We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
Global GRC Manager Permanent - Birmingham- Hybrid - 2/3 days a week onsite 60,000 - 75,000 DOE + 20% Bonus + Bens We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management. In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Hands-on experience with cloud security governance, particularly Microsoft Azure 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
31/03/2026
Full time
Global GRC Manager Permanent - Birmingham- Hybrid - 2/3 days a week onsite 60,000 - 75,000 DOE + 20% Bonus + Bens We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management. In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Hands-on experience with cloud security governance, particularly Microsoft Azure 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
Global GRC Manager Contract - Birmingham- Hybrid - 2/3 days a week onsite 550 - 650 Inside IR35 We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Demonstrable Senior stakeholder management up to C-suite Experience working in immature security environments 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
31/03/2026
Contractor
Global GRC Manager Contract - Birmingham- Hybrid - 2/3 days a week onsite 550 - 650 Inside IR35 We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Demonstrable Senior stakeholder management up to C-suite Experience working in immature security environments 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
Cyber Security Assurance Manager About the Role Our client is looking for a Cyber Security Assurance Manager to take ownership of security certifications and assurance activities within a global Security Operations environment. This is a key role within the Governance, Risk & Compliance (GRC) function, responsible for maintaining internationally recognised security standards and ensuring continuous audit readiness. You'll act as a trusted expert, supporting customer assurance, audits, and regulatory alignment while helping to strengthen overall security posture. Key Responsibilities Certification & Compliance Lead the delivery and maintenance of key certifications including ISO/IEC 27001, SOC 2 Type II, SOC 3, Cyber Essentials Plus, and CREST Oversee additional frameworks such as PCI DSS and NCSC standards (CIR/CHECK) Ensure certifications are maintained, renewed, and continuously improved Security Assurance Embed security and certification requirements into operational processes Maintain audit readiness through ongoing monitoring and evidence collection Translate compliance requirements into practical procedures for operational team Customer Assurance Act as the main point of contact for security assurance queries Support RFPs, RFIs, and audit requests with clear and accurate documentation Develop assurance packs demonstrating strong security practices Regulatory & Industry Alignment Stay up to date with frameworks such as NIST CSF, GDPR, NIS2, and UK NCSC guidance Advise stakeholders on regulatory changes and their impact Ensure alignment with evolving cybersecurity standards Continuous Improvement Improve assurance processes and audit efficiency Provide reporting on certification status, audit outcomes, and performance metrics Collaboration Work closely with technical, security, and commercial teams Deliver training and promote best practices across the organisation What We're Looking For Experience Proven experience managing cybersecurity certifications (ISO 27001, SOC 2, Cyber Essentials Plus, CREST) Strong understanding of Security Operations (SOC) environments Experience supporting audits, RFPs, and customer assurance activities Knowledge of industry frameworks and regulations (NIST, GDPR, NCSC, etc.) Experience working with auditors, regulators, and certification bodies Skills Strong documentation and audit evidence management Excellent communication skills with both technical and non-technical stakeholders Analytical mindset with attention to detail Ability to manage multiple priorities and projects Strong stakeholder engagement and influencing skills Personal Attributes Proactive and solutions-focused Collaborative and team-oriented High level of integrity and professionalism Adaptable in a fast-paced environment
31/03/2026
Full time
Cyber Security Assurance Manager About the Role Our client is looking for a Cyber Security Assurance Manager to take ownership of security certifications and assurance activities within a global Security Operations environment. This is a key role within the Governance, Risk & Compliance (GRC) function, responsible for maintaining internationally recognised security standards and ensuring continuous audit readiness. You'll act as a trusted expert, supporting customer assurance, audits, and regulatory alignment while helping to strengthen overall security posture. Key Responsibilities Certification & Compliance Lead the delivery and maintenance of key certifications including ISO/IEC 27001, SOC 2 Type II, SOC 3, Cyber Essentials Plus, and CREST Oversee additional frameworks such as PCI DSS and NCSC standards (CIR/CHECK) Ensure certifications are maintained, renewed, and continuously improved Security Assurance Embed security and certification requirements into operational processes Maintain audit readiness through ongoing monitoring and evidence collection Translate compliance requirements into practical procedures for operational team Customer Assurance Act as the main point of contact for security assurance queries Support RFPs, RFIs, and audit requests with clear and accurate documentation Develop assurance packs demonstrating strong security practices Regulatory & Industry Alignment Stay up to date with frameworks such as NIST CSF, GDPR, NIS2, and UK NCSC guidance Advise stakeholders on regulatory changes and their impact Ensure alignment with evolving cybersecurity standards Continuous Improvement Improve assurance processes and audit efficiency Provide reporting on certification status, audit outcomes, and performance metrics Collaboration Work closely with technical, security, and commercial teams Deliver training and promote best practices across the organisation What We're Looking For Experience Proven experience managing cybersecurity certifications (ISO 27001, SOC 2, Cyber Essentials Plus, CREST) Strong understanding of Security Operations (SOC) environments Experience supporting audits, RFPs, and customer assurance activities Knowledge of industry frameworks and regulations (NIST, GDPR, NCSC, etc.) Experience working with auditors, regulators, and certification bodies Skills Strong documentation and audit evidence management Excellent communication skills with both technical and non-technical stakeholders Analytical mindset with attention to detail Ability to manage multiple priorities and projects Strong stakeholder engagement and influencing skills Personal Attributes Proactive and solutions-focused Collaborative and team-oriented High level of integrity and professionalism Adaptable in a fast-paced environment
Cambridge University Press & Assessment
Cambridge/Hybrid with 2 days a week minimum in the office
Job Title: Security Risk Lead
Salary: £53,300 - £71,300
Location: Cambridge/Hybrid with 2 days a week minimum in the office
Contract: Permanent
Hours: 35 hour per week
Join our organisation as a Security Risk Lead . Utilise your expertise and drive to safeguard operations in this impactful role.
We are Cambridge University Press & Assessment, a world-leading academic publisher and assessment organisation and a proud part of the University of Cambridge.
About the role
The Security Risk Lead plays a pivotal role by driving Cambridge University Press & Assessment's security risk management strategy. This position is responsible for identifying, assessing, and mitigating operational, financial, and strategic security risks across the organisation to ensure a resilient and compliant security framework.
Overseeing the Security Risk Manager, the Security Risk Lead will work closely with senior stakeholders to develop and embed risk management processes that align with the organisation's priorities. They will also take the lead on key initiatives to reduce the organisation's risk exposure, delivering critical risk insights, reports
Lead and improve the security risk management strategy, in line with Enterprise risk strategy, identifying, analysing, and evaluating risks that may affect the organisation.
Implement controls to mitigate risks and ensure effective execution.
Manage and support the Security Risk Manager. Prepare and present regular risk reports for senior management.
Oversee the analysis and monitoring of risks, ensuring emerging risks are flagged. Ensure compliance with regulatory requirements.
Monitor industry trends and best practices.
Collaborate with the Head of Security GRC and teams to manage incidents and propose corrective actions.
Provide risk management training and develop a risk-aware culture.
Support the development of security risk policies and frameworks.
Collect data for risk assessments and foster a collaborative risk management approach. Provide risk management input on key projects.
Represent the organisation in industry forums.
This position has been classified as a hybrid role, requiring the selected candidate to typically spend 40-60% of their time collaborating and connecting face-to-face at their dedicated location. Aside from our hybrid principles, other flexible working requests will be considered from the first day of employment, including other work arrangements should you require adjustments due to a disability or long-term health condition.
About You We are looking for someone with extensive knowledge of security risk management frameworks and methodologies (e.g., ISO 31000, 27001, 27005, NIST) and regulatory requirements in the industry
The ideal candidate will have a relevant degree in Risk Management, Finance, Business, or a related field, or appropriate business experience, along with active CRISC or 27005 Risk Manager certification
You should have a minimum of 5 years or demonstrated experience in a governance, risk, or compliance role within an information security context
Strong analytical and problem-solving abilities, excellent written and verbal communication skills, and proficiency in risk management software and MS Office Suite are essential
You should be detail-oriented with strong organisational and project management skills, and able to work well in a team-oriented environment and build relationships with stakeholders.
If you meet the above minimum requirements, we encourage you to apply.
Your application will be even stronger if you can also demonstrate the following desirable criteria:
Design or implementation of parts of or all of a Risk Management Framework
Managed risks within an operational environment
Developed risk management recommendations for senior leadership
Managed and maintained a comprehensive risk management framework, including risks registers, control tracking, governance fora and reporting measures
For a detailed job description, please refer to the link at the bottom of the advert on our careers site.
We are a Disability Confident (DC) employer that is committed to equality and inclusion ensuring our recruitment process is accessible to all. The DC scheme's Offer of an Interview commitment applies to applicants who opt in, and disclose a disability or a long-term health condition, and best meet the minimum criteria for the role. In instances where interviewing all qualifying candidates is not practicable, we prioritise those who best meet the minimum criteria, as we would for applicants who do not have a disability or long-term health condition.
Cambridge University Press & Assessment is an approved UK employer for the sponsorship of eligible roles and applicants under the Skilled Worker visa route. Please refer to the gov.uk website for guidance to understand your own eligibility based on the role you are applying for.
Rewards and benefits
We will support you to be at your best in work and to live well outside of it. In addition to competitive salaries, we offer a world-class, flexible rewards package , featuring family-friendly and planet-friendly benefits including:
28 days annual leave plus bank holidays
Private medical and Permanent Health Insurance
Discretionary annual bonus
Group personal pension scheme
Life assurance up to 4 x annual salary
Green travel schemes
Ready to pursue your potential? Apply now.
We aim to support candidates by making our interview process clear and transparent. The closing date for all applications will be 17 April 2026 . We will review applications on an ongoing basis, and shortlisted candidates can expect interviews to take place shortly after it closes
If you are shortlisted and progressed through the stages, you can expect:
A 15-minute screening call with the Hiring Manager.
First stage virtual interview via MS Teams. You will be provided with a brief to complete a role related task which will need to be returned by email in advance of your interview.
Final stage interview: in-person at our offices in Cambridge.
If you require any reasonable adjustments during the recruitment process due to a disability or a long-term health condition, there will be an opportunity for you to inform us via the online application form. We will do our best to accommodate your needs.
Please note that successful applicants will be subject to satisfactory background checks including DBS due to working in a regulated industry.
We are committed to an equitable recruitment process. As such, applications must be submitted via our official online application procedure. Please refrain from sending your CV directly to our recruiters. If you experience technical difficulties or require additional support with submitting your online application, contact the Recruiter.
Why join us
Joining us is your opportunity to pursue potential. You will belong to a collaborative team that is exploring new and better ways to serve students, teachers and researchers across the globe – for the benefit of individuals, society and the world. Sharing our mission will inspire your own growth, development and progress, in an environment which embraces difference, change and aspiration.
Cambridge University Press & Assessment is committed to being a place where anyone can enjoy a successful career, where it is safe to speak up, and where we learn continuously to improve together. We welcome applications from all candidates, regardless of demographic characteristics (age, disability, educational attainment, ethnicity, gender, marital status, neurodiversity, religion, sex, gender identity and sexual identity), cultural, or social class/background.
We believe better outcomes come through diversity of thought, background and approach. We welcome applications from people from all backgrounds and communities, actively seeking to employ people from a wide range of different communities.
27/03/2026
Full time
Job Title: Security Risk Lead
Salary: £53,300 - £71,300
Location: Cambridge/Hybrid with 2 days a week minimum in the office
Contract: Permanent
Hours: 35 hour per week
Join our organisation as a Security Risk Lead . Utilise your expertise and drive to safeguard operations in this impactful role.
We are Cambridge University Press & Assessment, a world-leading academic publisher and assessment organisation and a proud part of the University of Cambridge.
About the role
The Security Risk Lead plays a pivotal role by driving Cambridge University Press & Assessment's security risk management strategy. This position is responsible for identifying, assessing, and mitigating operational, financial, and strategic security risks across the organisation to ensure a resilient and compliant security framework.
Overseeing the Security Risk Manager, the Security Risk Lead will work closely with senior stakeholders to develop and embed risk management processes that align with the organisation's priorities. They will also take the lead on key initiatives to reduce the organisation's risk exposure, delivering critical risk insights, reports
Lead and improve the security risk management strategy, in line with Enterprise risk strategy, identifying, analysing, and evaluating risks that may affect the organisation.
Implement controls to mitigate risks and ensure effective execution.
Manage and support the Security Risk Manager. Prepare and present regular risk reports for senior management.
Oversee the analysis and monitoring of risks, ensuring emerging risks are flagged. Ensure compliance with regulatory requirements.
Monitor industry trends and best practices.
Collaborate with the Head of Security GRC and teams to manage incidents and propose corrective actions.
Provide risk management training and develop a risk-aware culture.
Support the development of security risk policies and frameworks.
Collect data for risk assessments and foster a collaborative risk management approach. Provide risk management input on key projects.
Represent the organisation in industry forums.
This position has been classified as a hybrid role, requiring the selected candidate to typically spend 40-60% of their time collaborating and connecting face-to-face at their dedicated location. Aside from our hybrid principles, other flexible working requests will be considered from the first day of employment, including other work arrangements should you require adjustments due to a disability or long-term health condition.
About You We are looking for someone with extensive knowledge of security risk management frameworks and methodologies (e.g., ISO 31000, 27001, 27005, NIST) and regulatory requirements in the industry
The ideal candidate will have a relevant degree in Risk Management, Finance, Business, or a related field, or appropriate business experience, along with active CRISC or 27005 Risk Manager certification
You should have a minimum of 5 years or demonstrated experience in a governance, risk, or compliance role within an information security context
Strong analytical and problem-solving abilities, excellent written and verbal communication skills, and proficiency in risk management software and MS Office Suite are essential
You should be detail-oriented with strong organisational and project management skills, and able to work well in a team-oriented environment and build relationships with stakeholders.
If you meet the above minimum requirements, we encourage you to apply.
Your application will be even stronger if you can also demonstrate the following desirable criteria:
Design or implementation of parts of or all of a Risk Management Framework
Managed risks within an operational environment
Developed risk management recommendations for senior leadership
Managed and maintained a comprehensive risk management framework, including risks registers, control tracking, governance fora and reporting measures
For a detailed job description, please refer to the link at the bottom of the advert on our careers site.
We are a Disability Confident (DC) employer that is committed to equality and inclusion ensuring our recruitment process is accessible to all. The DC scheme's Offer of an Interview commitment applies to applicants who opt in, and disclose a disability or a long-term health condition, and best meet the minimum criteria for the role. In instances where interviewing all qualifying candidates is not practicable, we prioritise those who best meet the minimum criteria, as we would for applicants who do not have a disability or long-term health condition.
Cambridge University Press & Assessment is an approved UK employer for the sponsorship of eligible roles and applicants under the Skilled Worker visa route. Please refer to the gov.uk website for guidance to understand your own eligibility based on the role you are applying for.
Rewards and benefits
We will support you to be at your best in work and to live well outside of it. In addition to competitive salaries, we offer a world-class, flexible rewards package , featuring family-friendly and planet-friendly benefits including:
28 days annual leave plus bank holidays
Private medical and Permanent Health Insurance
Discretionary annual bonus
Group personal pension scheme
Life assurance up to 4 x annual salary
Green travel schemes
Ready to pursue your potential? Apply now.
We aim to support candidates by making our interview process clear and transparent. The closing date for all applications will be 17 April 2026 . We will review applications on an ongoing basis, and shortlisted candidates can expect interviews to take place shortly after it closes
If you are shortlisted and progressed through the stages, you can expect:
A 15-minute screening call with the Hiring Manager.
First stage virtual interview via MS Teams. You will be provided with a brief to complete a role related task which will need to be returned by email in advance of your interview.
Final stage interview: in-person at our offices in Cambridge.
If you require any reasonable adjustments during the recruitment process due to a disability or a long-term health condition, there will be an opportunity for you to inform us via the online application form. We will do our best to accommodate your needs.
Please note that successful applicants will be subject to satisfactory background checks including DBS due to working in a regulated industry.
We are committed to an equitable recruitment process. As such, applications must be submitted via our official online application procedure. Please refrain from sending your CV directly to our recruiters. If you experience technical difficulties or require additional support with submitting your online application, contact the Recruiter.
Why join us
Joining us is your opportunity to pursue potential. You will belong to a collaborative team that is exploring new and better ways to serve students, teachers and researchers across the globe – for the benefit of individuals, society and the world. Sharing our mission will inspire your own growth, development and progress, in an environment which embraces difference, change and aspiration.
Cambridge University Press & Assessment is committed to being a place where anyone can enjoy a successful career, where it is safe to speak up, and where we learn continuously to improve together. We welcome applications from all candidates, regardless of demographic characteristics (age, disability, educational attainment, ethnicity, gender, marital status, neurodiversity, religion, sex, gender identity and sexual identity), cultural, or social class/background.
We believe better outcomes come through diversity of thought, background and approach. We welcome applications from people from all backgrounds and communities, actively seeking to employ people from a wide range of different communities.
Information Security Assurance & Cyber Specialist - Hybrid Our client is urgently looking for an experienced Information Security Assurance & Cyber Specialist to join their team based in London on a permanent basis. Please note, the role is hybrid, with 2-4 days per week on-site. You will assist the Cyber & Information Security Specialist in ensuring our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the Information Security Technology Manager to safeguard the company using the latest and most advanced security tools. This multifaceted role combines security governance and assurance with hands-on technical skills, utilising state-of-the-art security products to proactively protect the firm and its valuable assets. Your organisational skills and responsiveness will be crucial, as you will need to maintain a keen eye for detail and adapt to a flexible work schedule with shifting priorities. A positive, can-do attitude is essential as you tackle various tasks with enthusiasm and diligence. You will be rewarded with an excellent salary, as well as a brilliant benefits package including discretionary bonus, annual leave, pension scheme, private medical cover, life assurance, season ticket loan, cycle to work scheme, discounted gym membership and many, many more perks! Information Security Assurance & Cyber Specialist - Key Skills: Highly experienced in information security governance, risk management, and compliance. Demonstrated experience with developing and implementing information security policies, procedures, and standards. Experience with SOC 2, ISO 27001, NIST 800-53 and GDPR compliance frameworks is highly preferred. Strong understanding of security risk management principles and methodologies. Excellent communication, collaboration, and interpersonal skills. Ability to work independently and as part of a team. Proficient in Microsoft Office Suite and security information management tools. Experience with security awareness and training programs. Experience with GRC (Governance, Risk, and Compliance) tools. Certified Information Systems Security Professional (CISSP) or equivalent certification. Information Security Assurance & Cyber Specialist - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
02/10/2025
Full time
Information Security Assurance & Cyber Specialist - Hybrid Our client is urgently looking for an experienced Information Security Assurance & Cyber Specialist to join their team based in London on a permanent basis. Please note, the role is hybrid, with 2-4 days per week on-site. You will assist the Cyber & Information Security Specialist in ensuring our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the Information Security Technology Manager to safeguard the company using the latest and most advanced security tools. This multifaceted role combines security governance and assurance with hands-on technical skills, utilising state-of-the-art security products to proactively protect the firm and its valuable assets. Your organisational skills and responsiveness will be crucial, as you will need to maintain a keen eye for detail and adapt to a flexible work schedule with shifting priorities. A positive, can-do attitude is essential as you tackle various tasks with enthusiasm and diligence. You will be rewarded with an excellent salary, as well as a brilliant benefits package including discretionary bonus, annual leave, pension scheme, private medical cover, life assurance, season ticket loan, cycle to work scheme, discounted gym membership and many, many more perks! Information Security Assurance & Cyber Specialist - Key Skills: Highly experienced in information security governance, risk management, and compliance. Demonstrated experience with developing and implementing information security policies, procedures, and standards. Experience with SOC 2, ISO 27001, NIST 800-53 and GDPR compliance frameworks is highly preferred. Strong understanding of security risk management principles and methodologies. Excellent communication, collaboration, and interpersonal skills. Ability to work independently and as part of a team. Proficient in Microsoft Office Suite and security information management tools. Experience with security awareness and training programs. Experience with GRC (Governance, Risk, and Compliance) tools. Certified Information Systems Security Professional (CISSP) or equivalent certification. Information Security Assurance & Cyber Specialist - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Internal job title will be 'Technical Administrator'*
Cyber Practice
Claranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of Claranet’s vision. Taking a customer first approach, Claranet’s Cyber Practice prides itself in providing world-class services designed to meet the specific and individual needs of all customers, across all industries.
Position Summary
As a Technical Administrator you will be responsible for communicating with customers across a variety of platforms, coordinating operational activities, data collection and analysis, and updating internal systems to ensure smooth project delivery. Your role in supporting colleagues to achieve company goals, providing excellent customer experience in your interactions, and insight into efficiency opportunities, is vital.
Beyond this, you may work with other stakeholders across the wider business in support of Claranet’s mission building new and exciting services, enhancing and improving existing service offerings, and delivering additional services within the Cyber Practice function.
Role Mission
Claranet UK’s strategy is to build long-term, trusted relationships with its customers by delivering market-leading, integrated managed services. We are seeking a Technical Administrator to deliver high-quality services and to contribute to the continued development of our market-leading portfolio, designed to meet the growing and diverse needs of our customers.
Objectives and Key Results
The Technical Administrator is part of the Cyber Practice.
The key objectives will be to:
* Provide a wide variety of administrative support to ensure effective project delivery
* Target customer satisfaction across all interactions, supporting colleagues in meeting customer and company expectations
* Foster a collaborative knowledge sharing culture between GRC team members
* Pursue continuous improvement in project management and data analysis, driven by a desire to enhance efficiency and effectiveness
* Continuously learn and acquire new skills through various learning opportunities, including internal/external training courses, on-the-job training and shadowing Support cross-function engagement to facilitate effective communication and collaboration between relevant stakeholders to help Claranet meet its vision
Essential Duties and Responsibilities
* Support GRC Team members delivering Cyber Security GRC services
* Perform research as directed by team leader/manager in support of Cyber Security GRC services
* As necessary, create and maintain documentation supporting the delivery of Cyber Security GRC services
* Interact professionally with customers across a variety of channels, ensuring timely progression of projects and the ongoing development of longstanding trust-based customer relationships
* Regular management of team mailboxes, requiring timely responses to customer contact
* Conduct customer meetings with regards to advisory information
* Understand technical terms and have a willingness to learn on the job
Teams to collaborate with
* Customer Experience and Managed Services – ensure we are consistently providing the best service to our customers, proactively monitoring their needs, and integrating their feedback into our future portfolio and propositions
Behavioural competencies – organisational and behavioural fit
* Able to represent Claranet confidently and professionally, with experience of regularly interacting with customers with positive outcomes
* Share ideas constructively and work collaboratively with a variety of colleagues
* Self-motivated and able to work in an independent manner, as well as part of a dynamic team
* Consistently delivers on commitments, actively pursues personal growth, and embraces developmental feedback to enhance performance.
* Positive, collaborative, and enthusiastic
* Process-driven with analytical approach to responsibilities
* Able to travel to different sites and locations as required
Critical competencies – technical fit
* Proven ability to successfully provide administrative support for operational teams and managing workload successfully, despite competing priorities
* Experience of conducting data analysis and presenting findings in a way they can be easily understood
* Clear and consistent communication skills across a variety of channels, using these to foster productive and strong working relationships
* Able to work effectively in fast paced environments while maintaining a strong attention to detail
* Demonstrable numeracy and organisational expertise
* Ability to quickly learn and understand new skills and technologies
Desirable competencies
* Demonstrate technical understanding such as networking, systems administration, virtualisation, telephony
* Knowledge of any regulatory or industry standard frameworks such as ISO 27001 would be advantageous
* Knowledge of Cloud Azure, AWS or GCP desirable
01/06/2025
Internal job title will be 'Technical Administrator'*
Cyber Practice
Claranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of Claranet’s vision. Taking a customer first approach, Claranet’s Cyber Practice prides itself in providing world-class services designed to meet the specific and individual needs of all customers, across all industries.
Position Summary
As a Technical Administrator you will be responsible for communicating with customers across a variety of platforms, coordinating operational activities, data collection and analysis, and updating internal systems to ensure smooth project delivery. Your role in supporting colleagues to achieve company goals, providing excellent customer experience in your interactions, and insight into efficiency opportunities, is vital.
Beyond this, you may work with other stakeholders across the wider business in support of Claranet’s mission building new and exciting services, enhancing and improving existing service offerings, and delivering additional services within the Cyber Practice function.
Role Mission
Claranet UK’s strategy is to build long-term, trusted relationships with its customers by delivering market-leading, integrated managed services. We are seeking a Technical Administrator to deliver high-quality services and to contribute to the continued development of our market-leading portfolio, designed to meet the growing and diverse needs of our customers.
Objectives and Key Results
The Technical Administrator is part of the Cyber Practice.
The key objectives will be to:
* Provide a wide variety of administrative support to ensure effective project delivery
* Target customer satisfaction across all interactions, supporting colleagues in meeting customer and company expectations
* Foster a collaborative knowledge sharing culture between GRC team members
* Pursue continuous improvement in project management and data analysis, driven by a desire to enhance efficiency and effectiveness
* Continuously learn and acquire new skills through various learning opportunities, including internal/external training courses, on-the-job training and shadowing Support cross-function engagement to facilitate effective communication and collaboration between relevant stakeholders to help Claranet meet its vision
Essential Duties and Responsibilities
* Support GRC Team members delivering Cyber Security GRC services
* Perform research as directed by team leader/manager in support of Cyber Security GRC services
* As necessary, create and maintain documentation supporting the delivery of Cyber Security GRC services
* Interact professionally with customers across a variety of channels, ensuring timely progression of projects and the ongoing development of longstanding trust-based customer relationships
* Regular management of team mailboxes, requiring timely responses to customer contact
* Conduct customer meetings with regards to advisory information
* Understand technical terms and have a willingness to learn on the job
Teams to collaborate with
* Customer Experience and Managed Services – ensure we are consistently providing the best service to our customers, proactively monitoring their needs, and integrating their feedback into our future portfolio and propositions
Behavioural competencies – organisational and behavioural fit
* Able to represent Claranet confidently and professionally, with experience of regularly interacting with customers with positive outcomes
* Share ideas constructively and work collaboratively with a variety of colleagues
* Self-motivated and able to work in an independent manner, as well as part of a dynamic team
* Consistently delivers on commitments, actively pursues personal growth, and embraces developmental feedback to enhance performance.
* Positive, collaborative, and enthusiastic
* Process-driven with analytical approach to responsibilities
* Able to travel to different sites and locations as required
Critical competencies – technical fit
* Proven ability to successfully provide administrative support for operational teams and managing workload successfully, despite competing priorities
* Experience of conducting data analysis and presenting findings in a way they can be easily understood
* Clear and consistent communication skills across a variety of channels, using these to foster productive and strong working relationships
* Able to work effectively in fast paced environments while maintaining a strong attention to detail
* Demonstrable numeracy and organisational expertise
* Ability to quickly learn and understand new skills and technologies
Desirable competencies
* Demonstrate technical understanding such as networking, systems administration, virtualisation, telephony
* Knowledge of any regulatory or industry standard frameworks such as ISO 27001 would be advantageous
* Knowledge of Cloud Azure, AWS or GCP desirable
Information Security Governance Manager - GRC Information Security Governance Manager - GRC - required by 900+ user City Law Firm. Reporting to the Head of InfoSec you will be responsible for the definition of, and compliance with, the firm's InfoSec Policies and Standards. You will join a small team managing business and compliance risks, protecting business-critical processes and applications, an...... click apply for full job details
24/03/2021
Full time
Information Security Governance Manager - GRC Information Security Governance Manager - GRC - required by 900+ user City Law Firm. Reporting to the Head of InfoSec you will be responsible for the definition of, and compliance with, the firm's InfoSec Policies and Standards. You will join a small team managing business and compliance risks, protecting business-critical processes and applications, an...... click apply for full job details
