Cyber Governance and Risk Manager - Inside IR35 - SC Cleared
Posted 1 week ago by Sanderson Government & Defence
£675 Per day
Inside
Onsite
London, UK
Summary: The Cyber Governance and Risk Manager role focuses on overseeing cyber security governance and risk management within the Service Group. The position requires ensuring that cyber risks are effectively identified, assessed, and managed in accordance with established policies. The role is based in London and is classified as inside IR35, with a strong likelihood of extension after an initial six-month period. The candidate must hold SC clearance and work on-site for three days a week.
Key Responsibilities:
- Own and maintain visibility of cyber risks across the Service Group.
- Accept cyber risks within delegated authority or escalate risks exceeding tolerance to appropriate senior forums.
- Monitor compliance with agreed cyber security policies and standards.
- Ensure Secure by Design principles are applied consistently.
- Provide governance oversight of security architecture decisions.
- Ensure design approaches align with policy and risk appetite (without designing systems).
- Act as primary interface to formal assurance, audit, and external assessment activities.
Key Skills:
- Information risk assessment and risk management
- Applied security capability
- Protective security
- Threat understanding
Salary (Rate): £675 daily
City: London
Country: UK
Working Arrangements: on-site
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Detailed Description From Employer:
Cyber Governance and Risk Manager - Inside IR35
- Initial 6 months (High likelihood of extension)
- Clearance: SC
- Location: London
- Inside
- Type: 3 days on-site
- Rate: £675
Role Overview
Cyber Security Governance & Risk Management specialist, accountable for ensuring cyber security governance and risk management is Embedded across the Service Group ensuring that cyber risks are identified, assessed, managed, and accepted in line with policy and risk appetite.
Responsibilities:
o Own and maintain visibility of cyber risks across the Service Group.
o Accept cyber risks within delegated authority or escalate risks exceeding tolerance to appropriate senior forums.
o Monitor compliance with agreed cyber security policies and standards.
o Ensure Secure by Design principles are applied consistently.
o Provide governance oversight of security architecture decisions.
o Ensure design approaches align with policy and risk appetite (without designing systems).
o Act as primary interface to formal assurance, audit, and external assessment activities.
Key Skills:
o Information risk assessment and risk management
o Applied security capability
o Protective security
o Threat understanding
Reasonable Adjustments:
Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.
If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.