CrawlJobs Logo

Cyber Risk and Compliance Specialist

https://www.randstad.com Logo

Randstad

Location Icon

Location:
United Kingdom , London

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

500.00 - 520.00 GBP / Day
Save Job
Save Icon
Apply Position

Job Description:

Are you a risk professional with a knack for bridging the gap between technical security and business compliance? We are looking for a Compliance Specialist to join our Risk, Legal, and Regulatory Affairs function. In this role, you will play a pivotal part in safeguarding the organization by identifying and managing a broad spectrum of risks, with a specific focus on leading our cyber security vulnerability management efforts.

Job Responsibility:

  • Support the design and delivery of compliance activities, ensuring that regulatory, operational, and cyber risks are mitigated effectively
  • Act as a key advisor, translating complex technical or regulatory issues into clear business impacts
  • Identify, track, and prioritize risks in line with enterprise frameworks
  • Lead the identification and remediation of cyber security vulnerabilities within agreed timelines
  • Design and execute second-line monitoring to test control effectiveness and identify gaps
  • Drive the closure of control weaknesses and security gaps by ensuring clear ownership and accountability
  • Produce accurate reporting on risk exposure and remediation progress for senior stakeholders

Requirements:

  • A strong understanding of risk management and compliance frameworks
  • Proven experience in control assurance, monitoring, or audit support
  • Direct knowledge of cyber security risk and vulnerability management practices
  • The ability to prioritize risk within complex environments

Additional Information:

Job Posted:
May 18, 2026

Expiration:
June 09, 2026

Work Type:
On-site work
Icon
Randstad - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31694 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Cyber Risk and Compliance Specialist

Cyber Security Specialist

Security is a strategic pillar for us. Our modern, distributed architecture dema...
Location
Location
Italy , Milan
Salary
Salary:
Not provided
livestory.nyc Logo
Live Story
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in cloud security (AWS/Azure/GCP), IAM/SSO, SIEM, WAF, endpoint security
  • Strong understanding of threat modelling, vulnerabilities (e.g., OWASP Top 10), MITRE ATT&CK
  • Experience with compliance frameworks and certification processes
  • Hands‑on problem solver, able to translate technical issues into business risks and vice versa
  • Excellent communication skills and teamwork orientation
  • English fluency
  • Italian is a plus
Job Responsibility
Job Responsibility
  • Monitor and manage the attack surface: applications, infrastructure, APIs
  • Perform vulnerability assessments, penetration testing, risk analysis and remediation
  • Define, implement and maintain security policies, procedures and controls (e.g., ISO 27001, SOC2, GDPR)
  • Collaborate with engineering, product and legal teams to ensure compliance and risk mitigation
  • Manage incident response: alerting, logging, encryption, forensic analysis
  • Drive continuous improvement of our security posture and culture
  • Fulltime
Read More
Arrow Right

Supplier Governance Manager

The role reports into the Senior Manager of Governance and Reporting in our Pers...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in supplier / vendor management, procurement, or contract administration
  • Strong understanding of governance, risk, and compliance ideally within the financial services industry
  • Excellent verbal and written communication skills
  • Demonstrated understanding of cyber security standards, IT systems, and risk management practices
  • Experience working across Enterprise Risk, Operational Risk, Governance, Legal, Compliance, or Regulatory Assurance
  • High attention to detail with focus on compliance and regulatory requirements
  • Strong analytical and problem-solving skills
  • Experience in managing and fostering strong relationships with internal teams and supplier partners
  • Ability to plan and prioritise effectively, organise tasks and manage competing resources and demands
  • Tertiary qualifications in a relevant discipline
Job Responsibility
Job Responsibility
  • Oversee the onboarding, renewal, and governance of supplier contracts
  • Ensure compliance with procurement, cyber security, IT, as well as risk and regulatory standards
  • Work closely with internal teams to manage supplier supervision and monitoring programs
  • Assess suppliers required to be onboarded
  • Provide oversight over end-to-end supplier onboarding, contract renewals and variations, document execution, supplier governance, and offboarding
  • Oversee negotiations with suppliers
  • Work closely with the Cyber Governance team
  • Maintain accurate records of supplier agreements, risk assessments, compliance documentation, and supervision and monitoring routines
  • Facilitate supervision and monitoring routines
  • Assist with analysing the effectiveness of supplier partnerships
What we offer
What we offer
  • Inclusive Culture
  • Flexible Work-Life Balance
  • Career Development
  • Financial and Well-being Perks
  • Fulltime
Read More
Arrow Right

Cyber Security Specialist (GRC)

As a Cyber Security Specialist, you will be integrated into the Portugal Cyber S...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree, professional qualification or relevant experience in Technology Security
  • Experience in cyber security risk management, governance and control frameworks
  • Experience supporting risk registers, control assessments, audits or assurance activities
  • Knowledge of information security and risk management standards (ex: ISO/IEC 27001, NIST, COBIT)
  • Strong understanding of cyber security threats and ability to assess business and operational impact
  • Experience working with policies, standards, controls and compliance requirements
  • Strong communication skills, with the ability to explain cyber risks and control gaps in clear business language
  • Ability to work effectively across technical and non‑technical stakeholders, balancing security, risk and business needs
  • Fluency in the English language
Job Responsibility
Job Responsibility
  • Integrated into the Portugal Cyber Security Governance, Risk & Control function, with responsibility for ensuring that cyber security risks are identified, assessed, governed and managed within Vodafone’s risk tolerance
  • Contributing to the three main areas: Cyber Risk Management, Security Governance and Control Assurance
  • Act as a Cyber GRC Subject Matter Expert to enable technical and business teams to operate Vodafone products and services in a secure and compliant manner, with strong focus on cyber risk, policy adherence and control effectiveness
  • Ensuring that cyber security risks are properly identified, assessed, governed and managed, that security controls are effectively implemented and evidenced, and that all governance processes supporting those controls are in place, in line with Vodafone Group cyber security strategy and local market technology and business priorities
  • Follow up on risks, controls and remediation actions throughout their lifecycle, ensuring proper understanding of cyber security requirements, analysing, classifying and prioritising cyber risks according to business context, and supporting informed risk decisions
  • Report to the Cyber Security GRC Team Lead in Portugal and be an active part of the local market Cyber Security team, supporting effective collaboration with local structures such as Network, Digital & IT, Secure by Design, Cyber Defence, Corporate Security, Privacy, Legal, Risk and Compliance, among others
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing and Skillsoft)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

TPRM Specialist

A highly motivated and hands-on professional to join the Supply Chain Security (...
Location
Location
Netherlands , Amsterdam
Salary
Salary:
Not provided
levy-professionals.com Logo
Levy Professionals
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge and experience with setting up projects & deliverables within supply chain security / Third-Party Risk Management (TPRM)
  • Proven experience in executing information security risk assessments
  • Knowledgeable on one or more areas such as security processes, technology architectures, network security, application security, and vulnerability management
  • Experience with the ServiceNow TPRM module is a significant advantage
  • HBO or University degree
  • Excellent stakeholder management skills
  • A strong ability to translate technical risks into business risks and vice versa
  • Hands-on, self-organised, willing to finish and deliver (execution power)
  • Service-oriented professional who enjoys taking on an internal consultancy role
  • The working language within the team is English
Job Responsibility
Job Responsibility
  • Govern and manage IT vendor relationships concerning performance on the security aspects of underlying contractual obligations
  • Execute Vendor Security Risk Assessments and perform necessary follow-up actions, focusing on material risks
  • Ensure that information security risks are identified and managed effectively throughout all stages of the relationship with external vendors
  • Review the applicability and quality level of assurance reports issued by third parties
  • Manage the IT security-related part of vendor contracts, working closely with 2nd line functions such as legal, compliance, and procurement on contractual changes
  • Actively stay up-to-date with emerging cyber security trends, risk, and threat developments, and share this knowledge to help integrate them into the assessment program
  • Help solve security-related questions, take initiative, and escalate in time if needed
  • Signal improvements related to the way of working inside the team and contribute to improving the excellence of the service offering
  • Work according to the DevOps & Agile methodology, improving Supply Chain Security services based on user stories
  • Occasionally investigate and resolve incidents as they occur
Read More
Arrow Right

IT Risk and Compliance Specialist

We are looking for a highly experienced IT Risk and Compliance Specialist to joi...
Location
Location
United States , Salt Lake City
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 10 years of experience in IT risk management and cybersecurity compliance
  • Strong knowledge of compliance frameworks, including GDPR and U.S. Critical Infrastructure Act
  • Proven ability to perform gap analyses and develop actionable compliance roadmaps
  • Expertise in governance, risk, and compliance (GRC) principles and tools
  • Familiarity with Agile methodologies and their application in compliance initiatives
  • Excellent communication skills, with the ability to present findings to executive stakeholders
  • Hands-on experience in designing compliance frameworks and tracking mechanisms
  • Ability to collaborate effectively with global teams and manage cross-regional compliance efforts
Job Responsibility
Job Responsibility
  • Develop and maintain a detailed inventory of legal, regulatory, and contractual cybersecurity requirements
  • Perform gap analyses and create compliance assessments with actionable recommendations for various frameworks, including GDPR, U.S. Critical Infrastructure Act, and Australian Privacy Law
  • Design and implement a collaborative framework for cybersecurity compliance and regulatory reporting
  • Establish and manage matrices to track all cyber compliance activities and progress
  • Create mechanisms to monitor compliance maturity, schedule assessments, and ensure continuous assurance
  • Prepare executive-level reports that highlight compliance maturity and risk exposure for board presentations
  • Collaborate with stakeholders across regions to ensure alignment with compliance goals and initiatives
  • Lead efforts to identify and address compliance-related risks within organizational processes
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • eligible to enroll in our company 401(k) plan
Read More
Arrow Right

Compliance Specialist

As Cyber Compliance Specialist your role is to ensure TEG meets their legal, reg...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
teg.com.au Logo
Ticketek Entertainment Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years’ experience in risk, compliance, or governance within a professional membership, regulatory, or public-sector environment
  • Experience in disciplinary or complaints management, including investigations or professional standards processes
  • In-depth understanding of cloud security, OWASP framework
  • Demonstrated capability in policy development, risk identification, and compliance reporting
  • Exceptional attention to detail, analytical thinking, and communication skills
  • Relevant tertiary qualifications in Law, Business, or Governance
Job Responsibility
Job Responsibility
  • Play a key role in maintaining and strengthening TEGs risk and compliance framework
  • Lead, manage and coordinate the PCI-DSS compliance program
  • Actively participate in the ASAE-3402 audit
  • Engage and facilitate internal and external audit and risk functions as it relates to Technology and Cyber Security
  • Perform gap analyses and risk assessments to identify vulnerabilities and ensure ongoing compliance with PCI DSS requirements
  • Create, update, and maintain information security and compliance policies and controls across the organization
  • Guide teams through remediation efforts to fix any identified security gaps or non-compliance issues
  • Keep up-to-date with the evolving PCI Security Standards Council (PCI SSC) requirements and other industry regulations
  • Provide general administrative and reporting support to governance and compliance functions
What we offer
What we offer
  • Complimentary event tickets
  • Birthday and volunteering leave
  • Wellbeing discounts & flu vaccinations
  • Paid parental leave & free employee support (EAP)
  • Global rewards and recognition
  • Learning, development & career pathways
  • A diverse, inclusive, and passionate team
  • Fulltime
Read More
Arrow Right

IT Risk & Compliance Specialist

the role is responsible to develop and implement risk and compliance programs (C...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Technology, Cybersecurity, Risk Management, or other related field
  • At least 4 years of experience in IT risk management, Compliance or Cybersecurity roles
  • Proven experience with IT audits, regulatory compliance and risk assessment
  • Strong understanding of IT risk management principles and practices and solid knowledge of security frameworks and standards
  • Familiarity with security incident response and investigation protocols
  • Strong communication and interpersonal skills, with the ability to work effectively with cross-functional teams
  • Strong organizational skills, with adaptability and ability to respond effectively to evolving cyber threats
  • Excellent analytical and problem-solving skills to identify and assess risks
  • Excellent written and verbal communication skills, in both Greek & English and with both technical and business audiences
  • Project management skills to lead compliance initiatives and audits
Job Responsibility
Job Responsibility
  • Develop & implement risk management processes related to Vodafone's IT Operations, ensuring compliance with regulatory requirements and industry best practices
  • Develop, maintain, and regularly test IT resilience strategies, including disaster recovery and business continuity plans tailored to Vodafone's needs
  • Lead incident response and investigation efforts in case of security breaches or incidents
  • Conduct post-incident reviews, identify root causes, and implement improvements to prevent recurrence
  • Conduct risk assessments and audits to identify potential security vulnerabilities and areas of non-compliance
  • Develop and implement strategies to mitigate identified risks
  • Monitor and evaluate existing security controls, making recommendations for improvements and providing regular status reports to senior management
  • Coordinate with external auditors and regulatory bodies during compliance assessments
  • Develop & deliver training programs to enhance IT Operations awareness on security protocols and best practices
  • Work closely with other departments to ensure a cohesive approach to risk management and compliance
What we offer
What we offer
  • Award-winning work environment - certified #1 Top Employer in Greece
  • Competitive pay, bonus & remuneration package
  • Private Health & Medical Insurance
  • Hybrid way of working: a blend of remote and office-based working, including the option to work from abroad
  • Unlimited access to learning resources and trainings
  • Vodafone Parental Leave: 16 weeks of fully paid parental leave to all employees regardless of gender, sexual orientation or length of service
  • Spirit of Vodafone Day: one day each quarter dedicated to your personal development
  • Extra days off: Vodafone Day, Family Day, Volunteering Day
  • Office amenities (subject to the office location): such as restaurant, beauty corner, gym and parking
  • Special employee offers and discounts
Read More
Arrow Right

Information Assurance Specialist

The Information Assurance/Security Engineer will provide security engineering an...
Location
Location
United States , Bethesda
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI Clearance with CI Polygraph
  • Bachelor’s degree in Network Engineering, Computer Science or related technical field plus 5-7 years of Cyber Security/Operations support
  • DoD 8140 IAT Level II Certification (CCNA-Security, CySA+, CND, Security+)
  • Documenting network schemas and cyber operation tool solutions
  • Knowledgeable regarding compliance with: ICD 503, FISMA, OMB, NIST, and DoD (8150.01 March 12, 2014) [Risk Management Framework and Cyber Network Defense…], and other mandated security regulations and standards
  • Knowledge and experience with managing and monitoring compliance with Privileged User Access (PUA), Data Transfer Access (DTA), and Removable Media Custodian (RMC) privileges, forms, and signatures
  • Support to vulnerability management, patching, information assurance and/or ATO process for Classified DoD or IC environments
  • Demonstrated documentation writing for security plans, tests, and reports
  • Must demonstrate strong teamwork, communication (both verbal and written), and presentation skills
  • Must demonstrate strong initiative to accept new technical challenges in complex security engineering assignments
Job Responsibility
Job Responsibility
  • Provide security engineering and information assurance support to the Government’s Assessment and Authorization (A&A) process to maintain Authority to Operate (ATO) and Authority to Connect (ATC) for mission applications and services
  • Designs, develops, monitors and documents security controls, security testing, security reporting, and plan of actions and milestones (POA&Ms) throughout systems and application lifecycles in support of mission systems
  • Provides security engineering design inputs, security design reviews, and security best practices as part of technical and change requests
  • Configures and validates secure systems, physical controls, and tests security products and systems to detect security weaknesses
  • Maintains XACTA security records for supported systems
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right