Information Security & Risk Specialist

London
3 days ago
Create job alert

Information Security & Risk Specialist

Role: Information Security & Risk Specialist
Specialism(s): Global Information Security, Risk Analysis, Cyber Security, Information Security, International Cyber Security, 3rd Party Security Compliance, Risk Management, Risk Reporting, Audit & Compliance, Cloud Infrastructure, ISO2700x, NIST, SOC2, PCI, GDPR, Risk Assessments
Type: Contract, Inside IR35
Duration: 12 Months
Location: London, On-Site Working (1 day remote per week)
Start: ASAP/Urgent

Information Security & Risk Specialist

CPS Group UK are delighted to be working with a leading, global Entertainment brand to appoint an Information Security & Risk Specialist to join their Global Information Security team for an initial 12-month contract.

The Information Security & Risk Specialist will partner with technology teams and business units to analyse and mitigate risk in their environments, whilst also providing Information/Cyber Security advise and support for international projects to ensure alignment with global Information Security policies and standards.

The role will also support the onboarding and monitoring of international technical infrastructure to ensure visibility and asset protection. The Information Security & Risk Specialist will also review and manage remediation of existing and new security findings and vulnerabilities.

Role Requirements

  • Mange the information security and risk aspects of international technology projects for various business units
  • Document environment risk and provide regular risk reporting on projects and initiatives
  • Build a strong understanding of the international ecosystem and support varying information security and risk initiatives
  • Prioritise high risk queries and tasks ensuring they go through a robust risk assessment
  • Perform security reviews when required for high-risk impact systems
  • Onboarding and monitoring of international infrastructure
  • Review, communicate and manage remediation of security findings and vulnerabilities
  • Embed a risk-based approach to IT Security across the business
  • Assist with coordination and reporting of security incidents
  • Support and manage 3rd party security compliance processes and assessments
  • Support risk assessments and define security mitigating controls
  • Contribute to the development of a culture of security awareness and best practice
  • Ensure business and technology alignment with privacy requirements (e.g. GDPR)

    Required Skills & Experience

  • 3+ years' experience in Information or Cyber Security specific roles (ideally focusing on Risk, Audit & Compliance)
  • 2+ years' commercial experience in IT Security Risk Management, Security Audit & Compliance (ideally EMEA or Global remit)
  • Demonstrable experience of interpreting and assessing risk in large organisations
  • Solid understanding of technology concepts, particularly cloud infrastructure engineering and architecture
  • Understanding of and hands-on experience with vulnerability detection tools (e.g. Qualys, CrowdStrike, Tenable, Prisma)
  • Strong knowledge of IS compliance frameworks and standards (ISO2700x, NIST, GDPR, SOC2, PCI)
  • Practical understanding of cyber security technology best practice
  • Experience supporting EMEA or Global technology projects from an InfoSec risk perspective
  • Blue-chip/Big4/Large organisation experience

    For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed)

    By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed) src="(url removed)

Related Jobs

View all jobs

Supplier Risk Analyst

Quality Manager  - Part-Time

IT Network Security Engineer

Risk and Compliance Manager

Information Security Specialist

Senior IT Security Specialist

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.