2 of 2 Permanent Risk Management Jobs in Gloucester

governance and compliance including Certifications such ISO 27001, Cyber Essentials and NIST. You will support the ongoing production and publication of Policies, Awareness and Risk across the business. These controls are provided in the Information Security Management system. Main responsibilities include - Manage the compliance Portal/Information Security … Management System. Manage supplier engagements based on IT Security Certifications and to drive improvements where required. Manage the relevant Certifications. Primarily ISO 27001, Cyber Essentials and NIST 800-171 (ISO 27001 critical, training available for NIST). Contribute to awareness activities. Supporting the management of Risk. Supporting ...

cyber security, information security and protective security. This is a role for someone who enjoys influence over ownership , and who knows how to balance risk, delivery and pragmatism in complex, regulated environments. What you'll be doing Leading cyber security assurance activity across a large, complex organisation Assessing … effectiveness of cyber controls and advising on improvements Providing senior stakeholders with clear, evidence-based assurance on cyber risk Shaping and maintaining cyber risk management approaches and assurance frameworks Working across first and second line functions to ensure risks are identified, understood and managed Contributing to policy ...