IT Governance, Risk

Earlier this year, building on the strong foundation of Copenhagen Infrastructure Partners (CIP) as a fund manager, we introduced an optimized CIP Platform, with three platform companies providing services to CIP. To learn more, please refer to the CIP Platform section below.

In our optimized CIP Platform, CIP Fund Solutions - platform delivery company providing complex fund management and investment services - is currently looking for an IT Governance, Risk & Compliance Manager – Operational Technology, to join our office in Copenhagen, Denmark.

Team

As an IT Governance, Risk & Compliance Manager – Operational Technology, in our IT Security & Risk Management (ITSRM) team, you will become part of IT in CIP Fund Solutions, reporting to the Head of IT Security & Risk Management.

The ITSRM team is essential for protecting CIP's digital infrastructure and promoting operational continuity across our international platform. Further, we are responsible for ensuring our investments assets are protected from cyber threats.

We are facilitating the embedding of cybersecurity requirements into investment cases and contracts, maintaining classification models, and advising projects on cyber-related matters throughout their lifecycle.

As CIP's asset portfolio grows, so does the need for a robust and scalable security operations model. This role is an essential component of our strategic evolution to improve vital operational functions and solidify the support structure within CIP.

Role

As IT Governance, Risk & Compliance Manager – Operational Technology, you will have the responsibility to maintain and refine CIP's cybersecurity standard for investment assets in our renewable energy portfolio.

This role is central in ensuring that cybersecurity requirements are embedded across the lifecycle of our energy investments, including onshore and offshore wind farms, battery storage, Power-to-X, and solar power.

You will act as a trusted advisor to both internal stakeholders and external suppliers, helping to safeguard critical infrastructure and ensure regulatory alignment. You will also be supporting the investment teams during our due diligence and FID (Final Investment Decision) processes.

You will be expected to demonstrate a thorough understanding of relevant regulatory and legal requirements, ensuring that all cybersecurity practices and controls are fully compliant with applicable laws and industry standards across our global asset portfolio.

Responsibilities will consist of but are not limited to:

• Develop, maintain, and implement cybersecurity requirements and classification models for OT assets

• Support investment teams during due diligence and final investment decision (FID) processes by providing tailored cybersecurity guidance

• Support integration of cybersecurity controls and obligations into vendor contracts, including SCADA, turbine, and cabling agreements

• Collaborate with construction managers, asset managers, and operators to ensure compliance with our Cybersecurity Requirements

• Monitor evolving regulatory frameworks and standards (e.g., NIS2, NERC CIP, CER) and ensure alignment across projects

• Facilitate and aggregate cyber risk analyses for currently owned assets.

You

The ideal candidate possesses a Master's degree in Information Technology, IT Security, IT Risk management or in cybersecurity or a closely related discipline, complemented by 4–5 years of experience in cybersecurity GRC. Preferably in OT environments energy infrastructure and in both operational cyber defense and governance, risk, and compliance (GRC) within operational technology environments.

It is essential that you have a solid understanding of regulatory frameworks, as well as demonstrable experience in the implementation of cybersecurity requirements within contractual agreements.

Furthermore, the role requires a combination of technical proficiency and advanced stakeholder management capabilities, with a keen interest in developing scalable and resilient solutions.

We look for the following in a candidate:

• Familiarity with IEC 62443, ISO 27001, NIST CSF, and global regulatory frameworks

• Experience interpreting and applying regulatory and legal requirements in cybersecurity and risk management contexts

• Excellent communication skills and ability to work cross-functionally with investment, legal, and technical teams. You can communicate complex regulatory and legal concepts to technical and non-technical stakeholders

• Experience integrating cybersecurity into vendor and supplier contracts

• Certifications such as CISSP, CISM, ISO27001 Lead implementer or similar.

The process

Please apply online as soon as possible as applications will be processed on an ongoing basis. For questions related to the role, please reach out to our Talent Acquisition team at We do not include CV's and Cover Letters sent by email. 

As we continue to improve our candidate experience, diversity and avoid unconscious bias, please avoid having a photo in your CV. We commit to an inclusive recruitment process and equality for all applicants. 

Please be aware that we will not accept speculative CV submissions for any of our roles from recruitment agencies, and any unsolicited candidate submissions will be exempt from any payment expectations and ownership. 

---

CIP Fund Solutions' commitment to diversity and inclusion 

CIP Fund Solutions is committed to securing a diverse and inclusive work environment where everyone feels respected and heard.  

A diverse workforce allows CIP Fund Solutions to achieve results through different approaches and solutions to task execution and problem solving. We want all our employees to have equal opportunities for personal growth and career opportunities regardless of age, gender, sexual orientation, disability, religion, nationality, or ethnicity. 

CIP Fund Solutions 

CIP Fund Solutions is a service company working exclusively for Copenhagen Infrastructure Partners (CIP). CIP Fund Solutions is owned by the funds managed by CIP with the purpose of delivering best-in-class services to the growing portfolio of renewable assets. 
 
We engage in the energy transition through specialist services, project development and value creation with trusted third-party suppliers. Our core focus is conducting due diligence, development, construction, and operations of renewable assets, and we deliver a variety of services including specialist financial and commercial services, compliance, tax, legal, transaction, IT, People and ESG. 
 
We provide global support and a local presence in our key markets, and our teams are continuously delivering and developing services that are tailored to our wide range of projects – from offshore and onshore wind, solar and battery energy storage systems, to advanced bioenergy assets. For more information, please visit CIP Fund Solutions. 

Optimized CIP Platform 

Earlier this year, we introduced an optimized CIP Platform. With three platform companies providing services to CIP—and while maintaining our current relationship with Copenhagen Offshore Partners (COP), CIP's exclusive offshore wind development partner—we have effectively strengthened our organizational and operational capabilities, creating a platform scaled for growth and designing the CIP blueprint for the future.  

We have established CIP Molecule Technologies, a tech-focused project delivery company dedicated to molecule projects; CIP Terra Technologies, a tech-focused project delivery company managing a diverse portfolio of onshore projects; and CIP Fund Solutions, a delivery company with expertise in complex fund management and investment services. For more info on this, please see: Optimized CIP Platform.