Cyber Security Risk Analyst
Posted 6 days ago by Public Sector Resourcing
Negotiable
Inside
Hybrid
London
Summary: The Cyber Security Risk Analyst role at the Cabinet Office involves developing and implementing a cyber security risk management framework and associated documentation. The position requires collaboration with cross-functional teams to enhance risk management practices and ensure compliance with security standards. The role is hybrid, requiring two days per week in London, and necessitates active SC Clearance. This is a 7-month contract classified as inside IR35.
Key Responsibilities:
- Draft and publish a risk management framework for the Cabinet Office.
- Lead the development and enhancement of cyber security risk management practices.
- Develop and implement processes to assess compliance against internal and external security requirements.
- Evaluate and assess cyber security controls across business practices and third-party vendors.
- Collaborate with cross-functional teams to implement risk management activities.
- Identify cyber threats, risks, and issues using risk management techniques.
- Support the creation and maintenance of security policies and metrics.
- Assist the Information Security and Assurance Manager in delivering information security objectives.
- Support continuous improvement for information security practices.
Key Skills:
- Active SC Clearance.
- Experience in Security Governance Risk & Compliance (GRC).
- Experience in a professional services environment.
- Hands-on experience conducting cyber risk assessments.
- Knowledge of recognized security frameworks (NCSC CAF, ISO27001, etc.).
- Strong interpersonal and communication skills.
- Ability to articulate risk and security concepts effectively.
Salary (Rate): undetermined
City: London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT