2 of 2 Information Security Jobs in Cambridge

authentic to the original while maintaining "blind" status, I have stripped out the company name and specific brand identifiers (like "Arm’s Information Security Risk Management Framework") and replaced them with high-prestige descriptors that fit a top-tier tech/semiconductor firm. Key Responsibilities: Framework Evolution: Expertly … navigate and enhance our Information Security Risk Management Framework within ServiceNow IRM , applying qualitative and quantitative risk management principles to empower decision-making. Third-Party Risk: Lead third-party cyber risk management by conducting structured assessments, reviewing contracts, and overseeing ongoing supplier monitoring. Post-Incident Leadership: Run post ...

Party We are partnered with a world leading semiconductor company in the UK looking to bring on a GRC Risk Manager for their Enterprise Security team. This is a contract engagement, inside IR35, based out of their Cambridge offices (hybrid working). Key Responsibilities: Enhance the Information Security … root causes and ensure systemic lessons are integrated into the control environment. Develop KRIs (Key Risk Indicators) and KCIs (Key Control Indicators) to measure security control effectiveness across critical assets. Partner with engineering and business leads to ensure accountability for remediation and increase risk visibility at speed. Key Requirements ...