Senior Cyber Security Risk Analyst

Milton Keynes - 4 days per week on site

£70- £85,000 + bonus + benefits

My client, a leading global manufacturer based in Berkshire are actively looking for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define and shape what governance and risk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third party assurance. If you are looking for a role where you can be a part of building out something exciting, with a fantastic long term career path, then this is the role for you!

• Lead and evolve the cybersecurity risk management framework, ensuring effective identification, assessment, and remediation of risks.
• Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls.
• Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers.
• Collaborate with stakeholders to develop and track cyber risk treatment plans, implement corrective actions, and report on key risk indicators and control effectiveness.
• Drive continuous improvement of cybersecurity policies and practices, while fostering strong relationships to embed a risk-aware culture across the organisation.

• Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI.
• Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties.
• Excellent communication and stakeholder management, including experience presenting risk insights to senior leadership and working across technical and business teams.
• Proven experience in cybersecurity disciplines, ideally 5-7 years in roles covering risk management, architecture, engineering, or vulnerability management.
• Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow.

Mary Pearson: mary.pearson@sandersonplc.com

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.