Cyber Security Auditor / Information Security Auditor

Gloucester
19 hours ago
Create job alert

Cyber Security Auditor / Information Security Auditor - £500 per day - Inside IR35 - Hybrid working from Gloucester - 6 months initial contract - Priority will be given to candidates with active or recently lapsed SC clearance. Applicants must be eligible to obtain SC clearance. 

Our client, one of the biggest producers of ZERO CARBON energy in the UK, is seeking a highly skilled Cyber Security Auditor / Information Security Auditor to join their Nuclear Services Information Security team. This role is critical in supporting the company's information security objectives, ensuring regulatory compliance, and managing the security risks associated with third-party access to sensitive nuclear information.

You will play a central role in delivering assurance activities, performing audits, and providing expert guidance to internal teams and external partners. This position requires strong attention to detail, excellent communication skills, and the ability to navigate complex security frameworks in a regulated environment.

Key Responsibilities:

Promote information security policies and practices across staff, contractors, and third parties to maintain regulatory compliance and foster an informed workforce.
Act as a Subject Matter Expert to ensure robust cyber security measures are integrated into third-party agreements.
Conduct thorough third-party cyber security assessments during onboarding and renewals, identifying risks accurately and consistently.
Produce reports and dashboards to support informed decision-making.
Lead initiatives to implement automation and tools that enhance efficiency.
Investigate, coordinate, and report security findings, ensuring effective follow-up and resolution.
Support the development of strategies to mitigate information security risks and maintain accredited systems.
Maintain up-to-date awareness of security threats and technologies to guide appropriate controls.
Perform formal information security audits and review systems and networks for potential vulnerabilities.

What We're Looking For:

Good working knowledge of international standards and frameworks (ISO27001, ISO27017, GDPR, Cyber Essentials Plus).
Experience in auditing or assurance activities within regulated sectors.
Familiarity with HMG Security Policy Framework and NCSC/CPNI guidance.
Understanding of information security threats, risks, and risk assessment methodologies (ISO27005, NIST, IRAM2).
Excellent written and oral communication skills, with the ability to translate complex findings to non-security audiences.
Strong problem-solving skills, tenacity, and a willingness to learn and develop professionally.
Key Competencies:

Championing Change & Improvement
Managing Relationships
Communicating with Influence
Role Modelling the Way
Emotional Resilience

Additional Information:

This role will involve national travel (UK only).

If you are passionate about cyber security, thrive in a regulated environment, and want to contribute to the safe management of critical nuclear information, we want to hear from you

Related Jobs

View all jobs

Information Security Analyst

Information Security Manager

Internal Auditor

Quality Manager  - Part-Time

Head of Compliance

OT Security Architect - Outside IR35 - Midlands (hybrid)

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.