Cyber Security Governance Risk & Assurance Lead
Posted 2 weeks ago by Job Board - Jobserve on JobServe
£475 Per day
Inside
Remote
Exeter, Devon, UK
Remote (Occasional travel to Exeter)
475 Per Day - Inside IR35
Digital Skills are seeking a dynamic and experienced professional to join our client as the Cyber Security Policy & Standards Lead. In this pivotal role, you will be responsible for leading and taking a hands-on approach in delivering cyber security policies, standards, and guidance across the client's business.
Key Responsibilities:
Policy Development and Implementation:
- Lead the development, implementation, and communication of cyber security policies, standards, and guidelines.
- Take a hands-on approach in crafting policies that align with industry best practices (NIST CSF, NCSC CAF, CIS), legal requirements, and business needs.
Standards and Guidance:
- Establish and maintain a set of cyber security standards and guidance documents that provide clear direction for the implementation of security controls and measures.
Collaboration:
- Collaborate with internal stakeholders to understand business needs and integrate cyber security policies seamlessly into operational processes.
- Provide expert guidance to various departments, enabling a culture of security awareness and compliance.
Continuous Improvement:
- Stay up to date with industry trends, emerging threats, and regulations to continuously enhance and update cyber security policies and standards.
- Conduct regular assessments to identify gaps and opportunities for improvement in our Cybersecurity posture.
Mentoring:
- Provide mentorship and training to junior risk managers in relation to developing robust cyber security policy sets.
Qualifications and Requirements:
- Proven experience in leading the development and implementation of cybersecurity policies & standards.
- Strong technical background in Cybersecurity with a hands-on approach to policy implementation.
- Excellent communication and interpersonal skills to effectively engage with stakeholders at all levels.
- In-depth knowledge of industry regulations, best practices, and emerging threats.
- Relevant certifications such as CISSP, CISM, or equivalent are highly desirable.
- Will need to be eligible for SC level Clearance, already having it is a huge plus.
The role will be largely remote with an expectation that the candidate will attend site in Exeter for team meetings once per month.