Information Security GRC Risk Manager

Join our team at the Guardian and be a part of a diverse and inclusive global organisation that delivers fearless, investigative journalism, and holds power to account. Our team of award-winning journalists, cutting-edge commercial professionals, and industry-leading digital experts are committed to making a difference and represent a wide range of backgrounds and perspectives. We offer a challenging and exciting environment for career development, with a focus on training, growth and fostering an inclusive culture. We are now looking for an Information Security GRC Risk Manager to join the Group Technology and Data team. You''ll support the Information Security (InfoSec) GRC Lead to deliver effective risk management, ensuring risks are consistently identified, assessed and managed and that appropriate governance, including policies and standards, supports effective risk mitigation across the organisation. You''ll act as a key driver between InfoSec and the wider business, providing oversight and challenge to ensure risks are appropriately managed. About the role: Own and operate the Information Security risk management framework, ensuring alignment with enterprise risk management (ERM) practices Identify and manage emerging risks, including those associated with AI/ML systems (e.g. bias, privacy, security, and model integrity) Own and deliver risk reporting to senior stakeholders and governance forums, providing clear visibility of risk exposure and remediation progress ..... full job details .....