Type: Permanent and onsite 2 days a week
My client is seeking a motivated and detail-oriented Cyber Security Controls Manager to support and strengthen the organisation’s enterprise security controls framework. The successful candidate will play a key role in defending the organisation through effective governance, risk management, security reporting, and continuous control improvement. This role requires strong analytical capability, stakeholder engagement, and the ability to report on key cyber security KPIs while ensuring compliance with internal policies and regulatory standards.
Key Responsibilities
Support the development and maintenance of enterprise cyber security controls and governance frameworks.
Monitor, assess, and report on cyber security risks across the organisation.
Produce regular KPI and security posture reporting for leadership and governance forums.
Assist in identifying vulnerabilities, control gaps, and areas for remediation improvement.
Support the organisation’s cyber defence strategy through proactive risk management activities.
Maintain risk registers and track remediation activities to completion.
Collaborate with technology, compliance, and business teams to ensure security controls are embedded across operations.
Contribute to policy, standards, and procedure development aligned to industry best practice.
Support internal and external audit activities, including evidence gathering and control validation.
Assist with third-party/vendor security risk assessments where required.
Ensure governance activities align with regulatory, legal, and organisational requirements.
Skills & Experience
Experience in Cyber Security, Governance, Risk, or Compliance environments.
Understanding of enterprise security controls and risk management principles.
Experience producing KPI, risk, or management reporting.
Knowledge of cyber security frameworks such as ISO 27001, NIST, or CIS Controls.
Strong communication and stakeholder management skills.
Analytical mindset with strong attention to detail.
Ability to manage multiple priorities in a fast‑paced environment.
Ideally
Relevant certifications such as CISSP, CISM, CRISC, Security+, or ISO 27001.
Experience supporting governance committees or risk forums.
Familiarity with regulatory environments and compliance requirements.
Experience with security tooling, dashboards, or GRC platforms.
#J-18808-Ljbffr