First Quantum Minerals

About the Company

First Quantum Minerals Ltd. is a global mining company producing copper and nickel, as well as gold and cobalt. Our growing portfolio of operations and projects spans four continents and employs around 20,000 people. We are well-known for our ‘can do’ attitude and specialist technical, project management, engineering, construction and operational skills, which allow us to develop and successfully run complex mines and minerals processing plants. We strive to go beyond the goals set by other companies. After 25 years of operations we are now one of the world’s top 10 copper producers and we focus on providing a tangible benefit from everything we do for employees, investors and the many communities that host our operations. From our initial operation reprocessing tailings facilities in Zambia, to the recently completed giant Cobre Panama operation, we have recorded many significant commercial and technical achievements over the past two decades. By 2021, the combined output of our mines will be more than 800,000 tonnes of copper per year.

Listed Jobs

Company Name

First Quantum Minerals

Job Title

Lead, Group IT Technology Risk

Job Description

**Job Title:** Lead, Group IT Technology Risk **Role Summary** Responsible for managing Technology Risk across the enterprise, ensuring robust governance, compliance, and resilience aligned with Group Information Security objectives. Partners with business units and leadership to integrate risk management into strategic decision-making. **Expectations** - Develop and maintain a Group IT Technology Risk Management Framework aligned with standards and regulations. - Lead enterprise-wide risk assessments, threat modeling, and scenario planning. - Ensure adherence to cybersecurity regulations across global jurisdictions. - Deliver regular risk posture reports to executive leadership. - Collaborate with IT, OT, Legal, and Compliance teams to embed risk management practices. - Drive security awareness campaigns, including phishing simulations. - Support incident response planning and continuous improvement of risk frameworks. **Key Responsibilities** 1. **Risk Framework Development:** Define and implement IT/OT/digital risk controls, aligned with Group standards. 2. **Risk Assessment & Reporting:** Own risk identification, assessment, and mitigation strategies; maintain risk registers and escalation protocols. 3. **Regulatory Compliance:** Monitor compliance with cybersecurity regulations; prepare audit evidence and remediation plans. 4. **Stakeholder Collaboration:** Partner with business units and technology teams to integrate risk management into operations. 5. **Security Awareness:** Design and execute global awareness programs tailored to roles and threat landscapes. 6. **Incident Planning:** Contribute to risk-based incident response and recovery strategies, incorporating lessons learned. 7. **Continuous Improvement:** Track emerging risks and regulatory changes to evolve risk frameworks and security maturity. **Required Skills** - Advanced expertise in IT/OT risk management, cybersecurity frameworks (e.g., NIST, ISO 27001), and regulatory compliance. - Proven leadership in cross-functional risk governance, stakeholder collaboration, and strategic risk alignment. - Strong analytical skills for threat modeling, risk assessment, and remediation planning. - Proficiency in security awareness program design, phishing simulations, and compliance metrics reporting. - Crisis management and incident response experience. **Required Education & Certifications** - Bachelor’s or Master’s degree in Information Technology, Cybersecurity, or related field. - Certifications: CISSP, CISA, CRISC, or equivalent; CISM preferred. - Minimum 7–10 years of IT risk or cybersecurity experience, including cross-functional leadership roles.

London, United kingdom

On site

Senior

18-01-2026