Favourite

Cyber Security Risk Manager

  • Reference IP30896-KG-JS
  • Salary £60,000 - £80,000
  • Location Cardiff
  • Job type Permanent

About the company…
Traditionally not known for their technical capabilities our client are completing multiple transformations. The technical teams keep the company at the forefront of technology and as the company scales in projects and size, they have an exciting IT department that are constantly thinking of new ways to improve their functions.

Within the security team, they are creating a secure and robust environment where they can protect their internal and external users. This position is working within the leadership team of the company; managing and improving the risk management services of the team to make sure that all areas of the business are following policies, procedures and guidelines to mitigate against potential threats.

About you…
You will have a strong background within IT security, focussed on risk management and been leading a team (or company) previously. You will be familiar with multiple assessment methodologies or frameworks, be clear on relevant guidelines / frameworks to follow and be able to work across multiple teams within a company; advising stakeholders effectively on risk management whilst being able to collaborate with technical teams to implement and maintain the controls.

What you’ll be doing…
As the Cyber Security Risk Manager you will lead a team of dedicated risk professionals; building the teams capabilities, improving their knowledge and helping to implement risk awareness across the entire wider business. You will implement policies, training and controls to improve reporting tools on risk, look at data flows and potential risks within the company (and there’s a bucket load of data!), take threat intelligence advise into HLD and LLD with the architecture team and be part of a team preparing business impact assessments.

Your team will identify threat sources, assess the risk to the business and ensure that controls are in place to mitigate against these as much as possible. If they do occur, you’ll also create disaster recovery and business continuity strategies to make sure that the impact is not crucial.

What we’re ideally looking for…
* A strong background within risk management; looking at control frameworks, risk assessments and methodologies.
* Ability to, or already, leading a team with great interpersonal skills that can work across the entire organisation.
* Experience working within a technical field within cyber security; architecture, technical knowledge etc.
* A good level of experience multiple governance frameworks and accreditations; ISO27001, NIST, Cyber Essentials, GPDR etc
* Ideally certified in CRISC, CISM, CISSP etc.

Our client are flexible on experience, obviously the more you have the better but if you see this role as the next step in your career feel free to reach out and apply; as long as you’ve got a passion for cyber security, a good base knowledge our client are happy to develop your skills further.

Next steps…
Apply, apply and apply, we’ll see how suitable you are and then get in touch to tell you more about the opportunity

Sign up for industry updates