Enable job alerts via email!
Cyber Security Assurance Manager
Computappoint
Portsmouth
Hybrid
GBP 55,000 - 65,000
Full time
Job summary
A leading IT services firm is seeking a Cyber Security Assurance Manager in Portsmouth to ensure their SOC meets certification standards. Responsibilities include managing customer assurance activities and overseeing compliance with regulations and certifications. Ideal candidates should have proven experience with cybersecurity certifications and strong organizational skills. This role is hybrid with 3 days onsite per week.
Qualifications
- Proven experience delivering and maintaining cybersecurity certifications.
- Strong understanding of SOC operations and security assurance frameworks.
- Experience in customer-facing assurance activities.
Responsibilities
- Act as primary contact for customer assurance activities.
- Deliver training and awareness sessions on SOC assurance standards.
- Lead the maintenance of SOC-related certifications.
Skills
- Location: Portsmouth, UK
- Hybrid: – 3 days onsite per week
- Salary: Up to GBP65,000
- Employment Type: Permanent
Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains top security certifications and assurance standards. As part of the GRC function, you'll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and Crest SOC accreditation.
- Act as primary contact for customer assurance activities, supporting RFIs, RFPs, and client audit requests
- Deliver training and awareness sessions on SOC assurance standards to internal teams
- Develop customer–facing assurance documentation demonstrating the organisation's security posture
- Lead the delivery and ongoing maintenance of SOC–related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, Crest)
- Embed certification requirements into SOC governance, processes, and operational practices
- Ensure continuous monitoring, evidence collection, and audit readiness for internal and external assessments
- Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR)
- Oversee sector–specific assurance requirements, including PCI DSS and NCSC CIR/CHECK, where applicable
- Provide expert advice to leadership on regulatory changes impacting SOC assurance strategy
- Drive continuous improvement in assurance processes and evidence collection efficiency
- Produce regular reports and dashboards on certification status, audit outcomes, and assurance performance
- Collaborate with SOC operations, Information Security, Risk & Compliance, and Commercial teams
- Proven experience delivering and maintaining cybersecurity certifications (ISO/IEC 27001, SOC 2 Type II, Cyber Essentials Plus, Crest)
- Strong understanding of SOC operations and security assurance frameworks
- Experience in customer–facing assurance activities, including audits, RFIs, and RFPs
- In–depth knowledge of NIST CSF, GDPR, and UK NCSC guidance
- Experience liaising with external auditors, regulators, and certification bodies
- Strong ability to develop and maintain compliance documentation and audit evidence
- Proven organisational skills managing multiple certifications and assurance projects simultaneously
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
