: () / -

I'm currently recruiting for a highly skilled to lead the development and implementation of a cyber risk management programme.

Key Responsibilities

• Design and deliver a robust cyber security risk management framework.

• Conduct regular risk and vulnerability assessments

• Work collaboratively across departments to define risk tolerance and align with strategic objectives.

• Analyse cyber security data to identify risks and recommend mitigation strategies.

• Maintain comprehensive risk documentation, including registers, impact analyses and treatment plans.

• Communicate risk insights and recommendations clearly to stakeholders.

• Develop and monitor key risk indicators (KRIs) and key performance indicators (KPIs).

• Support project teams in embedding risk management throughout project lifecycle.

• Collaborate with internal and external partners to enhance incident response and cyber resilience.

Candidates will have;

• Experience in a cyber security risk management role.

• Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR).

• Excellent analytical, communication, and stakeholder engagement skills.

• Proficient in risk assessment tools and methodologies.

• Professional certifications such as CRISC, CISM or CISSP are desirable.

Bright Purple is an equal opportunities employer: we are proud to work with clients who share our values of diversity and inclusion in our industry.