Enable job alerts via email!
AVP, IT Security Specialist - RSA Archer, NIST, GRC - London - Hybrid
Scope AT Limited
London
Hybrid
GBP 70,000 - 100,000
Full time
Boost your interview chances
Job summary
Join a leading security governance and risk team as an AVP, IT Security Specialist based in London. You will play a key role in ensuring robust security controls and compliance within a hybrid working model. The role requires strong experience in cybersecurity, particularly within financial services, with proficiency in RSA Archer and risk management frameworks like NIST CSF.
Qualifications
- A minimum of 2 years' experience in Information or Cyber Security, ideally in financial services.
- Solid understanding of security risk management principles.
- Strong skills in risk reporting and documentation.
Responsibilities
- Maintain and evolve security policy and standards.
- Conduct regular risk assessments and manage a risk register.
- Produce detailed assurance reporting for stakeholders.
Skills
Education
Tools
Job description
You will need to login before you can apply for a job.
AVP, IT Security Specialist – RSA Archer, NIST, GRC – London – Hybrid
Join a leading security governance and risk team as an AVP, IT Security Specialist. You'll play a key role in ensuring robust security controls, compliance, and continuous risk reduction across a regulated enterprise environment.
Key Responsibilities:
Maintain and evolve security policy, standards, procedures, and frameworks
Align security practices with NIST CSF, NIST 800–53 and other industry standards
Advise business and technology teams on information security best practices
Conduct regular risk assessments and maintain a risk register in RSA Archer
Identify, assess, and prioritize cybersecurity risks across assets and environments
Track remediation efforts and ensure ongoing risk reduction to acceptable levels
Support development of cybersecurity risk management strategies and reporting
Represent security during internal and external audits and assessments
Run lessons–learned forums and improve control effectiveness
Produce detailed assurance reporting, metrics, and dashboards for stakeholders
Key Skills & Experience:
Minimum 2 years' experience in Information or Cyber Security, ideally in financial services
Solid understanding of security risk management principles and taxonomy
Working knowledge of GRC platforms – RSA Archer preferred
Familiarity with NIST CSF, NIST 800–53, ISO 27001, SOC 1 & 2
Good written and verbal communication skills for technical and non–technical stakeholders
Strong documentation and risk reporting skills
Knowledge of vulnerability management and incident management practices
Experience planning, analysing, and presenting data to support risk decisions
Desirable Certifications:
CISM, CRISC, CISA, or MSc in Information Security
Knowledge of Prince2, MSP, or APMQ beneficial
Location & Working Model:
Based in London
Hybrid working model – 2 days onsite per week
Create a job alert and receive personalised job recommendations straight to your inbox.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
