Home
Jobs
Fruition IT
Cyber Governance Analyst

Cyber Governance Analyst

On site

England, United Kingdom

£ 60,000 / year

Full Time

19-11-2024

Share this job:

Score my CV

Job Specifications

Job title: Cyber Governance Analyst
Location: UK (Remote with some travel to UK sites)
Salary:Up to £60,000 + package
Why Apply?
This is an exciting opportunity to work for a growing organisation in a critical role at the forefront of cybersecurity governance. You will play a pivotal part in shaping secure operations across multiple companies while collaborating with talented teams. Your work will directly influence the company's risk posture and compliance with industry standards, offering a chance to make a lasting impact.
Cyber Governance Analyst Responsibilities:
With day-to-day reporting to the Group Information Security Officer (GISO), you will act as a first line of defence, ensuring the implementation and maintenance of security controls aligned with company policies and standards. Key duties include:
Collaborating with IT, legal, and policy teams to create and ensure compliance with industry regulations and company-specific policies.
Implementing and maintaining Information Security and Privacy Standards and Frameworks, such as ISO 27001, NIST, and CIS.
Reviewing system and data architectures alongside engineering teams and architects, recommending best practices.
Assessing vulnerabilities, articulating their impact, and recommending controls and mitigations for current and future systems.
Conducting risk assessments and effectively communicating security and risk implications to technical and non-technical stakeholders.
Managing and supporting project stakeholder expectations with a flexible, pragmatic approach.
Cyber Governance Analyst Requirements:
Strong knowledge of cybersecurity frameworks (eg, ISO 27001, NIST, CIS).
Proven experience in a similar role, supporting governance, monitoring controls, and managing risks.
Ability to assess and articulate the impact of vulnerabilities and recommend mitigations.
Skilled in collaborating with multidisciplinary teams and translating technical information for varied audiences.
Strong organisational and communication skills, with a proactive and adaptable mindset.
What's in it for me?
This is an excellent opportunity to work across multiple subsidiaries, collaborating with diverse teams to build a secure and resilient environment. You'll gain exposure to cutting-edge security frameworks and best practices while influencing governance strategies at a high level. Additional benefits include:
Competitive salary and bonus scheme.
Healthcare and wellbeing initiatives.
Opportunities for professional development and certification.
Remote and hybrid working options for enhanced flexibility.
We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation or age.

About the Company

We’re an independent, service driven recruitment agency that sources high quality, talented individuals to fill permanent and contract roles across the Technology, Clean Technology & Cyber Security sectors. Since we were established in March 2008 we’ve achieved outstanding success with clients and candidates throughout the UK, US and Europe. We’ve built up rewarding relationships with many of them that continue to this day. Our success is based on four key attributes: • our skills and expertise in the recruitment profess... Know more

Related Jobs

Company Name: Scope AT Limited
Job Title: Security Analyst - Monitoring, Incident response, Scripting, Troubleshooting, SIEM
Job Description: Responsible for supporting Security Operations - Monitoring, incident response and various security platforms. Key requirements: - 5+ experience in Security role - Strong communication skills as you will be speaking to users directly - Possesses at least one security certification (Security+, OSCP, CISSP, CEH, GCIA, GCIH). - Scripting in Python or Powershell - CrowdStrike& Defender - Troubleshooting - Vulnerability Scan - Worked within Financial Services - Technical understanding of what a Firewall does, how to determine common phishing types (malware, credential phishing, BEC) - Understand the concept of SIEM and have used if possible Permanent, Fully onsite By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information - scopeat.co.uk/data-protection-docs/. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our website scopeat.co.uk .

London, United Kingdom

On site

Full Time

27-11-2024

Company Name: EMEA resourcing
Job Title: Security Analyst
Job Description: Security Analyst Skills: One or more (NOT ALL OF THEM ONLY ONE) of the following certifications (CompTIA Security+ CompTIA Cybersecurity Analyst (CySA), GIAC Information Security Fundamentals. Microsoft Certified Systems Administrator: Security (Qualified or working towards certification) Associate of (ISC)2 Extensive experience with Infrastructure Administration. Experience with Build/configuration guidelines for Hardening of Systems. Working technical knowledge of Operational Security Procedures. Strong understanding of IP, TCP/IP, and other network administration protocols. Experience with of IPSec, SSL technologies. Familiarity with ISO 27001 Cyber Security Essentials, Gov functional standards 005,007. Familiar with working practice and guidelines of NCSC, CAF, GovAssure, for good principles in information security. Main Aims: Uphold the Company Corporate Technology security standards as established in policies, procedures, and guidelines, while continuously analysing and acting upon findings to reduce cybersecurity risks to the Company. Manage day-to-day operations of the in-place security solutions. Identify, investigate and swiftly remediate security breaches detected by those systems, and security incidents reported to the IT service desk. Implement new security solutions, participating in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. Use a blend of structured and flexible best practices for providing excellent technology services that meets users' needs, including the ITIL framework, working collaboratively with our teams from across the T&DT department. Key Responsibilities: Strategy & Planning: Participate in the planning and design of Company Corporate Technology security architecture, under the direction of the Corporate Technology Head of Infrastructure & Security, where appropriate. Participate in the creation of Company Corporate Technology security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Corporate Technology Head of Infrastructure & Security, where appropriate. Participate in the planning and design of Corporate Technology business continuity plan and disaster recovery plan, under the direction of the Corporate Technology Head of Infrastructure & Security, where appropriate. Acquisition & Deployment: Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors. Recommend additional security solutions or enhancements to existing security solutions to improve overall Company Corporate Technology security. Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures. Operational Management Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (ie, security tools) or not (eg, workstations, Servers, network devices). Deploy, manage, and maintain all security systems and their corresponding or associated software, including Firewalls, intrusion detection systems, malware/anti-virus software, and so on. Maintain operational configurations of all in-place security solutions as per the established baselines. Monitor all in-place security solutions for efficient and appropriate operations. Review logs and reports of all in-place devices, whether they be under direct control (ie, security tools) or not (eg, workstations, Servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution. Participate in investigations into problematic activity. Participate in vulnerability assessments, penetration tests, and security audits, and undertake remediation tasks as directed by Corporate Technology Head of Infrastructure & Security. Provide support via the IT Service Desk to end users for all in-place security solutions. Provide Training to the Corporate Technology Team on Company Corporate Technology Security Solutions. Provide Security Build guidelines for Endpoints, Servers, and Network Devices to ensure only applicable services are configured. Work close with Corporate Technology teams to ensure security and Vendor security guidelines are adhered to. Skills & Approach Proven analytical and problem-solving abilities, with the ability to effectively prioritise and execute tasks in a high-pressure environment. Good communication skills, written and oral, with the ability to present ideas in business-friendly and user-friendly language. Ability to conduct research into IT security issues and products as required. Highly self-motivated and directed with keen attention to detail. Team-oriented and skilled in working within a collaborative environment. The aptitude to carry out all activities supporting and championing our culture drivers. Good organisational skills with the ability to prioritise and to manage and meet deadlines. A commitment to continual professional development. Working Conditions: 2/3 days on site City London, 2/3days remote (per week) Working for a well established organization Flexible start date (ie immediate to 3 months notice) (If this position do not fit within your experience or is of no interest to you we offer a recommendation fee for any consultant you refer we successfully make a placement with).

Company Name: Calyptus
Job Title: Senior Backend Engineer
Job Description: This role is with a Calyptus partner. __________________________________________________________________ Your Responsibilities Leadership Foster Team Success: Prioritize team impact and recognition over individual achievements. Drive Projects: Manage priorities, address technical debt, and deliver high-quality solutions. Mentor & Coach: Develop team members’ skills and foster a growth-oriented culture. Monitor Team Health: Identify misalignments or morale issues early and resolve them effectively. Recruit Top Talent: Build and onboard a world-class infrastructure team. Set Objectives: Define clear goals and metrics for team success. Technical Excellence Infrastructure Expertise: Guide the design of scalable, reliable systems powering all of Morpho’s products. Streamline Delivery: Establish best practices for deployments, observability, and system reliability. Web3 Mastery: Leverage deep blockchain knowledge to build data-intensive systems (e.g., indexers, data warehouses). Security & Performance: Balance agility with robust security and performance. Strategic Thinking Long-Term Vision: Design infrastructure that scales with our growth trajectory. Product Orientation: Align technical decisions with business objectives for maximum value delivery. __________________________________________________________________ Calyptus is an employment platform for engineers looking for work in Web3.

England, United Kingdom

Remote

Full Time

27-11-2024

Company Name: Auma
Job Title: AI Engineer, Tech Startup
Job Description: Role Overview As an AI Engineer, you’ll develop and implement advanced machine learning and AI solutions that power cutting-edge applications. Collaborating with interdisciplinary teams, you'll design, train, and deploy models that solve complex problems, enhance user experiences, and drive business innovation. Key Responsibilities Develop AI Models: Design, train, and deploy machine learning models tailored to solve business problems or enhance product capabilities. Data Analysis and Preparation: Clean, preprocess, and analyze large datasets to enable effective model training and evaluation. Deploy and Optimize Solutions: Build scalable AI systems, integrating models into production environments while ensuring optimal performance and reliability. Collaborate Across Teams: Work closely with data scientists, engineers, and product managers to align AI solutions with business objectives. Research and Experiment: Explore and evaluate emerging technologies, frameworks, and algorithms to enhance current systems or create new capabilities. Monitor and Improve Models: Continuously evaluate model performance and refine them based on feedback and changing requirements. Document and Communicate Findings: Create detailed documentation for processes, models, and results, sharing insights with technical and non-technical stakeholders. Key Requirements Experience: Proven experience in AI/ML development, with specific expertise in working with large language models (e.g., OpenAI GPT, LLaMA, Hugging Face Transformers). Technical Skills: Proficiency in Python and machine learning frameworks such as TensorFlow, PyTorch, or Scikit-learn. Strong foundation in data structures, algorithms, and statistics. Experience with natural language processing (NLP), computer vision, or recommendation systems. Familiarity with cloud platforms (e.g., AWS, GCP, Azure) for deploying AI solutions. Understanding of data pipeline tools like Apache Spark, Kafka, or Airflow. Soft Skills: Excellent problem-solving skills, communication abilities, and adaptability to fast-paced environments. Bonus Skills Experience with federated learning, reinforcement learning, or edge AI. Knowledge of tools like Hugging Face, OpenAI APIs, or similar. Familiarity with MLOps practices, including CI/CD pipelines for AI systems. Experience working in startup environments. What We Offer A unique opportunity to be matched with client startups aligned with your skills, career aspirations, and interests. Opportunities to work on impactful projects leveraging cutting-edge AI technologies. Access to a network of innovative startups and tech leaders. Potential for professional growth and learning in dynamic, high-impact teams.