Cyber Security Auditor / Information Security Auditor

Cyber Security Auditor / Information Security Auditor - £500 per day - Inside IR35 - Hybrid working from Gloucester - 6 months initial contract - Priority will be given to candidates with active or recently lapsed SC clearance. Applicants must be eligible to obtain SC clearance. 

Our client, one of the biggest producers of ZERO CARBON energy in the UK, is seeking a highly skilled Cyber Security Auditor / Information Security Auditor to join their Nuclear Services Information Security team. This role is critical in supporting the company's information security objectives, ensuring regulatory compliance, and managing the security risks associated with third-party access to sensitive nuclear information.

You will play a central role in delivering assurance activities, performing audits, and providing expert guidance to internal teams and external partners. This position requires strong attention to detail, excellent communication skills, and the ability to navigate complex security frameworks in a regulated environment.

Key Responsibilities:

  • Promote information security policies and practices across staff, contractors, and third parties to maintain regulatory compliance and foster an informed workforce.
  • Act as a Subject Matter Expert to ensure robust cyber security measures are integrated into third-party agreements.
  • Conduct thorough third-party cyber security assessments during onboarding and renewals, identifying risks accurately and consistently.
  • Produce reports and dashboards to support informed decision-making.
  • Lead initiatives to implement automation and tools that enhance efficiency.
  • Investigate, coordinate, and report security findings, ensuring effective follow-up and resolution.
  • Support the development of strategies to mitigate information security risks and maintain accredited systems.
  • Maintain up-to-date awareness of security threats and technologies to guide appropriate controls.
  • Perform formal information security audits and review systems and networks for potential vulnerabilities.


What We're Looking For:

  • Good working knowledge of international standards and frameworks (ISO27001, ISO27017, GDPR, Cyber Essentials Plus).
  • Experience in auditing or assurance activities within regulated sectors.
  • Familiarity with HMG Security Policy Framework and NCSC/CPNI guidance.
  • Understanding of information security threats, risks, and risk assessment methodologies (ISO27005, NIST, IRAM2).
  • Excellent written and oral communication skills, with the ability to translate complex findings to non-security audiences.
  • Strong problem-solving skills, tenacity, and a willingness to learn and develop professionally.

Key Competencies:

  • Championing Change & Improvement
  • Managing Relationships
  • Communicating with Influence
  • Role Modelling the Way
  • Emotional Resilience


Additional Information:

This role will involve national travel (UK only).

If you are passionate about cyber security, thrive in a regulated environment, and want to contribute to the safe management of critical nuclear information, we want to hear from you.

Apply Now
Apply Now

Job Details

Company
Morson Edge
Location
Gloucester, Gloucestershire, United Kingdom
Hybrid / Remote Options
Employment Type
Contract
Salary
£450/day
Posted