← Back to London Jobs
Position Details
Your role
Conduct cybersecurity and IT risk assessments across systems, applications, infrastructure, business processes, and third parties, as applicable. Use ServiceNow IRM or similar GRC tools to manage risk workflows, control records, issues, exceptions, and reporting. Perform control assessments to evaluate control design, implementation, and operating effectiveness. Identify and document threats, vulnerabilities, control gaps, business impacts, and residual risks. Maintain the cyber risk register, including risk scoring, ownership, treatment plans, and remediation status. Track and follow up on risk remediation and corrective action plans with control owners and stakeholders. Prepare risk posture dashboards, reports, KRIs, and summaries for leadership and governance forums. Support alignment with applicable regulatory and framework requirements, including NIST, NIS2, DORA, ISO 27001/27005, and...