CrawlJobs Logo

Cyber Assurance Manager

United Kingdom, England · Job Posted January 07, 2026
Apply Position
Job Link Share

Job Description

Role Overview Using a risk-led and threat-informed approach, this role will drive periodic assurance activities in support of the Global Risk & Compliance (GRC) team, aligned with Unilever’s risk appetite. The objective is to enable informed decision-making and foster secure behaviour across the global business. The Cyber Assurance Manager will be responsible for assuring compliance with Cyber Security policies, standards, and international regulations, while collating and reporting risks and metrics derived from these assurance activities. This position oversees periodic assurance across all areas of the business globally, ensuring resilience and compliance in a rapidly evolving threat landscape. The role functions within a matrix structure, reporting to the Cyber Resilience Assurance Lead Manager while supporting the Cyber Production Assurance Lead Manager on project deliverables. It is responsible for maintaining strong governance and ensuring consistent execution across key assurance activities.

Job Responsibility

  • Drive periodic assurance activities in support of the Global Risk & Compliance (GRC) team, aligned with Unilever’s risk appetite
  • Assure compliance with Cyber Security policies, standards, and international regulations, while collating and reporting risks and metrics derived from these assurance activities
  • Oversee periodic assurance across all areas of the business globally, ensuring resilience and compliance in a rapidly evolving threat landscape
  • Work with Cyber Resilience Assurance and Cyber Production Assurance Lead Managers to deliver a comprehensive suite of assurance activities including: Cyber crisis response readiness/effectiveness, cyber resilience in Business Continuity Planning (BCP), IT/cloud resilience and data recovery assurance, continuous controls monitoring and reporting, Operational Technology (OT), Internet of Things (IoT) assurance, and AI assurance
  • Responsible for ensuring the assessment and effective reporting of Unilever’s compliance against Unilever’s standards and relevant global cyber regulations and best practices, enabling wider Risk and Compliance based insights
  • Develop, maintain, and manage assurance documentation, reports, and audit evidence to support compliance objectives
  • Conduct and support risk assessments, control validations, and compliance checks across cyber assurance initiatives
  • Design, track, and maintain key cyber assurance metrics for both Cyber Resilience and Production Assurance workstreams
  • Prepare and deliver executive-level reports summarizing the organization’s overall cyber assurance posture
  • Drive continuous improvement of assurance processes, frameworks, and methodologies to enhance resilience and compliance

Requirements

  • Significant experience in ITES industry, including experience in a senior Cyber Security or Information Security role
  • Strong experience in managing operational risks and controls, including end-to-end risk identification, assessment, and mitigation
  • Strong knowledge of enterprise cloud environments, with some hands-on experience using leading platforms such as Azure, GCP, AWS etc
  • Proven track record in Cyber Security, including cyber risk management and governance
  • Experience in IT & Cyber Automation, enabling real-time telemetry ingestion and correlation using APIs, data pipelines, or event hubs
  • Excellent strategic and operational business awareness, with deep understanding of digital business drivers and constraints
  • Strong communication skills and experience presenting to senior leaders
  • Knowledge of technical landscapes and experience delivering Cyber Security projects
  • Cybersecurity and resilience certifications such as Security+, CISA, CISM, CISSP (or equivalent), ISO22301, CBCP etc

Nice to have

  • Cyber automation and data analysis/visualization expertise
  • Strong knowledge of common vulnerabilities and exploitation techniques
  • Understanding of industry-standard AI governance and risk frameworks
  • familiarity with Azure AI services and security architecture
  • Ability to manage conflicting priorities and work collaboratively with globally distributed teams
  • Deep knowledge of IT Disaster Recovery programs, Business Continuity Planning, and resilience frameworks, with subject matter expertise in BCM, Crisis Management, Resilience, Risk, and Compliance domains
  • A strong grasp of enterprise security technologies is essential, including GRC platforms (such as ServiceNow, MetricStream, SureCloud), SOC solutions (SIEM and SOAR), endpoint detection and response (EDR), vulnerability management tools, identity security solutions, network and web security technologies, and cloud security platforms such as CSPM and CNAPP
  • Strong presentation skills and ability to work with vague requirements to build prototypes and iterate solutions

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Cyber Assurance Manager

8 matching positions

Cyber Assurance

We are seeking a Cyber Security Assurance Specialist to lead control testing and...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 3+ years of technical experience in Data Analytics
  • Hands on experience on Power BI, Advance Excel, Data Visualization, Preparing Dashboards
  • Working experience in cyber assurance or control testing within complex IT
  • Excellent analytical, problem-solving, and stakeholder management skills
  • Knowledge of technologies including web applications, infrastructure, operating systems, and cloud environments
  • Ability to work in a global environment and adapt communication style to diverse audiences
Job Responsibility
Job Responsibility
  • Maintain an up-to-date view of control effectiveness and compliance with security standards
  • Plan, organise, and execute deep-dive control tests across IT, Mobile, and Fixed Telecommunications environments
  • Document findings, recommend remediation actions, and prepare management reports
  • Track remediation progress and collaborate with stakeholders on overdue actions
  • Drive automated control testing and evolve assurance methodologies
  • Provide guidance on best practices for security assurance and control testing
  • Prepare metrics and KPIs on control effectiveness and report to governance bodies
What we offer
What we offer
  • Opportunity to work on global cyber security assurance programmes
  • Exposure to cutting-edge technologies and security frameworks
  • Collaborative work environment with diverse stakeholders
  • Career growth through continuous learning and development
  • Fulltime
Read More
Arrow Right

Technology Audit and Assurance Manager

An opportunity has arisen with in fast growing fintech business that works with ...
Location
Location
United Kingdom , London
Salary
Salary:
65000.00 - 80000.00 GBP / Year
jamesonlegal.com Logo
Jameson Legal
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7 years of IT audit experience
  • Command of regulatory guidance for technology, cyber, and infosec
  • Effective communicator who can adjust to the audience
  • Proven history of accuracy and attention to detail with minimal oversight and errors
  • Professional designations such as CISA, CISSP, or CIA certification or equivalent are desired but not necessary
Job Responsibility
Job Responsibility
  • Managing Internal, External and Client Audits
  • Management and implementation of multiple existing and new compliance Frameworks including but not limited to SOC2, FISMA/NIST, ISO 27001 and 27701
  • GRC tool management (implementation and operation for multiple compliance frameworks)
  • Overseeing, planning, designing, and performing all aspects of technology audit coverage and related practices
  • Planning, leading and executing technology and information security audits in a modern technology stack
  • Providing credible challenge and professional skepticism to assess potential gaps or weaknesses in the internal control infrastructure
  • Establishing and maintaining effective business relationships
  • Employing data-driven approaches
  • Monitoring the audit schedule and tracking it for the timely completion of audit activities
  • Monitoring the progress of management’s committed action plans and validating the closure of remediated audit issues and regulatory findings
  • Fulltime
Read More
Arrow Right

Cyber Assurance

In a Controls role, you'll ensure rigorous and consistent management of Barclays...
Location
Location
India , Pune
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge of key areas in cyber risk, including access management, network security, data loss prevention, secure configuration, cryptography at both application and infrastructure layers, operational and cyber recovery risk
  • Experience in one or more of the following fields Information Security Audit, Risk and Control, IT security
  • Knowledge of General Computing Controls, NIST, Cloud Frameworks, Artificial Intelligence including relevant tools and emerging technologies
  • Exposure to large-scale enterprise wide risk management processes and security tools for operating systems (Windows, Linux), Active Directory, Groups, SIEM, MDM, incident response)
  • Knowledge or IS/IT Risks & Controls and respective Standards / Frameworks (e.g. COBIT, ITIL, SOx)
  • Effective communication skills to engage with business stakeholders, clear documentation, strong organization skills, pro-activeness is a Must
  • Relevant professional certification (CISA, CISSP, CRISC, CISM, ISO 27001) or equivalent
  • Graduate
Job Responsibility
Job Responsibility
  • Collaboration across the bank to maintain a satisfactory, robust, and efficient control environment through the execution of ad-hoc assessments and testing on the design and operational effectiveness of the internal controls, aligned to control policies and standards
  • Development of detailed test plans and procedures to identify weaknesses in internal controls and other initiatives aligned to the bank’s control framework to mitigate any potential risks and issues, prioritised by its severity to disrupt bank operations, potential losses, and reputational impact
  • Communication of key findings and observations to the relevant stakeholders and business units to improve overall control efficiency and provide corrective actions to senior managers
  • Collaboration with other control professionals to resolve complex issues and ensure consistent testing methodologies across the bank
  • Development of a knowledge centre containing detailed documentation of control assessments, testing on design and operational effectiveness of procedures, findings, and the distribution of material on internal controls to train and upskill colleagues within the bank
  • Fulltime
Read More
Arrow Right

Cyber Assurance Officer

We are seeking a skilled Cyber Assurance Analyst to join a busy cyber security t...
Location
Location
United Kingdom , Norwich
Salary
Salary:
Not provided
welovesalt.com Logo
Salt
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of cyber security principles and controls
  • Experience handling security incidents, alerts and investigations
  • Understanding of risk assessment, assurance and audit frameworks
  • Experience working with Microsoft, O365, security and monitoring tools
  • Ability to analyse complex technical information and logs
  • Excellent communication skills, including explaining cyber risks to non-technical audiences
  • Strong prioritisation, problem-solving and decision-making skills
  • Degree-level qualification or equivalent relevant experience
Job Responsibility
Job Responsibility
  • Triage and respond to cyber security alerts, incidents and service requests
  • Prioritise and escalate tickets based on severity and risk
  • Support delivery and assurance of the Data Security and Protection Toolkit (DSPT)
  • Conduct cyber risk assessments and contribute to DPIAs
  • Monitor, assess and remediate vulnerabilities and security controls
  • Support penetration testing and vulnerability management activities
  • Maintain compliance with cyber standards (e.g. DSPT, Cyber Essentials, CareCERT)
  • Investigate potential security breaches and cyber incidents
  • Provide cyber security advice and guidance to stakeholders
  • Support and mentor junior team members
Read More
Arrow Right

Senior Manager - Cyber Security

We are seeking a Security Assurance Manager to join our Global Cyber Security fu...
Location
Location
India , Ahmedabad
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 10 years of technical experience in cyber assurance and control testing within complex IT or telecommunications environments
  • Strong understanding of security risks, processes, and technologies, preferably in telecoms
  • Expertise in technical control testing, assurance, and compliance
  • Excellent analytical, problem-solving, and reporting skills
  • Ability to work in a global environment and adapt communication style to diverse audiences
  • Solid knowledge of technologies including web applications, infrastructure, operating systems, and cloud
  • Professional certifications such as CISA, CISSP, SSCP, CISM, ISO27001 Lead Auditor are highly desirable
  • Familiarity with ISO27001 and NIST security frameworks
Job Responsibility
Job Responsibility
  • Maintain an up-to-date view of Vodafone’s control effectiveness and compliance with security policies and standards
  • Plan, organise, and execute deep-dive control tests across IT, mobile, and fixed network environments
  • Document findings, recommend remediation actions, and prepare management reports
  • Track remediation progress and collaborate with stakeholders on overdue actions
  • Drive automated control testing and enhance assurance programme maturity
  • Provide guidance on security assurance techniques and best practices
  • Prepare metrics and KPIs on control effectiveness and report to governance bodies
  • Communicate risks and consequences effectively across multiple stakeholders
What we offer
What we offer
  • Opportunity to work in a global cyber security environment with exposure to cutting-edge technologies
  • Collaborative culture with a focus on innovation and continuous improvement
  • Professional development through certifications and training in security frameworks
  • Chance to influence Vodafone’s risk management and cyber resilience strategy
Read More
Arrow Right

Cyber Operations Manager

We are seeking an Operations Manager to enable the secure, reliable and well-gov...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experienced in operations, service management or technical operations within a complex technology environment
  • Knowledgeable in incident management, service assurance and operational service levels
  • Confident in coordinating teams, managing competing priorities and maintaining calm oversight in high-pressure situations
  • Comfortable working alongside engineers and technical leaders, without needing to be hands-on in engineering tasks
  • Able to translate operational data into clear, actionable insights and structured reporting
  • Familiar with SRE or DevOps-aligned ways of working (desirable)
  • Experienced with ITSM tools such as ServiceNow and operational reporting (desirable)
  • Exposed to cyber security, monitoring or large-scale platform operations (desirable)
  • Understanding of on-call and rota models, resilience and operational continuity (desirable)
Job Responsibility
Job Responsibility
  • Own and manage operational rota planning, ensuring appropriate shift coverage, balanced skill distribution and proactive absence management
  • Monitor and manage incident queues to ensure service level agreements are consistently met
  • Act as a key escalation point during major incidents, supporting the Incident Manager and coordinating timely engagement of relevant teams
  • Provide guardianship of incident and issue management processes, ensuring consistency, quality and adherence to agreed ways of working
  • Support post-incident reviews, tracking actions and ensuring lessons learned are embedded into service improvements
  • Maintain oversight of multiple concurrent incidents and operational issues to protect overall service health
  • Produce regular and ad hoc operational reports covering incidents, trends, service levels and risk areas
  • Use operational data and insight to highlight improvement opportunities, capacity risks and inefficiencies
  • Provide clear, structured operational input into governance forums and leadership discussions
  • Work closely with engineers and leaders to strengthen operational interfaces and day-to-day execution
What we offer
What we offer
  • A visible and trusted role supporting critical cyber security platforms at scale
  • Opportunity to work within an SRE-aligned operating model that values clarity, governance and psychological safety
  • Hybrid working with flexibility and strong peer support
  • Exposure to senior stakeholders and leadership forums across Vodafone’s security domain
  • A collaborative environment focused on continuous improvement and operational excellence
  • Fulltime
Read More
Arrow Right

Principal Security Assurance & Compliance Manager

We are seeking an experienced security assurance and compliance professional to ...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • You bring over five years’ experience in cyber security compliance, regulatory assurance, risk assessments and audits
  • You have strong working knowledge of ISO 27001, NIST, GDPR and emerging EU regulations such as the Cyber Resilience Act and Post-Quantum Cryptography considerations
  • You have hands-on experience designing and operating GR&C methodologies and using compliance and risk management tools
  • You are confident developing policies, procedures and control frameworks, and coordinating across diverse international stakeholders
  • You communicate complex technical and regulatory topics clearly to both technical and non-technical audiences
  • You demonstrate analytical thinking, sound judgement and adaptability in the face of evolving regulatory and threat landscapes
Job Responsibility
Job Responsibility
  • Identify, interpret and map applicable regulatory, statutory and security requirements (including GDPR, NIS2, AI Act and country-specific regulations) relevant to VCI
  • Govern and conduct enterprise-wide risk assessments and gap analyses to assess compliance maturity and identify non-conformities
  • Design, introduce and operate a comprehensive Governance, Risk & Compliance (GR&C) framework using a risk-led methodology
  • Drive implementation and continuous improvement of security controls, processes and policies aligned to regulatory and Vodafone Group requirements
  • Establish and manage a global repository of control requirements to streamline audit evidence, reduce duplication and enable “Audit/Evidence/Compliance as a Service”
  • Monitor ongoing compliance through continuous control evaluation and coordinate timely closure of identified gaps
  • Act as the primary point of contact for internal and external audits within the defined scope, including SOX and GDPR
  • Collaborate closely with Technology, Cyber Security, Finance, Legal and business teams to embed compliance into operational processes
  • Provide regular, clear reporting on compliance status, risks and remediation progress to senior leadership, including Group Technology leadership forums
What we offer
What we offer
  • The opportunity to influence security and compliance strategy across a critical global technology function
  • Exposure to senior leadership and participation in high-impact regulatory and transformation initiatives
  • A collaborative, international working environment with strong cross-functional engagement
  • The ability to shape a future-focused, risk-led compliance model within Vodafone’s technology landscape
  • Fulltime
Read More
Arrow Right

Principal Security Assurance Engineering Manager

Microsoft’s Specialized Cloud Team in the national security, classified, and hig...
Location
Location
United States , Reston
Salary
Salary:
139900.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 6+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR equivalent experience
  • 1+ year(s) people management
  • Active U.S. Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph
  • Verification of U.S. citizenship
Job Responsibility
Job Responsibility
  • Enterprise Industrial Security Leadership: Interpret, operationalize, and govern requirements under NISPOM (32 CFR Part 117), SEADs, DoD Instructions, DFARS clauses, and customer specific security directives
  • Anticipate and mitigate enterprise level risks that could jeopardize Facility Clearances (FCLs), classified contracts, or customer trust
  • Cross Organizational Governance & Influence: Drive alignment across Engineering, Operations, Datacenters, Legal (CELA), HR, Physical Security, and secure/sovereign cloud teams
  • Establish clear governance models, accountability mechanisms, and escalation paths
  • Lead high risk decision making involving regulatory exposure, personnel adjudication, insider threat concerns, and facility accreditation
  • Facility Clearance & Classified Environment Management: Provide governance and oversight for the full lifecycle of classified facilities, including SCIFs and SAPF environments
  • Ensure accreditation readiness, material change management, and sustained compliance across facilities and business units
  • Protect Microsoft’s corporate and subordinate FCL posture through proactive risk management
  • Fulltime
Read More
Arrow Right