Enable job alerts via email!
Risk Consultant in The City
Energy Jobline AZ
Dundee
Hybrid
GBP 80,000 - 100,000
Part time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading energy services firm is seeking a GRC & Cyber Risk Manager for a 6-month contract with a daily rate of £700. Responsibilities include leading the Information Security Risk Management Framework and conducting third-party risk assessments. Ideal candidates will have hands-on experience with ServiceNow IRM and knowledge of ISO 27001 and NIST guidelines. This role is hybrid, requiring twice weekly on-site presence in Cambridge.
Qualifications
- Proven hands-on experience with ServiceNow IRM and risk quantification methodologies.
- Strong knowledge of ISO 27001, NIST CSF, and NIST SP800-53.
- Certifications such as CRISC, CISM, CISSP, or FAIR are desirable.
- Excellent stakeholder management and communication skills.
- Experience in third-party cyber risk management and post-incident analysis.
- Background in large-scale technical environments.
Responsibilities
- Lead and enhance the Information Security Risk Management Framework.
- Act as technical SME for ServiceNow IRM.
- Oversee third-party cyber risk assessments.
- Conduct post-incident reviews and integrate lessons learned.
- Develop Key Risk and Control Indicators.
- Collaborate across IT and Engineering to manage service security risks.
- Support AI and automation initiatives.
Skills
Contract Details: Contract Length: 6 months (potential extension) Daily Rate: £700 per day (inside IR35) Location: Cambridge (hybrid – twice per week on-site)
- Lead and enhance Arm’s Information Security Risk Management Framework within ServiceNow IRM.
- Act as technical SME for ServiceNow IRM, embedding frameworks and best practices.
- Oversee third‑party cyber risk assessments, contract reviews, and supplier monitoring.
- Conduct post‑incident reviews and integrate lessons learned into the control environment.
- Develop and monitor Key Risk and Control Indicators to inform decision‑making.
- Collaborate across Enterprise IT and Engineering to identify and manage service security risks.
- Support AI and automation initiatives to streamline GRC processes.
- Proven hands‑on experience with ServiceNow IRM and risk quantification methodologies.
- Strong knowledge of ISO 27001, NIST CSF, and NIST SP800‑53.
- Certifications such as CRISC, CISM, CISSP, or FAIR are desirable.
- Excellent stakeholder management and communication skills.
- Experience in third‑party cyber risk management and post‑incident analysis.
- Background in large‑scale technical environments (e.g., semiconductors). Consulting or financial sector backgrounds not required.
Start Date: ASAP. If you are interested in applying for this job, please press the Apply Button and follow the application process.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
