks (e.g., Third-Party Risk Management, IT Controls, Cybersecurity) and ensuring consistency with second line Operational Risk and Resilience frameworks.Facilitate the development of a consistent service-based perspective on technology risk by scrutinizing 1LOD mappings of applications, infrastructure, and third-party ICT services related to internal and client-facing business services.Risk Identification, Assessment & ChallengeReview and critically assess first line identification and evaluation of technology risks, including (i) application risk, (ii) infrastructure dependencies, (iii) information security risks, and (iv) third-party technology dependencies, ensuring alignment with the company’s risk taxonomy and regulatory standards.Evaluate the quality, completeness, and consistency of Technology Risk Registers, control inventories, incident remediation efforts, and impact analyses.Provide credible second line challenges when risk assessments, severity ratings, or residual risk conclusions lack adequate support.Operational ResiliencePromote the integration of technology risk into the firm’s Operational Risk & Resilience frameworks, ensuring compliance with regulatory/jurisdictional frameworks, including:i) Mapping technology dependencies to critical business servicesii) Assessing ICT/technology-related incidents and materiality thresholdsiii) Collaborating on incident classification and escalation decisions with reporting standards to ensure that both technical and operational impacts are appropriately evaluated and documented in associated incident reporting systems.Provide second line assurance and guidance...

Role Overview Capco is hiring a Principal Consultant focused on Non-Financial and Operational Risk. This permanent position is based in London with a hybrid work arrangement. The role sits within the Finance, Risk, Regulatory & Financial Crime practice. What You Will Do Lead large-scale risk transformation programs, covering enterprise and operational risk areas. Oversee trade surveillance and market abuse frameworks, refining detection scenarios and controls for better outcomes. Advise clients on regulatory requirements and help design practical, strategic solutions. Apply and supervise AI and model tuning methods to strengthen risk monitoring and minimize false positives. Build and sustain relationships with senior stakeholders, acting as a trusted advisor to client leadership teams. Location and Employment Details Location: London (hybrid) Practice area: Finance, Risk, Regulatory & Financial Crime Employment type: Permanent

Genius Sports merges technology and live data to transform how fans engage with sports worldwide. The company’s mission is to create interactive, personalized experiences that keep audiences involved. Learn more at geniussports.com. Role Overview The Cyber Risk Manager strengthens Genius Sports’ ability to identify, assess, and manage cyber risks throughout the organization. This role sits within the Information Security division and reports directly to the VP of Cyber Security. Collaboration with the GRC Manager is central, with a focus that extends beyond compliance to address security risk as a business issue. This position guides the development of frameworks and practices that help teams make smart, risk-aware decisions every day. The Cyber Risk Manager translates the shifting threat landscape into clear risk assessments, ensures consistent risk treatment and accountability, and builds a scalable risk management capability as Genius Sports continues to grow. Key Responsibilities Establish and manage the cyber risk program, ensuring it adapts to organizational growth and changing threats. Develop and maintain frameworks for identifying and assessing cyber risks across all business units. Promote a culture of risk awareness, empowering teams to make informed decisions related to cybersecurity. Work closely with the GRC Manager, focusing on security risk as a business challenge rather than solely a technical or compliance matter. Translate complex threats into actionable risk assessments for stakeholders at all levels. Drive consistent risk treatment and accountability throughout the organization. Location This position is based in London, England, United Kingdom.

About BaringaBaringa is a leading global consulting firm dedicated to partnering with organizations to drive transformative change and create substantial value. With extensive industry expertise and cutting-edge technology, we empower our clients to achieve their goals with unmatched confidence. With a diverse team of over 2,000 professionals across the UK, Europe, North America, Asia, and Australia, we blend global insights with local knowledge.Our expertise spans a range of sectors including energy and resources, financial services, public sector, consumer products and retail, pharmaceuticals, life sciences, manufacturing, and technology. We focus on strategy, transformation, and operational excellence, all underpinned by advanced technology, data analytics, AI, and digital innovation.Our clients appreciate Baringa's collaborative ethos and the seamless integration of our teams, all driven by a shared commitment to their success. Known for our kind and inquisitive experts, we listen intently and care deeply about our clients’ outcomes, assisting them in transforming energy markets, modernizing financial platforms, expanding telecom networks through advanced analytics, enabling digital services within government, and fostering growth in consumer sectors.A certified "Great Place to Work" globally, Baringa has earned recognition from the Financial Times across 22 categories in its UK Leading Management Consultants rankings and has been named one of the World’s Best Management Consulting Firms by Forbes for four consecutive years.Join Our Risk & Compliance TeamWe are actively seeking a seasoned Consultant/Senior Consultant to enhance our Risk Advisory practice. Our mission is to build a modern Risk Advisory capability that transforms risk functions into strategic assets rather than mere cost centers. Our projects encompass redesigning operating models, modernizing risk frameworks, automating risk processes, fostering cultural change, and enabling AI-driven insights throughout risk lifecycles.

Role overview This Senior Project Manager position at Turner Townsend focuses on projects that address flood risk management and environmental resilience. Based in London, the role involves leading initiatives that improve environmental infrastructure and help protect communities and ecosystems. The work emphasizes practical and sustainable solutions for both safety and environmental protection. Main responsibilities Lead and oversee projects from initial planning through to delivery, meeting objectives for flood risk reduction and environmental resilience. Coordinate efforts with government agencies, environmental organizations, and private sector partners. Track project progress, manage budgets, and maintain quality standards at every stage. Mentor junior colleagues and support their professional development. Support Turner Townsend’s focus on environmental stewardship and sustainable project results. Requirements Demonstrated experience managing projects in flood risk management, environmental resilience, or similar infrastructure areas. Strong skills in stakeholder engagement and relationship building. History of delivering projects on schedule and within budget. Experience mentoring or supporting less experienced team members is valued.

As a seasoned and senior member of the London DFIR team, you will play a crucial role in our broader EMEA practice, contributing to a global network that shapes our forensic investigation and cyber incident response capabilities. The Discovery & Data Insights team serves as the technical consulting hub, allowing you to provide consultative solutions across various workstreams, including forensic investigations, eDiscovery, and data analytics. Our clientele consists of prestigious law firms, Fortune 500 multinational corporations, and various government and law enforcement agencies worldwide.In the capacity of Senior Consultant, you will collaborate closely with teams across different regions and foster constructive relationships with Control Risks’ dedicated Cyber Response practice, as well as the wider Discovery & Data Insights team. Your professional conduct and sound decision-making will build trust and uphold integrity among our clients and colleagues. This role demands technical expertise and acute sensitivity to client needs and expectations. You will utilize your skills and experience to craft innovative solutions and establish agile operational standards, positioning yourself as a recognized subject matter expert in technical consulting services.Your daily responsibilities will include being on-call for urgent matters and supporting crisis management efforts. As the technical lead for engagements, you will ensure quality-driven, responsive forensic incident management while delivering services that meet and exceed client expectations and company standards.

About the Internship Control Risks offers a hands-on internship for university students interested in global risk consultancy. This program focuses on building professional skills and gaining real-world experience in risk management and client service. Interns will work alongside experienced consultants, contributing to projects that reflect actual client challenges. Location London Bridge, London, England, United Kingdom Duration Full-time for 6 months, with the possibility of extension. Application Deadline 1st May, 2026

Role Overview Capco is hiring a Management Consultant focused on Non-Financial and Operational Risk for its Finance, Risk, Regulatory & Financial Crime practice in London. This position involves working with leading financial institutions on projects that drive risk transformation and advisory services. The work centers on strengthening risk frameworks, governance, controls, and surveillance capabilities. What You Will Do Lead transformation projects within enterprise and operational risk functions. Assess, document, and improve risk processes and control measures across both first and second lines of defense. Work on market abuse and trade surveillance initiatives, including evaluating controls and refining detection scenarios. Support the adoption of AI and model tuning to boost surveillance effectiveness and minimize false positives. Collaborate with stakeholders from multiple functions and seniority levels to ensure smooth project execution.

Join our esteemed Digital Forensics and Incident Response team in London as an Associate Consultant or Consultant. In this pivotal role, you will leverage your technical expertise to deliver consultative solutions in Digital Forensics, Incident Response, Cyber Security, and eDiscovery to a diverse clientele that includes Law Firms, Fortune 500 companies, and Government entities. You will act as a technical lead on various cases, collaborating closely with our regional and international Discovery & Data Insights teams (DFIR/Legal Technologies/Data Analytics) as well as our Cyber Response, Crisis Management, and Investigations teams. Additionally, you will play a key role in business development by contributing your subject matter expertise to articles, presentations, and marketing initiatives.Key Responsibilities:Provide expert consultancy and forensic/incident response services, including data collection, investigative analysis, and cyber security solutions for our clients.Support Investigation teams across different regions, ensuring high-quality deliverables are provided efficiently and in a timely manner.Ensure all work adheres to evidential standards and is defensible in legal contexts.Offer expert testimony in court as needed.Innovatively engage in team collaboration and initiate creative solutions to enhance efficiency.Proactively anticipate client needs and drive conversion of inquiries into sales leads and proposals.Actively participate in marketing and business development strategies.Availability for international travel, up to 25% of the time.

As a pivotal member of our team, reporting directly to the Head of Business Resilience, you will assume a critical role in ensuring our adherence to CP 14/0 (Operational Resilience) and the Digital Operational Resilience Act (DORA). Your expertise will be essential in fortifying the firm's operational resilience framework, guaranteeing compliance with regulations, and enhancing our capacity to prevent, respond to, and recover from operational interruptions.

Join Turner & Townsend, a global leader in programme commercial advisory services, as a Consultant, Senior Consultant, or Principal Consultant. In this pivotal role, you will work closely with clients on significant infrastructure projects, delivering value through strategic commercial insights and innovative solutions. Your expertise will help shape our clients’ projects from inception to completion, ensuring optimal outcomes.

Role Overview Capco is hiring a Senior Manager, Financial Risk Transformation Consultant in London (hybrid). This permanent position sits within the Finance, Risk, Regulatory & Financial Crime practice area. What You Will Do Lead complex risk transformation projects for financial services clients Advise senior stakeholders, including Chief Risk Officers, on risk strategy and change Design and deliver large-scale programs across liquidity, credit, market, and model risk functions Shape risk frameworks that may include AI and automation components Who We’re Looking For Extensive experience in financial risk transformation within the financial services sector Strong background in advising senior leaders on risk-related matters Proven ability to manage and deliver multi-disciplinary risk programs Knowledge of current trends in risk management, including technology integration

Join our dynamic Strategy & Risk Advisory team at J.S. Held as a Senior Associate or Managing Consultant. This is an exceptional opportunity for a proactive, entrepreneurial individual with a diverse skill set to contribute to the expansion of our practice within the Global Risk sector.The ideal candidate will possess substantial regional expertise—specifically in the Middle East, Russia/FSU, or Francophone Africa—and have a proven track record in delivering political risk and business intelligence projects.In this pivotal role, you will spearhead projects for clients spanning various jurisdictions, particularly in your area of expertise.Your responsibilities will include managing political risk and business intelligence initiatives, while also enhancing our high-level government engagement efforts both within and outside your region of specialization.Key ResponsibilitiesLead and execute political risk and business intelligence projects, including scoping, analysis, stakeholder mapping, and producing high-quality client reports.Provide expert insights into regional developments (Middle East, Russia/FSU, or Francophone Africa), keeping clients informed of political, regulatory, and commercial changes.Oversee and manage multi-jurisdictional assignments, ensuring adherence to robust methodologies, stringent quality control, and timely project delivery.Enhance and broaden high-level government and stakeholder engagement by leveraging and expanding your professional networks.Serve as a trusted advisor, articulating complex developments clearly and confidentially while offering actionable recommendations.Contribute to business development efforts through proposal writing, thought leadership, and identifying new opportunities for client engagement.Mentor junior team members and assist in the development of analytical standards, best practices, and internal knowledge sharing.Maintain the highest standards of ethical, legal, and compliance practices in all research, reporting, and client interactions.

We invite you to submit speculative applications for potential future openings as a Protective Services Lead. In this pivotal role, you will be tasked with implementing and overseeing a comprehensive protective services program aimed at safeguarding our personnel against heightened security risks on a global scale. You will play a key role in strategic planning, coordination, and execution of enhanced security operations that meet global standards. It is essential that identified risks are mitigated according to our clients’ risk tolerance, with seamless integration into overall business operations through collaborative efforts across various functions.As the lead, you will be responsible for developing the strategy for the client’s Protective Services program, including business planning, governance, assurance, performance management, and cost control. You will also identify and deliver continuous improvement initiatives to bolster global security.Your collaboration with intelligence teams is critical to ensuring that new and emerging threats to the client’s personnel, assets, and reputation are effectively identified, assessed, and monitored continuously.Your duties will include implementing, leading, and documenting global people-specific risk assessments, including conducting thorough threat and vulnerability assessments, providing risk mitigation recommendations, and escalating any non-mitigable high-risk findings.You will support the Global Head of Security by developing and promoting guidelines and standard operating procedures for the new Protective Services program. Additionally, you will coordinate with cross-functional teams, such as crisis management and business resilience, during physical security incidents that may impact core operations, including scenarios involving employee incapacitation, evacuation, or ongoing threats.Ensuring that the technology and processes supporting the Protective Services program (e.g., intelligence monitoring and travel risk information) function efficiently is also part of your role. You will engage with local management and non-security stakeholders (e.g., facilities, HR, legal) to ensure that Protective Services are integrated into core business operations.Delegating specific Protective Services tasks, such as risk assessments or oversight of specific tasks, to local security leads while maintaining responsibility for their quality and alignment with client policies is essential. You will oversee all global Protective Services tasks, ensuring compliance with client policies and procedures throughout the assessment, planning, and implementation phases.Finally, you will establish and nurture collaborative relationships with the client’s executive management team to foster a culture of security awareness and preparedness.