Enable job alerts via email!

Lead Security Control Assessor

JR United Kingdom

Stoke-on-Trent

Remote

GBP 40,000 - 60,000

Full time

Yesterday

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company is seeking a Lead Security Control Assessor to enhance compliance through effective security control evaluations. This fully remote position offers a contract at £500 inside IR35 for a duration of 9 months, with potential extension. Candidates should possess substantial experience in information security assessments and professional certifications, ideally with a background in cloud environments like AWS and Azure.

Qualifications

8+ years of experience in IT audit or information security control assessments.
3+ years in a lead or managerial role.
Strong understanding of NIST, ISO, and CIS frameworks.

Responsibilities

Lead design and delivery of scalable methodologies for control testing.
Manage execution of control testing and guide testing activities.
Identify control gaps and produce high-quality reports.

Skills

IT audit

Information security control assessments

Communication

Automation

Data analytics

Education

CISA

CISM

CISSP

ISO 27001 Lead Auditor

Tools

AWS

Azure

SailPoint

Rapid7

Microsoft Defender

ServiceNow

Excel

Tableau

Alteryx

PowerBI

Jira

Social network you want to login/join with:

Lead Security Control Assessor, stoke-on-trent

col-narrow-left

Client:

Location:

stoke-on-trent, United Kingdom

Job Category:

Other

EU work permit required:

Yes

col-narrow-right

Job Views:

Posted:

26.06.2025

Expiry Date:

10.08.2025

col-wide

Job Description:

Lead Security Control Assessor – Fully Remote - Contract £500 inside IR35 – 9 months – potentially extended

The Opportunity

We’re supporting our client in the search for a Lead Security Control Assessor to join their remote information security team on a long-term contract. In this role, you'll lead the evaluation and assurance of security controls across cloud and on-premise environments, ensuring compliance with internal policies and industry standards. This is a hands-on leadership role, offering the chance to shape the quality and impact of a key assurance programme.

Key Responsibilities

Lead the design and delivery of scalable, repeatable methodologies for control testing, including automation in cloud environments
Plan and manage the execution of control testing – including risk identification, sampling, fieldwork, and reporting
Guide a team of assessors through testing activities and documentation reviews.
Identify control gaps, assess associated risks, and produce high-quality reports with actionable insights
Act as the primary stakeholder interface for control testing engagements, ensuring progress updates and clear communication
Contribute to ongoing improvements in the assurance programme by standardising materials and defining measurable KPIs

Skills & Experience Required

8+ years of experience in IT audit or information security control assessments, with 3+ years in a lead or managerial role
Demonstrated experience assessing security controls in cloud environments (AWS and Azure)
Strong understanding of key frameworks and standards, including NIST 800-53, ISO 27001, CIS Controls, and COBIT
Professional certifications such as CISA, CISM, CISSP, or ISO 27001 Lead Auditor
Strong communication skills with the ability to translate technical findings into business language
Proficient in both automated and manual testing techniques for security controls
Experience with tools such as SailPoint, Rapid7, Wiz.io, Microsoft Defender, RSA Archer, and ServiceNow
Familiarity with automation and data analytics tools (Excel, Tableau, Alteryx, PowerBI)
Agile methodology experience, ideally with Jira and Kanban boards
Background in a Big 4 consultancy or similar high-compliance environment

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.