Evolution Jobs
01925 820 555
  • uk
  • de
  • au
  • sg
  • eu

£70,000 - £85,000 + Excellent Benefits
Job Type
Evolution Recruitment Solutions https://www.evolutionjobs.com/

Cyber Security Risk & Assurance Principal

£70,000 – £85,000

My client is looking for a Cyber Risk and Assurance Principal consultant to join there global team. The position will sit within Cyber Risk & Assurance team, interacting directly with third-party relationship owners and representatives.


  • Execute and support the full lifecycle of information security and third-party risk assessments as needed
  • Maintain and mature the third-party risk management process framework for security risk, including necessary standards, procedures, and technologies
  • Provide clarifying support, to internal third-party relationship owners or third-party representatives to provide responses to the security risk assessment questionnaire.
  • Coordinate with Legal and Procurement representatives to ensure proper security and privacy clauses are included in third-party contracts
  • Effectively translate third-party responses to assessment questionnaire, using sound judgement, into concise risk exposure reporting for delivery to internal stakeholders
  • Evangelize third-party risk management processes across business lines to help influence a strong culture of proactive awareness for third-party risks
  • Contribute to the gathering and distribution of periodic program metrics and/or dashboards
  • Provide insights on other security risk management matters, as necessary, in collaboration with the broader GRC/Cyber Risk team.

  • Provide consultancy SME support in conducting security posture assessments as part of continuous monitoring or post breach scenarios to ensure that suppliers have adequate security controls.
  • Skills/Requirements:

    • Over 8 years’ experience working within cyber security and/or security risk management.
  • Experience and knowledge across different frameworks and standards such as ISO 27001, NIST, CIS etc.
  • Demonstrated experience and understanding of cyber security principles, IT security controls, and related technologies and products
  • Prior experience in conducting cyber Security risk assessments and 3 party security and data privacy assessments
  • Stakeholder/ internal business management experience
  • Ability to prioritize, delegate, and foster the development of high-performance teams to lead/support an environment driven by customer service and teamwork
  • Exposure to any GRC technologies to conduct cyber risk management
  • .NET Development