Cyber Security Governance, Risk & Compliance

Cyber Security Governance, Risk & Compliance

Location: Warton, Preston (3 days per week onsite)

Duration: 12 Months

Rate: £64.09 per hour, Umbrella

Clearance: Active SC Clearance required prior to start, candidates must also be SOLE BRITISH CITIZENS due to UK Eyes Only restrictions

We are supporting a leading Defence organisation in the recruitment of a Cyber Security Governance, Risk & Compliance professional to join an established Cyber Security function.

This role will focus on the coordination and delivery of cyber governance, risk and compliance activities across a complex enterprise environment. Working closely with Cyber Security Analysts, technical teams and business stakeholders, you will support the development, implementation and continuous improvement of governance processes, risk management activities and assurance services.

Key Responsibilities

• Support the delivery and continuous improvement of cyber governance, risk and compliance activities.
• Coordinate cyber risk management and assessment activities across projects and services.
• Support the development and maintenance of policies, processes, standards and governance documentation.
• Review, analyse and report on cyber risk, compliance metrics and assurance activities.
• Work closely with Cyber Security Analysts and wider stakeholders to ensure governance processes are followed effectively.
• Support the identification, assessment and management of cyber security risks.
• Contribute to the development of risk treatment plans and mitigation activities.
• Support audits, reviews and continuous improvement initiatives across the cyber function.
• Engage with technical and non-technical stakeholders to provide governance and risk guidance.

Essential Experience

• Experience within Cyber Security Governance, Risk, Compliance, Information Assurance or Security Assurance environments.
• Experience supporting or managing cyber risk assessment and risk management activities.
• Knowledge of governance frameworks, security controls and compliance processes.
• Experience working with recognised security frameworks such as ISO27001 and/or NIST 800-53.
• Experience producing governance documentation, reports, metrics or risk-related outputs.
• Strong stakeholder engagement and communication skills.

Desirable Experience

• Defence, Government or highly regulated industry experience.
• Experience supporting governance forums, risk reviews or assurance activities.
• Knowledge of Secure by Design principles.
• Experience maintaining risk registers, control frameworks or compliance reporting.
• Operational Technology exposure.