Cyber RiskAssessment Analyst Up to 62,000 + bonus South Wales/Hybrid Permanent I'm looking for a cyber riskassessment specialist to identify and assess cyber risks across our client's IT and OT environments. The successful candidate will also be recommending mitigation strategies to strengthen cyber resilience and meet regulatory requirements. The … ideal candidate will possess extensive experience in cyber riskassessment alongside strong experience translating technical risk and control issues into business language. The role requires eligibility for SC clearance and visa sponsorship cannot be offered. What You'll Be Doing: Conducting structured cyber risk assessments across IT and OT systems Gathering technical and business data to … inform risk analysis Using tools and frameworks to identify, assess, and prioritise risks Collaborating with stakeholders to assign risk levels and remediation priorities Evaluating the effectiveness of existing security controls Recommending mitigation strategies and validating security measures Maintaining accurate records of assessments and mitigation actions Reporting risk trends and recommendations Managing the risk acceptance process and More ❯
Cyber RiskAssessment Analyst Up to £62,000 + bonus South Wales/Hybrid Permanent I'm looking for a cyber riskassessment specialist to identify and assess cyber risks across our client's IT and OT environments. The successful candidate will also be recommending mitigation strategies to strengthen cyber resilience and meet regulatory requirements. The … ideal candidate will possess extensive experience in cyber riskassessment alongside strong experience translating technical risk and control issues into business language. The role requires eligibility for SC clearance and visa sponsorship cannot be offered. What You'll Be Doing: Conducting structured cyber risk assessments across IT and OT systems Gathering technical and business data to … inform risk analysis Using tools and frameworks to identify, assess, and prioritise risks Collaborating with stakeholders to assign risk levels and remediation priorities Evaluating the effectiveness of existing security controls Recommending mitigation strategies and validating security measures Maintaining accurate records of assessments and mitigation actions Reporting risk trends and recommendations Managing the risk acceptance process and More ❯
Employment Type: Permanent
Salary: £55000 - £62000/annum plus discretionary bonus
of commonplace infosec standards and frameworks. The role requires eligibility for SC clearance and visa sponsorship cannot be offered. What You'll Be Doing: Leading a team of cyber risk and compliance professionals Defining and enhancing cyber riskassessment strategies and procedures Conducting risk assessments and evaluating control effectiveness Maintaining and updating security policies and the … cyber risk register Investigating and responding to policy breaches Recommending and supporting the implementation of mitigation strategies Ensuring compliance with industry standards and regulations Reporting risk findings and actions to the Risk Management Manager Supporting incident response planning with risk insights Continuously improving riskassessment methodologies What I'm Looking For: GRC leadership experience … Strong understanding of security frameworks (e.g., NIST, ISO 27001). Proven experience completing internal and external cyber risk assessments CNI experience would be very useful What's in it for you: Up to 78,000 plus bonus 25 days leave plus bank holidays Good pension scheme Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and More ❯
of commonplace infosec standards and frameworks. The role requires eligibility for SC clearance and visa sponsorship cannot be offered. What You'll Be Doing: * Leading a team of cyber risk and compliance professionals * Defining and enhancing cyber riskassessment strategies and procedures * Conducting risk assessments and evaluating control effectiveness * Maintaining and updating security policies and the … cyber risk register * Investigating and responding to policy breaches * Recommending and supporting the implementation of mitigation strategies * Ensuring compliance with industry standards and regulations * Reporting risk findings and actions to the Risk Management Manager * Supporting incident response planning with risk insights * Continuously improving riskassessment methodologies What I'm Looking For: * GRC leadership experience … Strong understanding of security frameworks (e.g., NIST, ISO 27001). * Proven experience completing internal and external cyber risk assessments * CNI experience would be very useful What's in it for you: * Up to £78,000 plus bonus * 25 days leave plus bank holidays * Good pension scheme Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and More ❯
Employment Type: Permanent
Salary: £70000 - £78000/annum bonus + more benefits
Newport, Gwent, United Kingdom Hybrid / WFH Options
Hays Technology
an accurate view of the vulnerabilities in its asset estate and follows an agreed methodology for prioritising and remediating vulnerabilities. Work closely with colleagues performing related penetration testing and riskassessment activities, providing accurate and timely technical information regarding assets and the status of vulnerabilities. Prepare and deliver regular, high-quality management reporting regarding the asset estate and … proven experience in a vulnerability management role Strong understanding of operational technology concepts and differences between IT and OT environments Strong understanding of attacker TTPs Strong understanding of security riskassessment and risk management concepts and approaches Ability to work with less technical colleagues and be able to convey technical information in a way that all can More ❯
Cardiff, South Glamorgan, United Kingdom Hybrid / WFH Options
Starling Bank Limited
so that we're able to interact and collaborate in person. About the Role In this role you will be instrumental in helping us maintain and mature our governance, risk, and compliance program. You'll play a crucial part in ensuring our ongoing adherence to security standards and regulations, building a foundation of trust for our clients and stakeholders. … 3DS . Audit Support: Act as a key liaison for internal and external auditors, helping to gather evidence, prepare for audits, and track the timely remediation of any findings. Risk Management: Participate in our riskassessment process, helping to identify, analyse, and document information security risks. You'll also assist in developing and monitoring risk treatment … approach to your work. Experience with GRC software is a plus. Desired qualifications, if you have some of these great! CompTIA Security+ Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) Certified Information Systems Security Professional (CISSP) Interviewing is a two way process and we want you to have the time and opportunity to get More ❯
infrastructure. The ideal candidate will play a critical role in designing and implementing cybersecurity frameworks to align with the business objectives and mitigate potential threats. Main Responsibilities: Perform Security Risk and Threat analysis during the initial design and the Software Development Life Cycle planning, analysis, and design phases. Providing recommendations and requirements for mitigating any security weaknesses identified while … of the SAFe Agile method would be an asset Understanding of security testing in the software pipeline (SAST, DAST, SCA, RASP) Knowledge of STRIDE, DICE and other threat and risk frameworks Knowledge of AWS tools Proven experience managing multiple projects simultaneously Practical interpersonal skills; adaptable to all levels of the organization Ability to contribute in a collaborative environment Communication … the impact of risks Technical Systems Proficiency: Security Management Tools (email filtering, vulnerability scanning tools, security dashboards, etc.) Cloud security management tools like CNAPP, CSPM, CWPP, and CIEM. Security riskassessment methodology (EBIOS RM) Security Requirement Definition and Review Travel Required: 10-15% Domestic and International We thank all applicants for applying. Only selected applicants will be contacted. More ❯
security incidents. Improve customer service. Enhance HMRC security culture. HMRC Securitys vision is: 'Our vision is to equip HMRC with the tools, skills, capability, and experience to understand business risk, protect assets and deliver critical services to the UK." Key to delivering this vision is an Enterprise-wide Security Strategy that; Provides a stable base for good security decision … and policies of teams responsible for business strategy delivery. Lead and direct HMRC Security Front Door team balancing the running or the service with improving the service. Champion operational risk analysis, using this information to embed security by design into transformation at the pre-Business Case stage. Ensuring HMRC Security influences/informs strategic business thinking decisions by having … government security strategy working groups. Briefing and presenting to the Chief Security Officer and senior stakeholders on HMRC Security Strategy and Performance matters. Horizon scanning, pre-Discovery and impact assessment to inform the HMRC response to emerging Enterprise level security threat and strategies. Building investment cases, including financial cases and impact assessments, and submission through governance of Enterprise Level More ❯
security incidents. Improve customer service. Enhance HMRC security culture. HMRC Securitys vision is: 'Our vision is to equip HMRC with the tools, skills, capability, and experience to understand business risk, protect assets and deliver critical services to the UK." Key to delivering this vision is an Enterprise-wide Security Strategy that; Provides a stable base for good security decision … and policies of teams responsible for business strategy delivery. Lead and direct HMRC Security Front Door team balancing the running or the service with improving the service. Champion operational risk analysis, using this information to embed security by design into transformation at the pre-Business Case stage. Ensuring HMRC Security influences/informs strategic business thinking decisions by having … government security strategy working groups. Briefing and presenting to the Chief Security Officer and senior stakeholders on HMRC Security Strategy and Performance matters. Horizon scanning, pre-Discovery and impact assessment to inform the HMRC response to emerging Enterprise level security threat and strategies. Building investment cases, including financial cases and impact assessments, and submission through governance of Enterprise Level More ❯