IT Governance Risk & Compliance Lead
Date: 27 Feb 2026
Location: Birmingham, GB Leeds, GB
Company: Eversheds Sutherland
We are Eversheds Sutherland, a global law firm, with more than 5,000 people across over 30 countries. We’re full-service with deep niche and sector experience. Whatever challenge, wherever in the world, we’re equipped and ready to meet it. We live our values, we’re purposeful and purpose-led. So although the world is fast-moving and rapidly changing, we see it as a place where everyone can thrive. We’re ambitious for our clients, our communities – and for you. Whether you’re starting out on your career or well established, whether you’re a lawyer or in business services. If you’re looking for what’s next, we are too.
What to expect
For business professionals, our environment is highly collaborative with value being placed on diversity of ideas, skills and mindsets. Not least yours. It’s energetic, fast-moving and there’s always something new to get involved in. You will get exposure across geographies and the firm as a whole.
The future is a place of opportunity. Focusing on your success and for what’s next, will ensure you thrive too.
About the Role
This role will report directly to the Head of Cyber Security and will play a central part in partnering with IT and Business Leadership to manage client assurance reviews, strengthen compliance frameworks, and drive continuous improvement across our technology landscape.
Key Responsibilities
- Establish and maintain cyber security controls, policies and awareness training
- Implementation of a Cyber Security Awareness programme Worldwide to all employees
- Lead and manage the Information Risk Assessment Methodology and associated governance
- Leading the Firm’s professional response to internal and external audits and reviews
- Establish, monitor, evaluate, report in a professional manner; clearly highlighting the current state of Cyber Security and Compliance Risks to the Executive committee
- Continuous improvement of the IT control environment
- Maintain compliance to ISO27001+ and NIST
- Responsible for ensuring engagement of key stakeholders and helping them define the risk appetite of the firm
- Provide input, and direction, to the Cyber Security strategy
- Research and study advancements in educational technologies and threat horizons
- Drive cultural change to ensure that IT security is a key consideration for new systems and processes
Skills & Experience
- Extensive experience in leading Risk Management
- Expert understanding of Cyber Risk and business impact
- Proven ability to implement key Information Security and Compliance programmes
- Excellent Governance, Risk and Compliance skill set
- You will be a proven strong communicator who works in a highly professional manner to ensure appropriate business representation to demonstrate effective standards
- Effective utilisation, and management, of external suppliers
- Effective team leadership and coaching skills
- Able to react quickly, decisively and professionally
Key Attributes
- Effective leadership, interpersonal and communication skills
- Naturally curious, with a tenacity to mitigate incidents
- A passion for continuous improvement
- Engaging personality that can translate complex topics into real business decisions
- Professional, innovative and collaborative style of working
What’s in it for you?
At Eversheds Sutherland, we provide benefits focused on looking after you: your development, your performance, your financial future and your health, as well as providing the opportunity to make a contribution to the world.
- We’re fair, transparent and equitable
- We share in the success of the firm, reward alignment to our values, going above and beyond and your individual performance
- We support flexible ways of working through our remote working policy and commitment to flexible, agile and hybrid ways of working
- We support your health and performance through our dental, healthcare and wellness support
- We support everything you are and all you bring through our powerful commitment to diversity and inclusion
- We provide a platform for your career, whatever your ambitions through our structured professional and personal training, mentoring and development programs
- We provide experience and opportunity through international and cross-function exposure
- We provide an opportunity to give back through our pro bono work and community engagement
- We help you plan ahead through retirement planning, insurance and assurance
Diversity & Inclusion
At Eversheds Sutherland, “Inclusive” is a core business value. We bring together different skillsets, global mindsets and approaches. We foster diversity of thought and the freedom to put ideas into action. We have an inherent respect for the individual. We have a strong belief in collaboration and teamwork. Sharing ideas, asking questions, solving challenges and meeting our clients’ goals: together.
We want all our people to thrive at work and reach their full potential and we work hard to continue to build a diverse and inclusive culture, monitor and report on our progress and impact, and develop our approach. This is reflected in our policies, systems and processes, and in our work with diversity membership organisations.
Many of our people work flexibly in some way and we are open to considering how we can accommodate flexible working arrangements alongside role requirements. If this is important to you, please talk to us about it during the recruitment process.
We want you to perform at your best during our recruitment process. If there is any adjustment or support you need, please contact us so we can discuss how we can best assist you.
For you,
For your success.
And what's next.
#LI-NA1