Cyber Security Policy and Standards Specialist

• Supporting the creation, maintenance, and improvements to the Security Policy and Standards and associated processes
• Supporting the definition of metrics for measuring compliance to security policies and standards
• Collaborating with the Risk, Governance, and Assurance teams to ensure alignment with business risks and providing regular reports on compliance metrics
• Tracking effectiveness of the delivery of content with various KPIs and metrics, as well as implementing continuous improvement
• Using data to inform decisions, ensuring metrics are clear, unambiguous, and data-driven
• Developing and maintaining educational and training materials to ensure compliance with regulatory and contractual obligations
• Working collaboratively with other members of the Secure in Operation function to drive an integrated and supportive culture
• Championing a security-conscious mindset through actions and collaboration
• Executing the day-to-day administrative duties that form the foundation of our risk management and compliance programs

Technologies:

• Excel
• Security

More:

We are a leading organization based in Bristol and London, committed to ensuring the security and compliance of our operations through a robust policy and standards framework. As part of our team, you will have the opportunity to make a significant impact in the field of governance, risk, and compliance within a supportive environment. We offer a collaborative culture that empowers colleagues with clear guidance and controls while prioritizing professional development and growth. This role features a hybrid working model, with three days onsite and two remote, allowing for flexibility in your work-life balance.

• Ability to translate complex, technical problems into easy-to-understand language
• Good understanding of and passion for cyber security best practice
• Familiarity with the core principles of GRC (Governance, Risk, and Compliance) within a technology environment
• Computer literacy (with focus on PowerPoint and Excel)
• Bachelor's degree in computer science, Information Security, Compliance, or a related field (preferred)
• Genuine passion for cyber security and a strong desire to learn and develop in the field (preferred)
• Excellent problem-solving skills and the ability to think critically under pressure (preferred)
• Hands-on experience supporting compliance assessments (preferred)
• Experience contributing to security risk management activities (preferred)
• A relevant security certification is highly preferred (e.g. CISSP, CISM, CASP+, CRISC, GSEC, etc.)