CrawlJobs Logo
Outsource UK Logo Outsource UK · IT - Administration

Cyber Security Governance, Risk & Compliance

United Kingdom, Lancashire 47.51 - 64.09 GBP / Hour · Job Posted June 03, 2026
Apply Position
Job Link Share

Job Description

This is an exciting opportunity for an experienced cyber security professional to influence strategic decision-making, engage with senior stakeholders, and lead the continual development of our cyber governance and risk capabilities.

Job Responsibility

  • Developing, maintaining and enhancing cyber risk management frameworks, methodologies and assessment processes
  • Ensuring cyber risk and governance services operate in line with established policies, standards and regulatory requirements
  • Supporting the business in defining and managing cyber risk appetite and tolerance levels
  • Driving the adoption of cyber security policies, standards and best practices across programmes and functions
  • Embedding cyber risk and governance principles throughout the system and project lifecycle
  • Analysing cyber risk metrics, KPIs and performance data to provide meaningful reporting and insight to senior stakeholders
  • Supporting the development of threat assessment methodologies and risk mitigation strategies

Requirements

  • Understanding of emerging cyber security threats and evolving regulatory requirements
  • Knowledge of industry and government cyber security standards, frameworks and best practices
  • Experience working within an IT, cyber security or information security environment
  • Proven experience in defining and implementing cyber risk management strategies and assessment methodologies
  • Strong understanding of cyber security governance, risk and compliance principles
  • Experience delivering cyber security projects and programmes
  • Ability to engage, influence and collaborate with senior stakeholders across multiple business areas
Outsource UK - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cyber Security Governance, Risk & Compliance

8 matching positions

Director - Governance, Risk and Compliance

We are a fast-growing fintech company seeking a proactive and highly organized G...
Location
Location
United States , New York
Salary
Salary:
175000.00 - 200000.00 USD / Year
clearstreet.io Logo
Clear Street
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in GRC, security compliance, risk management, or related functions
  • Strong understanding of common security frameworks (SOC 2, ISO 27001, NIST CSF, PCI-DSS)
  • Experience managing audits end-to-end
  • Demonstrated ability to build and maintain governance processes and cross-functional compliance programs
  • Excellent documentation, communication, and stakeholder-management skills
  • Experience in technology, fintech, financial services, or other highly regulated industries
Job Responsibility
Job Responsibility
  • Develop, maintain, and manage the company’s security and compliance policy framework
  • Ensure policies are current, properly communicated, approved, and effectively implemented across the organization
  • Oversee periodic reviews of all internal policies
  • Educate teams on policy requirements and drive adherence
  • Build, implement, and continuously refine the company’s cyber security risk management framework
  • Lead risk identification, assessment, scoring, and periodic re-evaluations
  • Maintain the corporate risk register
  • Manage all internal and external audits including SOC 2, ISO 27001, regulatory exams, and customer due-diligence requests
  • Coordinate and prepare audit evidence
  • Serve as the primary liaison with external auditors, security assessors, and regulatory bodies
What we offer
What we offer
  • Competitive compensation packages
  • Company equity
  • 401k matching
  • Gender-neutral parental leave
  • Full medical, dental and vision insurance
  • Lunch stipends
  • Fully stocked kitchens
  • Happy hours
  • Fulltime
Read More
Arrow Right

Cyber Security Compliance Consultant

Join a team of experts dedicated to delivering innovative solutions and driving ...
Location
Location
Austria , Vienna
Salary
Salary:
Not provided
alpenite.com Logo
Arsenalia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4–6 years of experience in cybersecurity consulting, compliance, or security governance
  • Strong knowledge of key cybersecurity regulations and frameworks: NIS2, ISO 27001, TISAX, GDPR
  • Proven experience in security audits, risk assessments, and gap analyses
  • Skilled in designing security management systems and compliance processes
  • Excellent communication skills and ability to engage with clients across industries
  • Comfortable working on projects with variable timelines
  • Methodical, precise, and client-oriented approach to documentation and delivery
  • Willingness to travel for short, medium, or long-term assignments
  • English proficiency at B2 level or higher
Job Responsibility
Job Responsibility
  • Support clients in achieving and maintaining compliance with key cybersecurity regulations (NIS2, ISO 27001, TISAX, GDPR)
  • Conduct security assessments and gap analyses to define remediation plans
  • Design and implement ISMS aligned with international standards
  • Manage consulting projects for audit readiness and certification
  • Act as Virtual CISO, providing strategic guidance on security governance
  • Develop security policies and documentation based on regulatory frameworks
  • Deliver training and awareness sessions on compliance and best practices
  • Track regulatory changes and advise clients on new requirements
What we offer
What we offer
  • Welfare Package
  • Worklife Kit
  • Empowering People
  • Open Space, Open Mind
  • Career Path
  • Learning & Development
Read More
Arrow Right

Cyber Security Engineer

Cyber Security Engineer position at Sopra Steria, a major Tech player in Europe ...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Governance - Security Operational Tasks support & governance. Compliance and Risk Management
  • Vulnerability Management - vulnerability (infra and app) scans and remediation plans
  • SMP (Security Management Plan) - preparing, reviewing and managing
  • Authorisation management - should have managed the accounts & controls in the Infra scope
  • Security Patch management - end-to-end coordination and implementation
  • Security product management - Antivirus Management, like TrendMicro, Defender, etc...
  • Security incident management - Managing the end-to-end security incident lifecycle with corrective measures
  • Audit support - support auditors' mandate on the security system and artefacts
  • Mitigation - thinking analytically and executing efficiently. Analyse and optimise orchestration and automation between security tools
  • Vendor Management, Collaboration, Facilitation - Excellent customer-facing skills and significant experience building strong client relationships
What we offer
What we offer
  • Commitment to fighting against all forms of discrimination
  • Inclusive and respectful work environment
  • Open to people with disabilities
  • Fulltime
Read More
Arrow Right

Cyber Security Specialist (GRC)

As a Cyber Security Specialist, you will be integrated into the Portugal Cyber S...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree, professional qualification or relevant experience in Technology Security
  • Experience in cyber security risk management, governance and control frameworks
  • Experience supporting risk registers, control assessments, audits or assurance activities
  • Knowledge of information security and risk management standards (ex: ISO/IEC 27001, NIST, COBIT)
  • Strong understanding of cyber security threats and ability to assess business and operational impact
  • Experience working with policies, standards, controls and compliance requirements
  • Strong communication skills, with the ability to explain cyber risks and control gaps in clear business language
  • Ability to work effectively across technical and non‑technical stakeholders, balancing security, risk and business needs
  • Fluency in the English language
Job Responsibility
Job Responsibility
  • Integrated into the Portugal Cyber Security Governance, Risk & Control function, with responsibility for ensuring that cyber security risks are identified, assessed, governed and managed within Vodafone’s risk tolerance
  • Contributing to the three main areas: Cyber Risk Management, Security Governance and Control Assurance
  • Act as a Cyber GRC Subject Matter Expert to enable technical and business teams to operate Vodafone products and services in a secure and compliant manner, with strong focus on cyber risk, policy adherence and control effectiveness
  • Ensuring that cyber security risks are properly identified, assessed, governed and managed, that security controls are effectively implemented and evidenced, and that all governance processes supporting those controls are in place, in line with Vodafone Group cyber security strategy and local market technology and business priorities
  • Follow up on risks, controls and remediation actions throughout their lifecycle, ensuring proper understanding of cyber security requirements, analysing, classifying and prioritising cyber risks according to business context, and supporting informed risk decisions
  • Report to the Cyber Security GRC Team Lead in Portugal and be an active part of the local market Cyber Security team, supporting effective collaboration with local structures such as Network, Digital & IT, Secure by Design, Cyber Defence, Corporate Security, Privacy, Legal, Risk and Compliance, among others
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing and Skillsoft)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Cyber and Information Security Risk Manager, Senior Vice President

This role is critical for safeguarding the bank's financial stability and sustai...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in Cyber & Information Security Risk Management, IT Risk, Security Compliance, or IT Audit, with significant experience in a financial services environment
  • Demonstrated expertise in identifying, assessing, measuring, monitoring, and reporting on complex cyber and information security risks
  • Proven track record of designing and leading initiatives to enhance security controls and processes
  • Extensive experience collaborating with and managing expectations of diverse stakeholders, including business unit leaders, technical teams, and 2nd and 3rd line functions (e.g., Information Security Compliance, Operational Risk, Internal Audit, Regulators)
  • Strong understanding of evolving cyber threat landscapes, regulatory requirements (e.g., NIST, ISO 27001, GLBA), and industry best practices
  • Proficient in maintaining risk and control frameworks, including Manager’s Control Assessment (MCA), specifically for Cyber & Information Security risks
  • Exceptional communication and presentation skills, with the ability to articulate complex cyber risk concepts and their business impact to senior management and governance committees
  • Ability to act as a primary liaison for all audit and regulatory engagements pertaining to Cyber & Information Security
  • Strong leadership capabilities with experience in leading and mentoring risk management professionals
  • Bachelor's degree required
Job Responsibility
Job Responsibility
  • Proactively identify and assess evolving Cyber & Information Security risks across the business and technology landscape
  • Design and lead strategic initiatives to enhance cyber and information security controls and processes, ensuring alignment with risk appetite
  • Collaborate effectively with business unit leaders and diverse stakeholders to embed robust cyber risk management practices into business operations
  • Partner with 2nd line functions (e.g., Information Security Compliance, Operational Risk Management) to interpret and apply cyber risk requirements and policies accurately
  • Engage with 3rd line functions (e.g., Internal Audit, Compliance Assurance) to facilitate independent assessments, address findings, and drive resolution of cyber and information security issues
  • Maintain comprehensive oversight of cyber risk posture through continuous monitoring of metrics, activity, and corrective action plan execution
  • Prepare and present clear, concise updates on emerging cyber risks, control effectiveness, and strategic enhancements to senior management and governance committees
  • Ensure rigorous adherence to information security policies and regulatory requirements, including maintaining a robust Manager’s Control Assessment (MCA) for Cyber & Information Security
  • Serve as a primary liaison for all internal and external audit engagements related to Cyber & Information Security
  • Lead and mentor a team focused on cyber risk assessment, regulatory compliance, and efficient reporting and resolution of security-related matters
What we offer
What we offer
  • Generous holiday allowance starting at 27 days plus bank holidays
  • increasing with tenure
  • A discretional annual performance related bonus
  • Private medical insurance packages to suit your personal circumstances
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Fulltime
Read More
Arrow Right

Head of Cyber Security Operations Process Strategy and Optimization

The Cyber Security Operations (CSO) organization is seeking a highly motivated a...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in cybersecurity, technology risk management, or a related field
  • Extensive experience in Cyber Security Operations is highly preferred
  • Proven track record of leading large-scale business process re-engineering, process design, and optimization initiatives with measurable results
  • Demonstrated expertise in developing service maps, process documentation, and workflows using technologies such as Visio, JIRA, and other workflow management tools
  • Strong knowledge of continuous improvement models (e.g., Six Sigma, Lean) and their practical application in a technology or security environment
  • Experience in identifying and implementing automation and AI solutions, with a firm understanding of best practices and their impact on operational efficiency
  • Exceptional ability to identify financial and efficiency opportunities within complex operational processes
  • Proven leadership skills with the ability to influence and partner with senior stakeholders across a global organization
  • Excellent communication, presentation, and negotiation skills, with the ability to articulate complex concepts to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Act as a direct transformation partner to CSO operational teams, driving a strategic agenda focused on operational excellence, efficiency, and scalability
  • Lead the identification, design, and execution of high-impact opportunities for process re-engineering
  • Develop, maintain, and govern a comprehensive inventory of all CSO Services, their supporting processes, and their interrelationships
  • Define, monitor, and report on strategic metrics for both operational performance and risk posture
  • Serve as the central hub for identifying, vetting, and prioritizing AI and automation candidates
  • Champion and embed methodologies like Six Sigma to foster a culture of operational excellence
  • Build and maintain strong relationships with senior leaders and operational teams across CSO
  • Appropriately assess risk when business decisions are made
  • Drive compliance with applicable laws, rules, and regulations
  • Lead business process re-engineering and operational excellence efforts
What we offer
What we offer
  • Competitive base salary, annually reviewed
  • Hybrid working model
  • Business casual workplace
  • Additional benefits to support well-being, growth, and work-life balance
  • Fulltime
Read More
Arrow Right

Cyber and Information Security Risk Manager, Senior Vice President

This role is critical for safeguarding the bank's financial stability and sustai...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant progressive experience in Cyber & Information Security Risk Management, IT Risk, Security Compliance, or IT Audit, with significant experience in a financial services environment
  • Demonstrated expertise in identifying, assessing, measuring, monitoring, and reporting on complex cyber and information security risks
  • Proven track record of designing and leading initiatives to enhance security controls and processes
  • Extensive experience collaborating with and managing expectations of diverse stakeholders, including business unit leaders, technical teams, and 2nd and 3rd line functions
  • Strong understanding of evolving cyber threat landscapes, regulatory requirements (e.g., NIST, ISO 27001, GLBA), and industry best practices
  • Proficient in maintaining risk and control frameworks, including Manager’s Control Assessment (MCA), specifically for Cyber & Information Security risks
  • Exceptional communication and presentation skills, with the ability to articulate complex cyber risk concepts and their business impact to senior management and governance committees
  • Ability to act as a primary liaison for all audit and regulatory engagements pertaining to Cyber & Information Security
  • Strong leadership capabilities with experience in leading and mentoring risk management professionals
  • Bachelor's degree required
Job Responsibility
Job Responsibility
  • Proactively identify and assess evolving Cyber & Information Security risks across the business and technology landscape
  • Design and lead strategic initiatives to enhance cyber and information security controls and processes, ensuring alignment with risk appetite
  • Collaborate effectively with business unit leaders and diverse stakeholders to embed robust cyber risk management practices into business operations
  • Partner with 2nd line functions to interpret and apply cyber risk requirements and policies accurately
  • Engage with 3rd line functions to facilitate independent assessments, address findings, and drive resolution of cyber and information security issues
  • Maintain comprehensive oversight of cyber risk posture through continuous monitoring of metrics, activity, and corrective action plan execution
  • Prepare and present clear, concise updates on emerging cyber risks, control effectiveness, and strategic enhancements to senior management and governance committees
  • Ensure rigorous adherence to information security policies and regulatory requirements, including maintaining a robust Manager’s Control Assessment (MCA) for Cyber & Information Security
  • Serve as a primary liaison for all internal and external audit engagements related to Cyber & Information Security
  • Lead and mentor a team focused on cyber risk assessment, regulatory compliance, and efficient reporting and resolution of security-related matters
What we offer
What we offer
  • Generous holiday allowance starting at 27 days plus bank holidays
  • increasing with tenure
  • A discretional annual performance related bonus
  • Private medical insurance packages to suit your personal circumstances
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Fulltime
Read More
Arrow Right
New

Security Manager

As we continue to grow, we're looking for an experienced Security Manager to lea...
Location
Location
United Kingdom , Newcastle upon Tyne
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in cyber security, information security, governance, risk, compliance, or security leadership roles
  • Proven experience developing and delivering cyber security strategies and roadmaps
  • Strong knowledge of security governance frameworks, risk management, and operational security principles
  • Experience managing security policies, controls, KPIs, reporting, and compliance activities
  • A good understanding of cloud platforms, infrastructure security, networking, and enterprise technology environments
  • Experience overseeing security incidents and operational risk management
  • Strong stakeholder management skills with the ability to influence at all levels of the business
  • Experience leading, coaching, and developing teams
  • Knowledge of modern security tooling including SIEM, SOAR, EDR/XDR, vulnerability management, threat intelligence, cloud security platforms, automation, and AI-enabled security solutions
Job Responsibility
Job Responsibility
  • Define and evolve our cyber security strategy and operating model
  • Lead the delivery of our security roadmap and continuous improvement initiatives
  • Own security governance, policies, standards, controls, and reporting frameworks
  • Drive security risk management and compliance activities across the organisation
  • Provide strategic oversight of security operations, incident management, and resilience planning
  • Lead and develop a high-performing Security team
  • Partner with technology and business teams to embed security into projects and operational processes
  • Evaluate and adopt modern security technologies, automation, cloud security capabilities, and AI-enabled security solutions
  • Build strong relationships with stakeholders and provide clear security reporting and insight to senior leadership
  • Champion a positive security culture through awareness, education, and engagement initiatives
What we offer
What we offer
  • Enhanced flexibility and working from anywhere
  • Birthday off
  • Annual wellbeing allowance
  • Discounts portal
  • Private Counselling with a weekly confidential helpline
  • Simplyhealth private healthcare plan
  • £150 Wellbeing Allowance per year
  • Working elsewhere policy (4 weeks per year)
  • Buy and sell annual leave scheme (upto 3 days per year)
  • Fulltime
Read More
Arrow Right