Cyber Security Programme Manager

Cyber Security Programme Manager

Posted Today by Tenth Revolution Group

Apply
£500 Per day
Outside
Hybrid
City of London, UK
Apply
AWS Identity And Access Management (IAM) Azure Active Directory Azure Security Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Change Management Cloud Computing Cloud Technology Cyber Security Data Loss Prevention Data Protection Strategy Identity And Access Management Key Performance Indicators (KPIs) Management Microsoft 365 Microsoft Azure Microsoft Office 365 Risk Management SIPOC Process Stakeholder Engagement Stakeholder Management Vulnerability

Summary: The Cyber Security Programme Manager will lead a significant enterprise-wide cyber security uplift programme for a leading construction organization, focusing on enhancing security across cloud and on-premise environments. This role requires strategic oversight and management of various initiatives aligned with the NIST Cybersecurity Framework and CIS Controls. The position is hybrid, requiring three days onsite at the Bishopsgate HQ in London, and is expected to last for six months with potential extensions. The role is classified as outside IR35, offering a competitive day rate.

Key Responsibilities:

  • Lead the end-to-end delivery of a multi-stream cyber security uplift programme
  • Manage the RFP process and selection of third-party vendors and consultancies
  • Oversee the external delivery partner, ensuring accountability for risks, issues, and deadlines
  • Deliver initiatives across people, process, technology, and governance
  • Manage smaller internal cyber security projects outside the partner's scope
  • Maintain programme governance, risk management, and resource planning
  • Collaborate with senior stakeholders, IT teams, and external suppliers
  • Drive change management and embed new security disciplines across the organisation
  • Monitor progress against KPIs, including NIST CSF and CIS maturity improvements
  • Ensure compliance with internal policies, data protection laws, and industry standards
  • Manage programme budgets and ensure value delivery

Key Skills:

  • Proven experience delivering large-scale cyber and information security programmes
  • Strong hands-on background in cyber security and technical delivery
  • Deep understanding of Microsoft Azure security architecture and tooling
  • Experience managing third-party vendors and consultancies
  • Familiarity with NIST CSF, CIS Controls, and ISO 27001
  • Excellent stakeholder engagement and communication skills
  • Relevant certifications (eg SC-100, CISSP, CISM, ISO 27001 Lead Implementer)

Salary (Rate): £500 daily

City: London

Country: UK

Working Arrangements: hybrid

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Cyber Security Programme Manager - Contract

Location: London (Hybrid - 3 days onsite at Bishopsgate HQ)
Contract Length: 6 months (with potential extension up to 36 months)
IR35 Status: Outside IR35
Start Date: ASAP
Day Rate: Competitive

We are seeking an experienced and strategic Cyber Security Programme Manager to lead a major enterprise-wide cyber security uplift programme for a leading organisation in the construction industry. This transformation initiative spans 24-36 months and aims to significantly enhance the organisation's security posture across both cloud (Microsoft Azure) and on-premise environments, aligned to the NIST Cybersecurity Framework (CSF) and CIS Controls.

Key Responsibilities

  • Lead the end-to-end delivery of a multi-stream cyber security uplift programme
  • Manage the RFP process and selection of third-party vendors and consultancies
  • Oversee the external delivery partner, ensuring accountability for risks, issues, and deadlines
  • Deliver initiatives across people, process, technology, and governance
  • Manage smaller internal cyber security projects outside the partner's scope
  • Maintain programme governance, risk management, and resource planning
  • Collaborate with senior stakeholders, IT teams, and external suppliers
  • Drive change management and embed new security disciplines across the organisation
  • Monitor progress against KPIs, including NIST CSF and CIS maturity improvements
  • Ensure compliance with internal policies, data protection laws, and industry standards
  • Manage programme budgets and ensure value delivery

Technology Environment

Cloud Security (Microsoft Azure):

  • Microsoft Sentinel
  • Microsoft Defender (Cloud, Endpoint, Office 365)
  • Microsoft Entra ID (Azure AD)
  • Microsoft Purview
  • Microsoft Intune
  • Azure Security Center

Information Security (On-Premise):

  • Firewalls (eg Palo Alto, Fortinet)
  • Intrusion Detection/Prevention Systems (IDS/IPS)
  • Endpoint Protection Platforms (EPP)
  • SIEM tools (on-prem or hybrid)
  • Identity & Access Management (IAM)
  • Patch management and vulnerability scanning
  • Data Loss Prevention (DLP)

Candidate Profile

  • Proven experience delivering large-scale cyber and information security programmes
  • Strong hands-on background in cyber security and technical delivery
  • Deep understanding of Microsoft Azure security architecture and tooling
  • Experience managing third-party vendors and consultancies
  • Familiarity with NIST CSF, CIS Controls, and ISO 27001
  • Excellent stakeholder engagement and communication skills
  • Relevant certifications (eg SC-100, CISSP, CISM, ISO 27001 Lead Implementer)

Apply
Similar Jobs
Loading data...