CrawlJobs Logo
360 Resourcing Solutions Logo 360 Resourcing Solutions · IT - Administration

Cybersecurity Risk & Compliance Manager

United Kingdom, Warrington 55000.00 - 65000.00 GBP / Year · Job Posted January 04, 2026
Apply Position
Job Link Share

Job Description

Our new Security, Governance, Risk and Compliance Manager would be responsible for ensuring effective frameworks, policies, governance, and risk management are in place to protect the integrity and confidentiality of information within our award-winning cloud-based software. The role is key to developing and maintaining internal control framework and will guide the evolution of our control mechanisms and governance processes and will help maintain a suitable security posture.

Job Responsibility

  • Driving major change initiatives to facilitate the design and implementation of appropriate control mechanisms, security initiatives and governance processes to pragmatically reduce risk
  • Developing, managing and reviewing the risk and security metrics and governance frameworks, standard operating procedures and other quality management documents
  • Conducting and hosting internal and external audits to ensure compliance is adhered to
  • Review the Talos360 processes to ensure they add value and contribute to mitigating risks
  • Overall responsibility for the information, security and management system to maintain ISO27001 compliance and deliver improvements
  • Supporting internal teams with GDPR compliance and improvements
  • Defining internal policies and procedures and working with different internal teams to implement
  • To build effective, supportive relationships with key stakeholders to facilitate and develop the company and regulatory culture

Requirements

  • Previous experience in the review or risk, security and governance frameworks
  • Comfortable building relationships with stakeholders across multiple teams and levels within the business, defining internal policies and procedures
  • Understanding of Infosec best practice and cybersecurity essentials and an understanding of vulnerability operations such as scanning, and remediation
  • Experience working with relevant regulations, standards, and requirements (ISO27001, GDPR, DSP Toolkit and Cyber Essentials+)
  • Ideally experienced with Microsoft Azure or similar
  • Previous experience within a similar role within a SAAS would be advantageous

Nice to have

  • Ideally experienced with Microsoft Azure or similar
  • Previous experience within a similar role within a SAAS would be advantageous

What we offer

  • hybrid working style (3 days from our office and 2 days from home per week)
  • many social and business events held throughout the business year
360 Resourcing Solutions - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cybersecurity Risk & Compliance Manager

8 matching positions

Cybersecurity Risk and Controls Framework Expert

Cybersecurity Risk and Controls Framework Expert to analyse the regulatory compl...
Location
Location
United States , Spring
Salary
Salary:
105500.00 - 243000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Information Technology, Risk Management or a related field, or equivalent experience
  • CISSP, CRISC, or similar certification
  • 5-7 years of experience in Information Security, IT Governance, and/or Risk Management
  • 5+ years of experience working with various industry standards and frameworks on risks and controls (e.g. ISO 27001, NIST CSF, COBIT)
  • Expert in a broad range of Information Security domains (e.g., Application Security, Cloud Security, Network Security, Data Security, Infrastructure Security)
  • Strong understanding of cybersecurity control frameworks (e.g., NIST CSF, ISO 27001)
  • Proven experience in risk assessments and analysis
  • Proven experience in defining and implementing cybersecurity policies, standards and guidelines across multiple platforms
  • Strong organizational skills and attention to detail
  • Ability to work effectively with technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Support Governance, Risk and Compliance (GRC) leadership in delivering various risk overview summaries
  • Contribute to the development of the Cyber risk governance framework
  • Facilitating a gap analysis of the current processes against the Risk management framework
  • Provide subject matter expertise on the control framework, policies, standards and guidelines
  • Analyse the current suite of controls against the control framework
  • Ensure that changes to risk governance frameworks are effectively communicated
  • Work with regional representatives to coordinate the scanning for regulatory changes related to cybersecurity
  • Provide expert opinion on HPE's risk and effectiveness of our policies and standards
  • Support the handling of questions pertaining to cyber policies and standards from regulators, partners and customers
  • Deliver presentations and updates to key business and technology stakeholders
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Cybersecurity Risk and Controls Framework Expert

We are seeking a Cybersecurity Risk and Controls Framework Expert to analyze reg...
Location
Location
United States , Spring
Salary
Salary:
105500.00 - 243000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expert in a broad range of Information Security domains (e.g., Application Security, Cloud Security, Network Security, Data Security, Infrastructure Security)
  • Strong understanding of cybersecurity control frameworks (e.g., NIST CSF, ISO 27001)
  • Proven experience in risk assessments and analysis
  • Proven experience in defining and implementing cybersecurity policies, standards and guidelines across multiple platforms
  • Strong organizational skills and attention to detail
  • Ability to work effectively with technical and non-technical stakeholders
  • Excellent documentation, communication, and problem-solving skills
Job Responsibility
Job Responsibility
  • Support Governance, Risk and Compliance leadership in delivering various risk overview summaries
  • Contribute to the development of the Cyber risk governance framework by leveraging existing frameworks
  • Facilitate a gap analysis of current processes against the Risk management framework
  • Provide subject matter expertise on the control framework, policies, standards and guidelines
  • Analyze current controls against the control framework
  • Ensure effective communication of changes to risk governance frameworks
  • Work with regional representatives to coordinate regulatory scanning
  • Provide expert opinion on HPE’s risk and effectiveness of policies
  • Handle questions on cyber policies and standards
  • Deliver presentations and updates to key stakeholders
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Security Strategy and Risk Management Head of Department

The Security Strategy and Risk Management Head of Department is a senior leaders...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across Information Security, GRC/Risk Management, customer/vendor security management and/or strategic operations
  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Administration or a related discipline
  • Excellent stakeholder management, communication, and leadership skills
  • Demonstrated experience working across multi-disciplinary teams to achieve common objectives
  • Proficient in English for effective communication and coordination
Job Responsibility
Job Responsibility
  • Lead enterprise-wide risk assessment, risk issue management, and risk exception management
  • Maintain and enhance risk management frameworks aligned with industry best practices
  • Deliver insightful, data-driven risk reporting to senior leadership
  • Oversee the Information Security compliance and control assurance program
  • Lead coordination of internal and external audits, assessments, and certification processes
  • Lead the Third-Party Risk Management (TPRM) program
  • Oversee creation, governance, maintenance, and communication of Information Security policies, standards, and procedures
  • Direct the Information Security Training and Awareness program
  • Partner with the CISO to define and maintain the Information Security strategic roadmap
  • Lead budget planning, forecasting, tracking, and optimization for the full Information Security organization
  • Fulltime
Read More
Arrow Right

Cybersecurity Project Manager

We are strengthening our Cybersecurity Service and looking for an experienced pr...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
https://www.inetum.com Logo
Inetum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s degree in Cybersecurity, Information Systems, or related field
  • Minimum 5 years in cybersecurity roles with strong knowledge of information systems
  • Security audits, IAM, data protection tools (Guardium, Varonis)
  • Knowledge of regulations and standards: GDPR, DORA, ISO 27001, NIST
  • SOC environments, monitoring tools, vulnerability management
  • Risk analysis and mitigation
  • Strong project coordination and reporting skills
  • Excellent communication with technical and business teams
  • Ability to manage multiple priorities
Job Responsibility
Job Responsibility
  • Coordinate and follow up on internal and external cybersecurity audits
  • Ensure compliance with regulatory frameworks (e.g., DORA) and internal standards
  • Manage and support technical projects such as SOC migration, IAM environment configuration and enhancements, and data protection solutions (Guardium, Varonis)
  • Monitor phishing campaigns and vulnerability management
  • Prepare consolidated project plans, technical documentation, and compliance reports
  • Participate in governance meetings and provide clear reporting to stakeholders
  • Fulltime
Read More
Arrow Right

Compliance Analyst

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to...
Location
Location
United States , Remote
Salary
Salary:
Not provided
insightsoftware.com Logo
insightsoftware
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field
  • Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies
  • Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests
  • Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles
  • A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management
  • Experience with third-party screening tools and vendor risk management platforms
  • Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNowMetricStream)
Job Responsibility
Job Responsibility
  • Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics
  • Conduct secondary screening of third parties (vendors, partners, customers) , and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations)
  • Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs")
  • Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA)
  • Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries
  • Support privacy management tools and platforms for consent management and privacy workflow automation
  • Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring
  • Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking
  • Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance
  • Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls
Read More
Arrow Right

Regulatory Project Manager

Regulatory Project Manager role focusing on AI, Cyber, Cloud, and Data complianc...
Location
Location
Salary
Salary:
135000.00 - 310500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in law, cyber security or business administration and relevant experience
  • Executive level communication skills
  • Strategic mindset and tactical implementation skills
  • Strong attention to detail and excellent organizational skills
  • Demonstrated ability to take initiative, receive direction and feedback, and adjust as needed
  • Willingness to take responsibility for assigned work, seeing it through to completion
  • Ability to manage time effectively, juggling multiple tasks, occasionally under time pressure
  • Several years of experience in Compliance and Risk Management
Job Responsibility
Job Responsibility
  • Implementing end-to-end enterprise-level regulatory requirements in an operationally efficient manner
  • Developing and maintaining the end-to-end strategy for each issue, in partnership with legal, policy, and the BU's and functions impacted
  • Ensuring corporate strategy is informed by the complex regulatory landscape impacting the company
  • Ensuring regulatory readiness
  • Conducting regulatory risk assessments and gap analyses
  • Designing and deploying strategies and solutions to address gaps and risk
  • Support the development and maintenance of pan-HPE policies and standards necessary to ensure regulatory compliance
  • Providing training for impacted parties
  • Support the management of pan-HPE process assurance (audits, testing, etc)
  • Support the development and deployment of pan-HPE regulatory workflow management tools to automate workflows and serve as pan-HPE repository
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Flexible work-life balance
  • Competitive salary
  • Participation in shared values and purpose
  • Equal opportunities
  • Constantly evolving career growth
  • Fulltime
Read More
Arrow Right

Cybersecurity GRC Tool Analyst

Cybersecurity GRC Tool Analyst to analyse the technology requirements of the var...
Location
Location
Canada
Salary
Salary:
97600.00 - 181000.00 CAD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Information Technology, Risk Management or a related field, or equivalent experience
  • CISSP, ISO 27001 Lead Implementer, or similar certification
  • GRC platform certifications (e.g., Archer Certified Professional, ServiceNow GRC, Drata Admin, OneTrust Certified)
  • ITIL Foundation (a plus)
  • 5-7 years of experience in Information Security, IT Governance, or Risk Management
  • 5+ years of experience working with GRC platforms (e.g., Archer, ServiceNow GRC, AuditBoard, Drata, OneTrust, or similar)
  • Expert at working with Governance Risk & Compliance platforms
  • Strong understanding of cybersecurity and compliance frameworks (e.g., NIST CSF, ISO 27001)
  • Experience with basic integrations and workflow configurations
  • Strong organizational skills and attention to detail
Job Responsibility
Job Responsibility
  • Administer and maintain the GRC platform, including configurations, workflows, and reporting dashboards
  • Support the integration of the GRC tool with key enterprise systems (e.g., asset inventory, ticketing systems, vulnerability management tools)
  • Collaborate with cybersecurity, policy, risk, compliance, and IT teams to capture business requirements and translate them into functional tool capabilities
  • Assist in onboarding and managing control frameworks (e.g., ISO 27001, SOC 2, NIST CSF, FedRAMP) within the platform
  • Monitor data quality, ensure accurate reporting, and maintain platform integrity
  • Support control owners and stakeholders in using the GRC platform for assessments, evidence collection, and tracking remediation activities
  • Maintain user roles and permissions, ensuring proper access management
  • Document processes, workflows, and platform configurations
  • Provide training and guidance to end users on tool functionality and best practices
  • Coordinate with tool vendors for issue resolution, upgrades, and enhancements
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive benefits suite supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

IT Program Manager – Enterprise Modernization & Cybersecurity

At Rackner, we deliver advanced technical and programmatic solutions that modern...
Location
Location
United States , Mechanicsburg
Salary
Salary:
Not provided
rackner.com Logo
Rackner
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or higher in Computer Science, Information Systems, Engineering, or a related field
  • 5+ years leading IT, software engineering, or systems modernization programs with measurable success
  • Proven record managing complex, compliance-driven IT programs in highly regulated or enterprise-grade environments
  • Deep expertise in cybersecurity, risk management, and accreditation frameworks (RMF, NIST, ITIL)
  • Strong leadership, communication, and stakeholder management skills
  • Active Secret Security Clearance (IT-II) Required
Job Responsibility
Job Responsibility
  • Lead high-visibility IT modernization programs, managing scope, cost, risk, and performance across multiple projects
  • Translate complex requirements into actionable strategies, guiding architecture, cybersecurity, and system lifecycle management
  • Establish and enforce program governance, including schedules, KPIs, and risk mitigation for distributed teams
  • Ensure compliance and cybersecurity excellence, aligning solutions with RMF, NIST, and IAM frameworks
  • Engage and influence senior stakeholders, delivering executive-ready insights and performance dashboards
  • Mentor and empower cross-functional teams, fostering collaboration, accountability, and high performance across engineering, cybersecurity, and operations
  • Drive Agile and DevSecOps adoption, leveraging automation and cloud-native tools to accelerate secure delivery
  • Produce high-quality documentation and reporting, ensuring transparency, compliance, and strategic alignment
What we offer
What we offer
  • 401(k) with 100% match up to 6%
  • medical/dental/vision insurance
  • generous PTO
  • short- & long-term disability
  • life insurance
  • weekly pay
  • professional development reimbursement
  • home office stipend
  • Fulltime
Read More
Arrow Right