Risk Management Consultant

Summary: The Governance & Risk Management Consultant role involves overseeing security controls and compliance reporting while managing vulnerability risks across hybrid and cloud environments. The position requires strong stakeholder engagement and governance reporting to ensure adherence to established standards. The role is based in Leeds and operates on a hybrid model. The consultant will be expected to work closely with various platforms, applications, and systems to ensure effective risk management.

Key Responsibilities:

• Security Controls Framework mapping (NIST, ISO 27001, NHS DSP Toolkit, NCSC CAF)
• Strong exposure to vulnerability risk management across hybrid and cloud estates (AWS, Azure)
• Governance oversight of vulnerability burn-down across platforms, applications, servers, and systems
• Compliance reporting aligned to hardening standards (permissive accounts, IaC, etc.)
• Risk and issue assessment, tracking, and lifecycle management
• Compliance evidence collation and governance reporting
• Stakeholder engagement and program oversight

Key Skills:

• Security Controls Framework mapping (NIST, ISO 27001, NHS DSP Toolkit, NCSC CAF)
• Vulnerability risk management across hybrid and cloud estates (AWS, Azure)
• Governance oversight and compliance reporting
• Risk and issue assessment and lifecycle management
• Stakeholder engagement

Salary (Rate): £500 daily

City: Leeds

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: Other