Technology Risk & Controls Advisory - Experienced Consultant

London, United Kingdom


Discover Wavestone : we are a new consulting firm providing customized solutions designed to steer our clients in making their most strategic decisions.

View company page

Company Description

Wavestone is a leading global transformation consulting firm known for navigating critical challenges and driving sustainable growth. We aim to deliver lasting change that positively impacts customers, communities, and society. Our journey is defined by a true team spirit, where support, encouragement, and motivation are the keystones of our collaborative environment. 

By joining forces with Q_PERIOR (a consulting leader in the Germany-Switzerland-Austria region) in 2023, we aim to be the most trusted partner to our clients for their critical transformations. Drawing on more than 5,500 employees across Europe, North America, and Asia, we seamlessly combine first-class sector expertise with a 360° transformation portfolio of high-value consulting services. 

Wavestone UK now boasts a team of over 200 employees, with ambitions to rapidly grow in the coming years. Our services span cybersecurity, business and digital transformation, operational improvement, and IT consulting. We exist to provide end-to-end expert advice to clients across industries, with a particular focus on Financial Services and Life Sciences helping them to positively transform to become modern, innovative organizations that thrive in a sustainable way. 

Our commitment to excellence is underscored by recognition we have received in the UK’s Great Places to Work accreditation process and we are proudly ranked in the Forbes World's Best Management Consulting Firms 2023 List. 

Dedicated to diversity and inclusivity, Wavestone fosters a collaborative and dynamic work environment. Our core values—integrity, client-centricity, teamwork, and innovation—shape the foundation of our corporate culture.  

Join us for a rewarding career in management consulting, offering competitive compensation, continuous learning, and ample opportunities for professional growth.  

For more information, visit and become part of our journey to shape a positive and impactful future. 

Job Description

Our Technology Advisory practice is growing and we are seeking individuals with experience within Technology Risk & Controls Advisory. We are currently working with the world’s leading financial services firms and helping to design and transform IT Risk & Controls operating models and underlying processes to enable our clients to manage their operational risks in an increasingly changing environment.

We are looking for Senior consultants who have a proven background providing technology risk consulting in a external client-facing role.

During your work, you will assume project-critical responsibilities, develop strategic recommendations and guidance, and ensure the highest quality service for our clients. You will have opportunities to develop industry-relevant thought leadership, participate in business development activities, present material to management teams, mentor junior team members and ultimately make your mark on the client and on the Wavestone practice.


To be considered for this role:

  • Ability to demonstrate autonomy, high-quality deliverables, strong attention to detail and great communication skills
  • For the more senior roles, experience leading and managing junior team members; and exposure to business development
  • Proactive, passionate and team-minded individual who wants to participate in shaping the future of the business by getting involved in business development, marketing, training and other internal activities
  • Working knowledge of risk management across banking, insurance, and asset management including strong understanding of Operational Risk Frameworks & Technology Risk.
  • Risk Strategy and IT Governance experience as well as understanding the practical challenges facing financial services firms within Technology Risk.
  • Definition and execution of Risk Management strategies with a predominant focus on Technology-related risks and emerging technologies
  • Design and implement Technology Risk & Controls operating models to manage and oversee Technology Risk – including capability mapping, governance & organisation design across 3LoD
  • Undertake maturity assessments of Technology Risk Management and Control environments
  • IT Risk framework, policy, and process transformation
  • Design and implementation of end to end Technology risk management processes, systems, and risk-based tooling:
    • Risk Identification and Assessment techniques

    • Risk and Control Self-Assessment (RCSA), Business Impact Assessment, and scenario analysis processes

    • Risk Assurance assessments and guidance

  • Experience in COSO & ISO31000 risk management best practice principles
  • Experience in IT General Controls and IT Governance, ISO27001, and COBIT best practices.
  • Experience in managing day-to-day client projects / engagements, senior stakeholder management, and relationship management.
  • Knowledge and interest in emerging technology and how Technology environments are potentially impacted by emerging risks & regulatory change
  • Working knowledge of GRC systems / platforms (e.g. ServiceNow, Archer, IBM OpenPages et

Additional Information

Our commitment: Wavestone values and Positive Way 

  • Elevate client satisfaction by impacting high-growth business across US, UK, and Europe. Shape culture, enhance value propositions, and foster business development. 

  • Nurture employee growth with Wavestone horizon career path, competitive compensation, transparent salary policy, tailored training, and internal mobility. 

  • Embrace a collective mindset within a barrier-free, collaborative team. Engage in vibrant people culture through regular events, meetings, and committees. 

  • Experience ethical responsibility with flexible work options, strong CSR commitment, and a culture promoting work-life balance and time-off. 


  • 4% company pension, private health and dental cover, life insurance, company share scheme and additional flexible benefits you can select from such as additional holidays, subsidized gym, subscriptions to wellbeing apps or Netflix 

  • 25 days annual leave + 1 week off for your wedding / civil ceremony! 

Travel and Location:

  • Employees are not required to work in a Wavestone office on a full-time basis but are required to live within commuting distance to the office, which is in the heart of the city of London.  

  • Note: Mandatory 2-3 days per week in Wavestone office / client site during probation  

Diversity and Inclusion 
At Wavestone, we celebrate diversity and inclusion. We have a strong global CSR agenda and an active Diversity & Inclusion committee with Gender Equality, LGBTQ+, Disability Inclusion and Anti-Racism networks. 

If you need flexibility, assistance, or an adjustment to our recruitment process due to a disability or impairment, you may reach out to us to discuss this. 

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Banking COBIT Governance ISO 27001 Risk management Strategy

Perks/benefits: Career development Competitive pay Equity Fitness / gym Flex hours Flex vacation Health care Insurance Startup environment Team events

Region: Europe
Country: United Kingdom
Job stats:  7  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.