This role will report directly to the Head of Cyber Security and will play a central part in partnering with IT and Business Leadership to manage client assurance reviews, strengthen compliance frameworks, and drive continuous improvement across our technology landscape.
In this role, you will act as the main contact for key clients and auditors, ensuring their compliance needs are clearly understood and met. You will lead the development and automation of IT and business control frameworks to keep them strong, efficient, and aligned with governance standards.
Using your experience with GRC tools, you will support the rollout of effective governance processes and train managers on clear control ownership. You will also help shape and deliver the firm’s Cyber Awareness programme, promoting strong cyber hygiene across the organisation.
This is a key opportunity to influence the firm’s compliance maturity and support the advancement of our Cyber Security strategy.
Key Responsibilities
- Establish and maintain cyber security controls, policies and awareness training
- Implementation of a Cyber Security Awareness programme Worldwide to all employees
- Lead and manage the Information Risk Assessment Methodology and associated governance
- Leading the Firm’s professional response to internal and external audits and reviews
- Establish, monitor, evaluate, report in a professional manner; clearly highlighting the current state of Cyber Security and Compliance Risks to the Executive committee
- Continuous improvement of the IT control environment
- Maintain compliance to ISO27001+ and NIST
- Responsible for ensuring engagement of key stakeholders and helping them define the risk appetite of the firm
- Provide input, and direction, to the Cyber Security strategy
- Research and study advancements in educational technologies and threat horizons
- Drive cultural change to ensure that IT security is a key consideration for new systems and processes
Skills & Experience
- Extensive experience in leading Risk Management
- Expert understanding of Cyber Risk and business impact
- Proven ability to implement key Information Security and Compliance programmes
- Excellent Governance, Risk and Compliance skill set
- You will be a proven strong communicator who works in a highly professional manner to ensure appropriate business representation to demonstrate effective standards
- Effective utilisation, and management, of external suppliers
- Effective team leadership and coaching skills
- Able to react quickly, decisively and professionally
Key Attributes
- Effective leadership, interpersonal and communication skills
- Naturally curious, with a tenacity to mitigate incidents
- A passion for continuous improvement
- Engaging personality that can translate complex topics into real business decisions
- Professional, innovative and collaborative style of working
