As one of the world’s leading independent global investment firms, Invesco is dedicated to rethinking possibilities for our clients. By delivering the combined power of our distinctive investment management capabilities, we provide a wide range of investment strategies and vehicles to our clients around the world. If you're looking for challenging work, intelligent colleagues, and exposure across a global footprint, come explore your potential at Invesco.
We have an outstanding benefits package which includes:
Company-provided healthcare
A competitive annual leave allowance
Flexible working options, including hybrid working arrangements
Generous pension provisions
Income protection
Health and wellness benefits
Volunteering days
Enhanced parental leave
Life insurance
Your Role:
Lead the technical assessment, architecture, and continuous enhancement of technology risk controls across hybrid and cloud-native environments. Leverage advanced engineering practices, automation, and analytics to proactively identify, quantify, and mitigate risks, embedding a culture of technical excellence and risk accountability.
What you will be doing:
Architect and implement robust technology risk controls, and assessments using advanced engineering techniques, chaos engineering, automated fault injection, adversarial simulations across cloud (AWS, Azure, GCP) and on-premises platforms.
Design and operationalize real-time Key Risk Indicators (KRIs) by integrating telemetry from SIEM (e.g., Splunk, Sentinel), CSPM (e.g., Prisma Cloud, Wiz), EDR, and workload protection platforms. Develop analytics pipelines for early risk detection and automated alerting.
Lead the technical governance of risk remediation, orchestrating automated workflows (e.g., SOAR, IaC-based remediation) to ensure timely, effective, and sustainable outcomes.
Develop and maintain integrated, actionable risk dashboards and reporting using Power BI, custom APIs, and data engineering best practices.
Partner with engineering, DevOps, and SRE teams to embed risk controls into CI/CD pipelines, deliver technical training, and drive adoption of secure-by-design principles.
Build and mentor a community of risk-aware technologists, championing best practices in secure architecture, cloud security, and regulatory compliance automation.
Ensure all technical activities align with Invesco’s Conduct principles and support audit-readiness and regulatory requirements (SOX, DORA, GDPR, EU AI Act).
What you will bring:
Hands on experience in technology architecture, engineering, or cybersecurity within complex, regulated enterprises.
Expertise in designing and implementing controls for hybrid and cloud-native systems (AWS, Azure, GCP).
Deep expertise in risk analytics, SIEM, CSPM, EDR, automation (Python, PowerShell, Terraform), and integration with GRC platforms.
Deep technical knowledge of enterprise systems, cloud platforms, infrastructure, and application architectures.
Proven understanding of risk management frameworks (e.g., NIST, ISO 27005, FAIR) and regulatory requirements (e.g., SOX, DORA, GDPR) preferred
Technology Impacting Regulations such as GDPR, DORA, EU AI Act
Preferred Certifications : TOGAF Enterprise Architect Practitioner, ArchiMate 3 Practitioner, AWS Solution Architect Associate, ITIL 4 Foundation, Artificial Intelligence and Generative AI Professional, CRISC
Excellent communication and stakeholder engagement skills, with the ability to influence across technical and non-technical audiences.
Disability Confident Scheme :
Applicants who opt in to the Disability Confident Scheme and meet the ‘minimum criteria’ for the role will be offered an interview. We are committed to providing an inclusive recruitment process for all candidates who make an application. By opting-in to this scheme, applicants will be disclosing that they have a disability solely for the purpose of the Disability Confident Scheme.
The Disability Confident Scheme only guarantees an interview – it does not automatically mean that applicants interviewed will gain employment with Invesco at that time.
To apply through the Disability Confident Scheme, you’ll need to firstly ensure you have applied for the role via our external careers page. Following this, you’ll need to email us at EMEA-TalentAcquisition@invesco.com confirming your wish to opt-in, alongside your contact details and the title of the role you wish to apply for.
Pursuant to Invesco’s Workplace Policy, employees are expected to comply with the firm’s most current workplace model, which as of October 1, 2025, includes spending at least four full days each week working in an Invesco office. This reflects our belief that spending time together in the office helps us build stronger relationships, collaborate more easily, and support each other’s growth and development.
If this sounds like you, we’d love to hear from you! We want all of our candidates to shine during the application and selection process, so if you need any adjustments to be made, please send an e-mail to emea-talentacquisition@invesco.com. Please include your name, the job you are interested in, and the type of adjustment you need (for example; breaks during your interview, remote interviews, additional time for assessments or other required adjustments)
We promote a working environment that welcomes everyone and creates inclusive teams, celebrates difference and encourages everyone to be themselves at work.
Our commitment to the community and environmental, social and governance investing:
We partner with charitable organisations globally to make an impact in the communities where we live and work. Our people are encouraged to support the charities they feel most passionate about. We are also committed to environmental, social and governance (ESG) investing. We serve our clients in this space as a trusted partner both on specific responsible investment product strategies as well as part of our commitment to deliver a superior investment experience.
Recruitment Agencies:
Invesco has an in-house recruitment team, which focuses on sourcing great candidates directly. Invesco will not accept unsolicited resumes from agency or search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired. When we do use agencies, we have a PSL in place, so please do not contact hiring managers directly.
Regulatory:
This position may fall in-scope of one or multiple regimes/directives.