Enable job alerts via email!
Cyber Security Lead
TN United Kingdom
London
On-site
GBP 60,000 - 100,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a GRC Lead to ensure compliance with European regulations and global standards. This role demands a strategic thinker with over 5 years of experience in GRC, particularly within financial services. You will be responsible for managing third-party risk, implementing security governance frameworks, and conducting audits. Your expertise in IAM and vulnerability management will be crucial in safeguarding operational resilience and ensuring alignment with regulatory requirements. Join a forward-thinking company where your contributions will significantly impact operational security and compliance.
Benefits
Qualifications
- 5+ years of experience in Governance, Risk, and Compliance roles.
- Strong understanding of GDPR, DORA, and third-party risk requirements.
Responsibilities
- Ensure compliance with GDPR and DORA, focusing on incident reporting.
- Design and implement third-party risk management programs.
Skills
Education
Tools
Job description
Social network you want to login/join with:
As a GRC Lead, you will ensure alignment with European regulations (GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience.
- Support compliance with GDPR and regulations like DORA (Digital Operational Resilience Act), ensuring alignment in incident reporting and data protection.
- Translate requirements from PSD2 SCA, PCI DSS, and SWIFT CSP into technical security controls.
- Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls).
- Manage and maintain Security Policies and procedures.
- Design and implement third-party risk management programs to assess vendors, cloud providers, and outsourced services.
- Ensure compliance with DORA’s outsourcing requirements, including due diligence, contract oversight, and continuity planning.
- Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance.
- Remediate gaps in processes or documentation.
- Maintain the enterprise risk register, prioritizing risks tied to third-party dependencies, outsourcing, and ICT disruptions.
- Quantify risks using appropriate methodologies.
- Advise on vulnerability management, endpoint security (EDR/XDR), and cloud compliance.
- Have a good understanding of IAM (Identity and Access Management) strategies, including role-based access control (RBAC) and privileged access management (PAM).
- Conduct periodic user access reviews to ensure compliance with least privilege principles and regulatory requirements.
- Security awareness management experience.
- Experience: 5+ years in GRC roles; financial services or banking experience is a strong plus.
- Regulatory Knowledge: Understanding of GDPR, DORA, PCI DSS, and outsourcing/third-party risk requirements.
- Technical Skills: Hands-on experience with ISO 27001 implementation and third-party risk tools.
- Proficiency in IAM (Identity and Access Management) solutions and conducting user access reviews.
- Familiarity with cloud technology and IT infrastructure.
- Framework Expertise: Strong knowledge of NIST frameworks (CSF, 800-53) and CIS Controls.
- Certifications: CRISC, CISSP, CISM, or CISA preferred (equivalent experience considered).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
