Job Title: Cyber Security Cloud Assurance Specialist Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role Salary: Circa £50,000 dependent on experience What you'll be doing: Delivering cloud assurance services to the business, Enterprise IT, IM&T Sector and Group Functions Analysis of cloud solutions, providing control recommendations (covering technical / physical / procedural / personnel) to ensure cloud solutions are compliant with internal / external standards and regulations Conducting security risk assessments, working alongside stakeholders / Cloud Service Providers to ensure identified risks are reduced to acceptable levels, advising appropriate mitigating requirements where necessary Delivering documentation to demonstrate compliance to internal and external stakeholders Assessment of and provision of control effectiveness in managing information security risk Supporting development of strategy and continual service improvement for the assurance function & business cloud adoption Your skills and experiences: Essential: Infrastructure, IT and / or IT Security experience associated with the management of cloud platforms, security risk and architectures Experience of cloud administration, security or auditing Working knowledge of Vulnerability Management , particularly in prioritisation and remediation Working knowledge of industry security standards such as; NCSC Cloud Principles , Cloud Security Alliance Desirable: Threats, risks, vulnerabilities and risk mitigations strategies and techniques, specifically for Cloud services Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Cloud Security Assurance Team: As part of the Cloud Security Assurance team, you will act as a subject matter expert in relation to cloud security, working closely with a variety of projects throughout the organisation. You will be responsible for providing security input, technical oversight, advice and assurance, to ensure cloud services utilised by the organisation are implemented and operated securely. Progressing policies and procedures, this role has great exposure across multiple business units within BAE Systems in a tight-knit team and friendly working environment. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc .) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role , to allow for meaningful security vetting checks. Closing Date: 29th October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role . Therefore, if you are interested, please submit your application as early as possible.
Oct 17, 2025
Full time
Job Title: Cyber Security Cloud Assurance Specialist Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role Salary: Circa £50,000 dependent on experience What you'll be doing: Delivering cloud assurance services to the business, Enterprise IT, IM&T Sector and Group Functions Analysis of cloud solutions, providing control recommendations (covering technical / physical / procedural / personnel) to ensure cloud solutions are compliant with internal / external standards and regulations Conducting security risk assessments, working alongside stakeholders / Cloud Service Providers to ensure identified risks are reduced to acceptable levels, advising appropriate mitigating requirements where necessary Delivering documentation to demonstrate compliance to internal and external stakeholders Assessment of and provision of control effectiveness in managing information security risk Supporting development of strategy and continual service improvement for the assurance function & business cloud adoption Your skills and experiences: Essential: Infrastructure, IT and / or IT Security experience associated with the management of cloud platforms, security risk and architectures Experience of cloud administration, security or auditing Working knowledge of Vulnerability Management , particularly in prioritisation and remediation Working knowledge of industry security standards such as; NCSC Cloud Principles , Cloud Security Alliance Desirable: Threats, risks, vulnerabilities and risk mitigations strategies and techniques, specifically for Cloud services Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Cloud Security Assurance Team: As part of the Cloud Security Assurance team, you will act as a subject matter expert in relation to cloud security, working closely with a variety of projects throughout the organisation. You will be responsible for providing security input, technical oversight, advice and assurance, to ensure cloud services utilised by the organisation are implemented and operated securely. Progressing policies and procedures, this role has great exposure across multiple business units within BAE Systems in a tight-knit team and friendly working environment. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc .) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role , to allow for meaningful security vetting checks. Closing Date: 29th October 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role . Therefore, if you are interested, please submit your application as early as possible.
Cyber Security Architect - Defence Sector Location: Newport (Typically 4 days per week) Clearance Required: SC Clearance Required Type: Full-Time Salary: Inside IR35 - from 63.00 per hour (PAYE/LTD option available) Belcan are currently supporting one of our long standing clients, who are seeking a Cyber Security Architect with a strong background in secure systems design and defence standards to join their growing team. This is a unique opportunity to work on mission-critical platforms, applications, and networks, ensuring they are secure by design and compliant with the highest standards. The client is ideally looking for a specialist in the Security space, with ideally around 5+ years of experience. They are one of the global leaders in aerospace innovation, and commercial aircraft. They will be looking for someone who has experience across the following; Key Responsibilities Design, develop, and maintain secure system architectures for MOD platforms and networks. Ensure alignment with standards including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain security documentation such as Security Architecture Documents, Risk Assessments, and Management Plans. Lead secure design reviews and contribute to engineering assurance gates. Liaise with MOD, NCSC, and other stakeholders to support security assurance processes. Collaborate with engineering and development teams to embed security from the outset. Stay ahead of evolving threat landscapes and propose mitigation strategies. Essential Skills & Experience Minimum 6 years' experience in cyber security architecture within defence, aerospace, or critical national infrastructure. Strong knowledge of MOD security requirements (JSP 440, JSP 604, DEF STANs). Proven experience in Secure by Design principles and secure development lifecycles. Deep understanding of security architectures, processes, and compliance frameworks (ISO 27001, CE/CE+). Experience with MOD security assurance artefacts and risk management frameworks (HMG IS1/IS2, NIST RMF). Excellent communication skills - able to engage technical and non-technical stakeholders. Must hold current SC Clearance. Certifications (Preferred) CISSP - Certified Information Systems Security Professional CISM - Certified Information Security Manager SABSA, TOGAF, or equivalent architecture certifications If you are interested in the role above, please "apply now" for further information This vacancy is being advertised by Belcan
Oct 17, 2025
Contractor
Cyber Security Architect - Defence Sector Location: Newport (Typically 4 days per week) Clearance Required: SC Clearance Required Type: Full-Time Salary: Inside IR35 - from 63.00 per hour (PAYE/LTD option available) Belcan are currently supporting one of our long standing clients, who are seeking a Cyber Security Architect with a strong background in secure systems design and defence standards to join their growing team. This is a unique opportunity to work on mission-critical platforms, applications, and networks, ensuring they are secure by design and compliant with the highest standards. The client is ideally looking for a specialist in the Security space, with ideally around 5+ years of experience. They are one of the global leaders in aerospace innovation, and commercial aircraft. They will be looking for someone who has experience across the following; Key Responsibilities Design, develop, and maintain secure system architectures for MOD platforms and networks. Ensure alignment with standards including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain security documentation such as Security Architecture Documents, Risk Assessments, and Management Plans. Lead secure design reviews and contribute to engineering assurance gates. Liaise with MOD, NCSC, and other stakeholders to support security assurance processes. Collaborate with engineering and development teams to embed security from the outset. Stay ahead of evolving threat landscapes and propose mitigation strategies. Essential Skills & Experience Minimum 6 years' experience in cyber security architecture within defence, aerospace, or critical national infrastructure. Strong knowledge of MOD security requirements (JSP 440, JSP 604, DEF STANs). Proven experience in Secure by Design principles and secure development lifecycles. Deep understanding of security architectures, processes, and compliance frameworks (ISO 27001, CE/CE+). Experience with MOD security assurance artefacts and risk management frameworks (HMG IS1/IS2, NIST RMF). Excellent communication skills - able to engage technical and non-technical stakeholders. Must hold current SC Clearance. Certifications (Preferred) CISSP - Certified Information Systems Security Professional CISM - Certified Information Security Manager SABSA, TOGAF, or equivalent architecture certifications If you are interested in the role above, please "apply now" for further information This vacancy is being advertised by Belcan
Security Architect 6 month contract Based in Newport Offering 85ph Inside IR35 Do you have experience in Secure by Design? Do you have knowledge of MOD security requirements? Do you want to work with an industry-leading company? If your answer to these is yes, then this could be the role for you! As the Security Architect, you will be working alongside a market-leading Defence and Aerospace company who are constantly growing and developing. They are always looking to bring on new talents such as yourself and further develop your skills to enable you to grow within the company and industry. You will be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans Lead and support secure design reviews and contribute to engineering assurance gates Liaise with security stakeholders (MOD, NCSC etc.), Information Assurance teams, and other stakeholders to support security assurance processes Collaborate with engineering and development teams to ensure security requirements are met from the outset Keep up to date of evolving threat landscapes and propose mitigations aligned with system requirements Your skillset may include: Proven experience in cyber security architecture within a defence, aerospace, or critical national infrastructure environment Strong knowledge of MOD security requirements (e.g. JSP 440, JSP 604, DEF STANs) Good working knowledge and experience of Secure by Design A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE/CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1/IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Security Architect 6 month contract Based in Newport Offering 85ph Inside IR35 Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
Oct 17, 2025
Contractor
Security Architect 6 month contract Based in Newport Offering 85ph Inside IR35 Do you have experience in Secure by Design? Do you have knowledge of MOD security requirements? Do you want to work with an industry-leading company? If your answer to these is yes, then this could be the role for you! As the Security Architect, you will be working alongside a market-leading Defence and Aerospace company who are constantly growing and developing. They are always looking to bring on new talents such as yourself and further develop your skills to enable you to grow within the company and industry. You will be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans Lead and support secure design reviews and contribute to engineering assurance gates Liaise with security stakeholders (MOD, NCSC etc.), Information Assurance teams, and other stakeholders to support security assurance processes Collaborate with engineering and development teams to ensure security requirements are met from the outset Keep up to date of evolving threat landscapes and propose mitigations aligned with system requirements Your skillset may include: Proven experience in cyber security architecture within a defence, aerospace, or critical national infrastructure environment Strong knowledge of MOD security requirements (e.g. JSP 440, JSP 604, DEF STANs) Good working knowledge and experience of Secure by Design A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE/CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1/IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Security Architect 6 month contract Based in Newport Offering 85ph Inside IR35 Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
Information Security & Compliance Lead Chesterfield 50,000 to 60,000+ Excellent Benefits Your new company Hays Technology are recruiting for an Information Security & Compliance Lead to join a large public sector organisation based in the Chesterfield area. You will be reporting to the Head of Digital, Data & Technology. This is a new role to establish and make your own. Your new role In your new role, you will be responsible for ensuring the security and protection of the organisation's information systems, networks, and data, whilst playing a critical role in developing and implementing information security strategies, policies, and procedures to safeguard the organisation's digital assets and mitigating potential risks. You will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents. What you'll need to succeed Demonstrable experience of implementing and maintaining information security frameworks e.g. ISO27001 within a medium/large sized public sector organisation Solid stakeholder management and mentoring skills Information Security,Cyber Security, Assurance and vulnerability management would be ideal Comprehensive knowledge of Information Security Management Systems with the ability to scope, design, and implement such systems Strong ICT infrastructure, application, and cloud technical skills would be advantageous Evidenced knowledge and understanding of ISO(phone number removed), ITIL, and Prince 2 management practices Ability to lead the workforce, increasing their skills and knowledge in relation to information security What you'll get in return This exciting position is paying between 50,000 and 60,000 and offers an excellent work life balance including: generous annual leave, hybrid working, a public sector employer contribution pension scheme, flexibility, training, and development opportunities. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Oct 15, 2025
Full time
Information Security & Compliance Lead Chesterfield 50,000 to 60,000+ Excellent Benefits Your new company Hays Technology are recruiting for an Information Security & Compliance Lead to join a large public sector organisation based in the Chesterfield area. You will be reporting to the Head of Digital, Data & Technology. This is a new role to establish and make your own. Your new role In your new role, you will be responsible for ensuring the security and protection of the organisation's information systems, networks, and data, whilst playing a critical role in developing and implementing information security strategies, policies, and procedures to safeguard the organisation's digital assets and mitigating potential risks. You will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents. What you'll need to succeed Demonstrable experience of implementing and maintaining information security frameworks e.g. ISO27001 within a medium/large sized public sector organisation Solid stakeholder management and mentoring skills Information Security,Cyber Security, Assurance and vulnerability management would be ideal Comprehensive knowledge of Information Security Management Systems with the ability to scope, design, and implement such systems Strong ICT infrastructure, application, and cloud technical skills would be advantageous Evidenced knowledge and understanding of ISO(phone number removed), ITIL, and Prince 2 management practices Ability to lead the workforce, increasing their skills and knowledge in relation to information security What you'll get in return This exciting position is paying between 50,000 and 60,000 and offers an excellent work life balance including: generous annual leave, hybrid working, a public sector employer contribution pension scheme, flexibility, training, and development opportunities. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Cyber Security Consultant - Permanent 75,000- 85,000 + Benefits We are seeking a highly skilled and experienced Cyber Security Consultant to join a dynamic and growing consultancy delivering strategic cyber solutions across Defence, Government, and Critical National Infrastructure sectors. This is a permanent position offering a competitive salary, flexible working arrangements, and a comprehensive benefits package. Role Overview As a Cyber Security Consultant, you will act as a Subject Matter Expert (SME) , providing specialist advice and support to clients across a range of complex and sensitive environments. You will be responsible for developing and implementing cyber security strategies, conducting risk assessments, producing technical documentation, and advising on secure system design and assurance. The role requires strong stakeholder engagement, technical leadership, and the ability to work collaboratively within multi-disciplinary teams. This is a client-facing role that demands a high level of professionalism, technical expertise, and the ability to communicate clearly and confidently with stakeholders at all levels. Key Responsibilities Provide best practice cyber security advice and hands-on support to clients across Defence and secure sectors. Develop cyber security strategies, policies, processes, and implementation plans tailored to client needs. Conduct technical risk assessments and recommend appropriate mitigations. Produce high-quality security documentation including RMADS, SyOPs, and Security Architecture Documents. Advise on suitable cyber assessment methods, including penetration testing and vulnerability analysis. Provide assurance on the effective implementation of cyber security controls and frameworks. Develop incident response plans and support clients during security breaches, including crisis management and media handling. Communicate clearly and confidently in written reports, presentations, and day-to-day interactions. Collaborate with internal and external teams, often across multiple organisations. Mentor junior colleagues and contribute to knowledge sharing and capability development. Build and maintain strong client relationships, acting as a trusted advisor. Support business development activities, including proposal writing and client engagement. Required Experience & Skills Proven experience delivering cyber security consultancy within Defence, Government, or secure environments. Strong understanding of Secure by Design principles and Enterprise Architecture frameworks (e.g. TOGAF, MODAF). Familiarity with NSCS guidance, Information Assurance standards, and MoD security processes (JSPs, Defcons). Technical expertise in IT security, cloud security, system hardening, boundary controls, cryptography, PKI, and protective monitoring. Experience producing RMADS, SyOPs, and other formal security documentation. Knowledge of agile delivery methodologies and working within agile teams. Excellent communication and stakeholder engagement skills. Ability to work independently and as part of a collaborative team. Essential Requirements UK resident with the right to work. Eligible for SC clearance (or already cleared); DV clearance is highly desirable. Willingness to travel to client sites when required (travel expenses covered). Commitment to continuous professional development and learning. Benefits Package Salary: 75,000- 85,000 depending on experience. Annual bonus scheme. Generous pension and life assurance. 25 days annual leave with options to tailor to personal circumstances. Additional 10 days leave for military reservists. Up to 2 paid volunteering days per year. Individual healthcare cover. Flexible working arrangements - remote or office-based. Access to the latest secure technology and tools. Investment in personal development and training. Relocation bonus available for graduates. Vibrant social culture with regular team events. Company Culture The organisation prides itself on fostering a culture of excellence, integrity, and inclusion. It is committed to creating an environment where talented professionals can thrive, contribute meaningfully, and grow their careers. Diversity of thought, background, and experience is actively encouraged, and the company promotes equal opportunities for all. Employees are empowered to balance their professional and personal lives through flexible working, supportive leadership, and a strong sense of team purpose. The consultancy is known for its collaborative approach, technical depth, and commitment to delivering high-quality outcomes for clients. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Oct 14, 2025
Full time
Cyber Security Consultant - Permanent 75,000- 85,000 + Benefits We are seeking a highly skilled and experienced Cyber Security Consultant to join a dynamic and growing consultancy delivering strategic cyber solutions across Defence, Government, and Critical National Infrastructure sectors. This is a permanent position offering a competitive salary, flexible working arrangements, and a comprehensive benefits package. Role Overview As a Cyber Security Consultant, you will act as a Subject Matter Expert (SME) , providing specialist advice and support to clients across a range of complex and sensitive environments. You will be responsible for developing and implementing cyber security strategies, conducting risk assessments, producing technical documentation, and advising on secure system design and assurance. The role requires strong stakeholder engagement, technical leadership, and the ability to work collaboratively within multi-disciplinary teams. This is a client-facing role that demands a high level of professionalism, technical expertise, and the ability to communicate clearly and confidently with stakeholders at all levels. Key Responsibilities Provide best practice cyber security advice and hands-on support to clients across Defence and secure sectors. Develop cyber security strategies, policies, processes, and implementation plans tailored to client needs. Conduct technical risk assessments and recommend appropriate mitigations. Produce high-quality security documentation including RMADS, SyOPs, and Security Architecture Documents. Advise on suitable cyber assessment methods, including penetration testing and vulnerability analysis. Provide assurance on the effective implementation of cyber security controls and frameworks. Develop incident response plans and support clients during security breaches, including crisis management and media handling. Communicate clearly and confidently in written reports, presentations, and day-to-day interactions. Collaborate with internal and external teams, often across multiple organisations. Mentor junior colleagues and contribute to knowledge sharing and capability development. Build and maintain strong client relationships, acting as a trusted advisor. Support business development activities, including proposal writing and client engagement. Required Experience & Skills Proven experience delivering cyber security consultancy within Defence, Government, or secure environments. Strong understanding of Secure by Design principles and Enterprise Architecture frameworks (e.g. TOGAF, MODAF). Familiarity with NSCS guidance, Information Assurance standards, and MoD security processes (JSPs, Defcons). Technical expertise in IT security, cloud security, system hardening, boundary controls, cryptography, PKI, and protective monitoring. Experience producing RMADS, SyOPs, and other formal security documentation. Knowledge of agile delivery methodologies and working within agile teams. Excellent communication and stakeholder engagement skills. Ability to work independently and as part of a collaborative team. Essential Requirements UK resident with the right to work. Eligible for SC clearance (or already cleared); DV clearance is highly desirable. Willingness to travel to client sites when required (travel expenses covered). Commitment to continuous professional development and learning. Benefits Package Salary: 75,000- 85,000 depending on experience. Annual bonus scheme. Generous pension and life assurance. 25 days annual leave with options to tailor to personal circumstances. Additional 10 days leave for military reservists. Up to 2 paid volunteering days per year. Individual healthcare cover. Flexible working arrangements - remote or office-based. Access to the latest secure technology and tools. Investment in personal development and training. Relocation bonus available for graduates. Vibrant social culture with regular team events. Company Culture The organisation prides itself on fostering a culture of excellence, integrity, and inclusion. It is committed to creating an environment where talented professionals can thrive, contribute meaningfully, and grow their careers. Diversity of thought, background, and experience is actively encouraged, and the company promotes equal opportunities for all. Employees are empowered to balance their professional and personal lives through flexible working, supportive leadership, and a strong sense of team purpose. The consultancy is known for its collaborative approach, technical depth, and commitment to delivering high-quality outcomes for clients. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Job Title: Security Consultant Location: Hybrid (Wiltshire office, circa 2 days pw) Salary: 45,000 - 60,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant role is highly client-facing, requiring excellent communication skills and the ability to collaborate with technical teams. You'll stay ahead of industry developments, contribute to tender responses, and help shape innovative solutions. We are looking for a Security Consultant with experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.
Oct 14, 2025
Full time
Job Title: Security Consultant Location: Hybrid (Wiltshire office, circa 2 days pw) Salary: 45,000 - 60,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant role is highly client-facing, requiring excellent communication skills and the ability to collaborate with technical teams. You'll stay ahead of industry developments, contribute to tender responses, and help shape innovative solutions. We are looking for a Security Consultant with experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.
Job Title: Information Security Assurance & Cyber Specialist Location: London Employment Type: Full-Time The Role We're looking for an Information Security Assurance & Cyber Specialist to support governance, compliance, and day-to-day cyber security operations click apply for full job details
Oct 07, 2025
Full time
Job Title: Information Security Assurance & Cyber Specialist Location: London Employment Type: Full-Time The Role We're looking for an Information Security Assurance & Cyber Specialist to support governance, compliance, and day-to-day cyber security operations click apply for full job details
Role Overview : T V S D is a world leader in testing and product certification. With over 70 years' experience in the UK, T V S D provides peace of mind that products are safe, reliable, and compliant by providing testing, product certification, knowledge services and training to a range of industries covering the Aerospace, Defence, Electronics & Consumer, Machinery, Marine, Medical, Rail and Telecommunications sectors. Working as part of a team of Product Technical Certifiers, you will contribute to the provision of a comprehensive certification service to a wide range of industry sectors. You will be joining T V S D, a leading multinational organisation supporting work for a UK and EU based notified body. The position will allow you to expand your knowledge and skill set with wide-ranging supported training to become a Product Certification Specialist in multiple technology sectors for leading edge products. This role can additionally be expanded into certification scheme offsite auditing depending on background experience with progression to more senior scheme champion positions possible for the future. Duties and responsibilities: Performing desk audits / reviews of regulatory documentation for multiple Product Certification Schemes (RED, FCC, ISEDC, Marine-D, Japanese CAB, MCS). Support customer early-stage testing and certification meetings as the supporting expert. Providing guidance to customers and intercompany networks regarding regulatory requirements and certification processes. Essential Criteria: Qualification to HND (or equivalent level), or the equivalent industry experience, in an electronics/electrical field Experience of product testing or manufacturer regulatory / compliance management within an engineering sector (i.e. wireless communications, EMC, Safety, cybersecurity and RF exposure) Experience of reading and applying technical specifications (for example CEN, CENELEC, ETSI, FCC, ISEDC) Willingness to learn and study new technology types and certification areas Excellent communication skills and ability to multi-task and meet deadlines Good organisational skills and attention to detail Strong ability to work collaboratively with colleagues and customers Computer literate, with a good working knowledge of Microsoft Office Desirable Criteria: Experience of applying RED, Marine-D, FCC, ISEDC, MCS rules Experience of cybersecurity legislative requirements for the RED and upcoming CRA requirements Knowledge of quality management system processes and procedures for example ISO 9001:2015 auditing Knowledge of ISO 17065 Certification requirement Ability to evaluate, and when required, communicate to others new developing technologies Willingness to attend technical committees and meetings to convey regulatory information to others Knowledge of Global Market Access requirements Willingness for occasional foreign travel Further Information: T V S D in the UK offers a competitive salary and benefits package that includes a minimum of 33 days holiday entitlement (for full-time employees, including public holidays), a contributory Group Personal Pension Plan and a non-contributory Group Life Assurance Scheme. We also offer various Salary Exchange/Sacrifice schemes (buying/selling holiday, cycle to work scheme, pensions), incentive schemes and comprehensive wellbeing support (Employee Assistance Programme, Dental Scheme and Occupational Health services). Dependent on their role, employees may also be eligible for hybrid/permanent homeworking, a Company Car/Car Allowance and Private Medical Insurance.
Oct 03, 2025
Full time
Role Overview : T V S D is a world leader in testing and product certification. With over 70 years' experience in the UK, T V S D provides peace of mind that products are safe, reliable, and compliant by providing testing, product certification, knowledge services and training to a range of industries covering the Aerospace, Defence, Electronics & Consumer, Machinery, Marine, Medical, Rail and Telecommunications sectors. Working as part of a team of Product Technical Certifiers, you will contribute to the provision of a comprehensive certification service to a wide range of industry sectors. You will be joining T V S D, a leading multinational organisation supporting work for a UK and EU based notified body. The position will allow you to expand your knowledge and skill set with wide-ranging supported training to become a Product Certification Specialist in multiple technology sectors for leading edge products. This role can additionally be expanded into certification scheme offsite auditing depending on background experience with progression to more senior scheme champion positions possible for the future. Duties and responsibilities: Performing desk audits / reviews of regulatory documentation for multiple Product Certification Schemes (RED, FCC, ISEDC, Marine-D, Japanese CAB, MCS). Support customer early-stage testing and certification meetings as the supporting expert. Providing guidance to customers and intercompany networks regarding regulatory requirements and certification processes. Essential Criteria: Qualification to HND (or equivalent level), or the equivalent industry experience, in an electronics/electrical field Experience of product testing or manufacturer regulatory / compliance management within an engineering sector (i.e. wireless communications, EMC, Safety, cybersecurity and RF exposure) Experience of reading and applying technical specifications (for example CEN, CENELEC, ETSI, FCC, ISEDC) Willingness to learn and study new technology types and certification areas Excellent communication skills and ability to multi-task and meet deadlines Good organisational skills and attention to detail Strong ability to work collaboratively with colleagues and customers Computer literate, with a good working knowledge of Microsoft Office Desirable Criteria: Experience of applying RED, Marine-D, FCC, ISEDC, MCS rules Experience of cybersecurity legislative requirements for the RED and upcoming CRA requirements Knowledge of quality management system processes and procedures for example ISO 9001:2015 auditing Knowledge of ISO 17065 Certification requirement Ability to evaluate, and when required, communicate to others new developing technologies Willingness to attend technical committees and meetings to convey regulatory information to others Knowledge of Global Market Access requirements Willingness for occasional foreign travel Further Information: T V S D in the UK offers a competitive salary and benefits package that includes a minimum of 33 days holiday entitlement (for full-time employees, including public holidays), a contributory Group Personal Pension Plan and a non-contributory Group Life Assurance Scheme. We also offer various Salary Exchange/Sacrifice schemes (buying/selling holiday, cycle to work scheme, pensions), incentive schemes and comprehensive wellbeing support (Employee Assistance Programme, Dental Scheme and Occupational Health services). Dependent on their role, employees may also be eligible for hybrid/permanent homeworking, a Company Car/Car Allowance and Private Medical Insurance.
Job Title: Security Consultant Location: Hybrid (Bristol / Wiltshire office, circa 2 days pw) Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant role is highly client-facing, requiring excellent communication skills and the ability to collaborate with technical teams. You'll stay ahead of industry developments, contribute to tender responses, and help shape innovative solutions. We are looking for a Security Consultant with experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.
Oct 03, 2025
Full time
Job Title: Security Consultant Location: Hybrid (Bristol / Wiltshire office, circa 2 days pw) Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant role is highly client-facing, requiring excellent communication skills and the ability to collaborate with technical teams. You'll stay ahead of industry developments, contribute to tender responses, and help shape innovative solutions. We are looking for a Security Consultant with experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.
Information Security Assurance & Cyber Specialist - Hybrid Our client is urgently looking for an experienced Information Security Assurance & Cyber Specialist to join their team based in London on a permanent basis. Please note, the role is hybrid, with 2-4 days per week on-site. You will assist the Cyber & Information Security Specialist in ensuring our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the Information Security Technology Manager to safeguard the company using the latest and most advanced security tools. This multifaceted role combines security governance and assurance with hands-on technical skills, utilising state-of-the-art security products to proactively protect the firm and its valuable assets. Your organisational skills and responsiveness will be crucial, as you will need to maintain a keen eye for detail and adapt to a flexible work schedule with shifting priorities. A positive, can-do attitude is essential as you tackle various tasks with enthusiasm and diligence. You will be rewarded with an excellent salary, as well as a brilliant benefits package including discretionary bonus, annual leave, pension scheme, private medical cover, life assurance, season ticket loan, cycle to work scheme, discounted gym membership and many, many more perks! Information Security Assurance & Cyber Specialist - Key Skills: Highly experienced in information security governance, risk management, and compliance. Demonstrated experience with developing and implementing information security policies, procedures, and standards. Experience with SOC 2, ISO 27001, NIST 800-53 and GDPR compliance frameworks is highly preferred. Strong understanding of security risk management principles and methodologies. Excellent communication, collaboration, and interpersonal skills. Ability to work independently and as part of a team. Proficient in Microsoft Office Suite and security information management tools. Experience with security awareness and training programs. Experience with GRC (Governance, Risk, and Compliance) tools. Certified Information Systems Security Professional (CISSP) or equivalent certification. Information Security Assurance & Cyber Specialist - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Oct 02, 2025
Full time
Information Security Assurance & Cyber Specialist - Hybrid Our client is urgently looking for an experienced Information Security Assurance & Cyber Specialist to join their team based in London on a permanent basis. Please note, the role is hybrid, with 2-4 days per week on-site. You will assist the Cyber & Information Security Specialist in ensuring our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the Information Security Technology Manager to safeguard the company using the latest and most advanced security tools. This multifaceted role combines security governance and assurance with hands-on technical skills, utilising state-of-the-art security products to proactively protect the firm and its valuable assets. Your organisational skills and responsiveness will be crucial, as you will need to maintain a keen eye for detail and adapt to a flexible work schedule with shifting priorities. A positive, can-do attitude is essential as you tackle various tasks with enthusiasm and diligence. You will be rewarded with an excellent salary, as well as a brilliant benefits package including discretionary bonus, annual leave, pension scheme, private medical cover, life assurance, season ticket loan, cycle to work scheme, discounted gym membership and many, many more perks! Information Security Assurance & Cyber Specialist - Key Skills: Highly experienced in information security governance, risk management, and compliance. Demonstrated experience with developing and implementing information security policies, procedures, and standards. Experience with SOC 2, ISO 27001, NIST 800-53 and GDPR compliance frameworks is highly preferred. Strong understanding of security risk management principles and methodologies. Excellent communication, collaboration, and interpersonal skills. Ability to work independently and as part of a team. Proficient in Microsoft Office Suite and security information management tools. Experience with security awareness and training programs. Experience with GRC (Governance, Risk, and Compliance) tools. Certified Information Systems Security Professional (CISSP) or equivalent certification. Information Security Assurance & Cyber Specialist - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Information Security & Compliance Lead Chesterfield £50,000 to £60,000+ Excellent Benefits Your new company Hays Technology are recruiting for an Information Security & Compliance Lead to join a large public sector organisation based in the Chesterfield area. You will be reporting to the Head of Digital, Data & Technology. This is a new role to establish and make your own. Your new role In your new role, you will be responsible for ensuring the security and protection of the organisation's information systems, networks, and data, whilst playing a critical role in developing and implementing information security strategies, policies, and procedures to safeguard the organisation's digital assets and mitigating potential risks. You will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents. What you'll need to succeed Demonstrable experience of implementing and maintaining information security frameworks eg ISO27001 within a medium/large sized public sector organisation Solid stakeholder management and mentoring skills Information Security,Cyber Security, Assurance and vulnerability management would be ideal Comprehensive knowledge of Information Security Management Systems with the ability to scope, design, and implement such systems Strong ICT infrastructure, application, and cloud technical skills would be advantageous Evidenced knowledge and understanding of ISO270001, ITIL, and Prince 2 management practices Ability to lead the workforce, increasing their skills and knowledge in relation to information security What you'll get in return This exciting position is paying between £50,000 and £60,000 and offers an excellent work life balance including: generous annual leave, hybrid working, a public sector employer contribution pension scheme, flexibility, training, and development opportunities. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.
Oct 01, 2025
Full time
Information Security & Compliance Lead Chesterfield £50,000 to £60,000+ Excellent Benefits Your new company Hays Technology are recruiting for an Information Security & Compliance Lead to join a large public sector organisation based in the Chesterfield area. You will be reporting to the Head of Digital, Data & Technology. This is a new role to establish and make your own. Your new role In your new role, you will be responsible for ensuring the security and protection of the organisation's information systems, networks, and data, whilst playing a critical role in developing and implementing information security strategies, policies, and procedures to safeguard the organisation's digital assets and mitigating potential risks. You will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents. What you'll need to succeed Demonstrable experience of implementing and maintaining information security frameworks eg ISO27001 within a medium/large sized public sector organisation Solid stakeholder management and mentoring skills Information Security,Cyber Security, Assurance and vulnerability management would be ideal Comprehensive knowledge of Information Security Management Systems with the ability to scope, design, and implement such systems Strong ICT infrastructure, application, and cloud technical skills would be advantageous Evidenced knowledge and understanding of ISO270001, ITIL, and Prince 2 management practices Ability to lead the workforce, increasing their skills and knowledge in relation to information security What you'll get in return This exciting position is paying between £50,000 and £60,000 and offers an excellent work life balance including: generous annual leave, hybrid working, a public sector employer contribution pension scheme, flexibility, training, and development opportunities. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.
Are you ready to make a meaningful impact in the world of cyber security? At UK Power Networks, we're seeking a dedicated Senior Cyber Security Risk Specialist to join our Information Systems directorate in either our London or Crawley office. With a competitive salary of up to 75,000.00 plus a 7.5% bonus. Step into a pivotal role where your skills and insights will help shape the security posture of a leading energy distribution company. You'll report directly to the Cyber Security Governance, Risk & Compliance Manager and play a vital part in safeguarding essential business operations from evolving cyber threats. The role is dynamic and collaborative, involving close teamwork with a group of 8-10 GRC professionals and expert partners. You'll mentor less experienced analysts, offer guidance and training, and occasionally deputise for the GRC Manager, representing UK Power Networks at industry forums and regulatory working groups. Communication is at the heart of this position; you'll interact regularly with senior management across IT, IS, and the broader business, as well as with auditors and third-party partners, translating technical risks into actionable recommendations. Your main accountabilities will revolve around conducting cyber security risk assessments using the UK Power Networks framework, identifying, tracking, and remediating control environment risks, and ensuring third-party risks are also addressed. You'll produce management information and regulatory submissions, maintain compliance with major standards like ISO 27001/27002, and provide assurance for policy compliance. Establishing robust GRC policies and procedures, developing the IT controls framework, and supporting business continuity and disaster recovery planning will all fall under your remit. You'll operate and improve our information security management system, ensure ongoing compliance with legal and regulatory requirements such as Cyber Essentials, NIS Regulations, and the Smart Energy Code, and support technical implementation of GRC tools. Imagine being part of a team that is integral to delivering seamless technology solutions and continuous improvement throughout the organisation. The Information Systems Department underpins our commitment to operational excellence, customer service, and cyber resilience. In this role, you'll assess IT and cyber risks, drive improvements in our cyber maturity, collaborate with a variety of internal and external partners, and enable UK Power Networks to maintain its license to operate by demonstrating a strong and sustainable security posture. We're looking for someone with practical experience in GRC, audit, or cyber security, and with relevant training in cyber risk assessment. You should have a deep knowledge of at least three specialist areas such as industry standards, operational controls, risk management, business continuity, or supply chain security. Professional certifications like CISSP, CompTIA, CISA, CISM, CRISC, or an academic background in information security will be highly valued, along with hands-on experience in compliance frameworks, IT/OT risk assessments, and audit engagements. Familiarity with regulated environments, especially within the energy sector, will be advantageous. Beyond a competitive salary and bonus, we offer 25 days of annual leave plus bank holidays, reservist leave, a generous pension plan, tenancy loan deposit and season ticket schemes, tax-efficient benefits, health support, retail discounts, and an employee assistance programme. We are committed to supporting your health, safety, and wellbeing, and are proud to be an equal opportunity employer who values diversity and inclusion at every level. If you are motivated to support a critical infrastructure business, thrive in a collaborative environment, and are passionate about advancing cyber security, we invite you to apply and become a key player in the future of UK Power Networks. Take the next step towards an exciting and rewarding career-your expertise could make all the difference. Click apply to view the full job description on our careers page with a closing date of 28/09/2025
Sep 23, 2025
Full time
Are you ready to make a meaningful impact in the world of cyber security? At UK Power Networks, we're seeking a dedicated Senior Cyber Security Risk Specialist to join our Information Systems directorate in either our London or Crawley office. With a competitive salary of up to 75,000.00 plus a 7.5% bonus. Step into a pivotal role where your skills and insights will help shape the security posture of a leading energy distribution company. You'll report directly to the Cyber Security Governance, Risk & Compliance Manager and play a vital part in safeguarding essential business operations from evolving cyber threats. The role is dynamic and collaborative, involving close teamwork with a group of 8-10 GRC professionals and expert partners. You'll mentor less experienced analysts, offer guidance and training, and occasionally deputise for the GRC Manager, representing UK Power Networks at industry forums and regulatory working groups. Communication is at the heart of this position; you'll interact regularly with senior management across IT, IS, and the broader business, as well as with auditors and third-party partners, translating technical risks into actionable recommendations. Your main accountabilities will revolve around conducting cyber security risk assessments using the UK Power Networks framework, identifying, tracking, and remediating control environment risks, and ensuring third-party risks are also addressed. You'll produce management information and regulatory submissions, maintain compliance with major standards like ISO 27001/27002, and provide assurance for policy compliance. Establishing robust GRC policies and procedures, developing the IT controls framework, and supporting business continuity and disaster recovery planning will all fall under your remit. You'll operate and improve our information security management system, ensure ongoing compliance with legal and regulatory requirements such as Cyber Essentials, NIS Regulations, and the Smart Energy Code, and support technical implementation of GRC tools. Imagine being part of a team that is integral to delivering seamless technology solutions and continuous improvement throughout the organisation. The Information Systems Department underpins our commitment to operational excellence, customer service, and cyber resilience. In this role, you'll assess IT and cyber risks, drive improvements in our cyber maturity, collaborate with a variety of internal and external partners, and enable UK Power Networks to maintain its license to operate by demonstrating a strong and sustainable security posture. We're looking for someone with practical experience in GRC, audit, or cyber security, and with relevant training in cyber risk assessment. You should have a deep knowledge of at least three specialist areas such as industry standards, operational controls, risk management, business continuity, or supply chain security. Professional certifications like CISSP, CompTIA, CISA, CISM, CRISC, or an academic background in information security will be highly valued, along with hands-on experience in compliance frameworks, IT/OT risk assessments, and audit engagements. Familiarity with regulated environments, especially within the energy sector, will be advantageous. Beyond a competitive salary and bonus, we offer 25 days of annual leave plus bank holidays, reservist leave, a generous pension plan, tenancy loan deposit and season ticket schemes, tax-efficient benefits, health support, retail discounts, and an employee assistance programme. We are committed to supporting your health, safety, and wellbeing, and are proud to be an equal opportunity employer who values diversity and inclusion at every level. If you are motivated to support a critical infrastructure business, thrive in a collaborative environment, and are passionate about advancing cyber security, we invite you to apply and become a key player in the future of UK Power Networks. Take the next step towards an exciting and rewarding career-your expertise could make all the difference. Click apply to view the full job description on our careers page with a closing date of 28/09/2025
