At a Glance
- Tasks: Lead CIS Controls assessments and drive security implementation in complex environments.
- Company: Major enterprise programme focused on cyber security.
- Benefits: Strong day rate and hands-on experience in a dynamic role.
- Other info: Ideal for those with a background in large-scale transformation.
- Why this job: Make a real impact in cyber security while working with top professionals.
- Qualifications: Experience in GRC, security engineering, and implementing CIS Controls.
We’re supporting a major enterprise programme looking for a Cyber Security SME with deep experience across CIS Controls, security assurance, and enterprise remediation programmes. This is a hands-on role suited to someone who can bridge technical security, governance, and operational delivery across complex environments.
Key Responsibilities
- Lead CIS Controls assessments, gap analysis, and remediation planning
- Map security gaps against regulatory and enterprise security frameworks
- Drive control implementation and technical assurance activities
- Work closely with engineering, infrastructure, cloud, and security teams
- Support operational handover into BAU security functions
- Manage dependencies, risks, and stakeholder engagement across programmes
- Support internal and external audit activities
Required Experience
- Strong background across GRC, security engineering, or controls assurance
- Proven experience implementing CIS Controls within large enterprises
- Strong understanding of cloud security and security governance
- Excellent stakeholder management and communication skills
- Ability to work within fast-paced, highly regulated environments
Ideal for candidates with experience across large-scale transformation or critical infrastructure environments.
For more information and direct contact with me, please send me an email and call only if required. I will be sure to check responses daily and shortlist the best candidates; if you are shortlisted, you will hear from me.
Cyber Security SME — CIS Controls Lead (6-12Mo Contract) employer: Gazelle Global
As a leading player in the cyber security sector, we offer an exceptional work environment in London that fosters innovation and collaboration. Our commitment to employee growth is evident through our hands-on approach to professional development, ensuring that you not only contribute to critical enterprise programmes but also enhance your skills in a dynamic and supportive culture. With competitive day rates and the opportunity to work on transformative projects, we are dedicated to making your experience both meaningful and rewarding.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security SME — CIS Controls Lead (6-12Mo Contract)
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who have experience with CIS Controls. A friendly chat can lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for interviews by brushing up on your technical knowledge and understanding of GRC and cloud security. We recommend practising common interview questions related to CIS Controls and having examples ready that showcase your hands-on experience.
✨Tip Number 3
Don’t underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express your appreciation. It keeps you fresh in their minds and shows your enthusiasm for the role.
✨Tip Number 4
Apply through our website for the best chance at landing that Cyber Security SME role. We’re always on the lookout for candidates who fit the bill, and applying directly can help us spot your application faster!
We think you need these skills to ace Cyber Security SME — CIS Controls Lead (6-12Mo Contract)
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with CIS Controls and security assurance. We want to see how your background aligns with the key responsibilities mentioned in the job description.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you're the perfect fit for this role. Share specific examples of your past work that demonstrate your skills in managing security gaps and stakeholder engagement.
Showcase Your Technical Skills:Don’t forget to mention your technical expertise, especially in cloud security and governance. We’re looking for someone who can bridge the gap between technical and operational delivery.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensure it gets the attention it deserves!
How to prepare for a job interview at Gazelle Global
✨Know Your CIS Controls Inside Out
Make sure you’re well-versed in the CIS Controls, especially those relevant to the role. Brush up on your knowledge of security assurance and how these controls apply in large enterprises. Being able to discuss specific examples of how you've implemented these controls will definitely impress.
✨Showcase Your Stakeholder Management Skills
Prepare to talk about your experience managing stakeholders across various teams. Think of specific instances where you successfully engaged with engineering, infrastructure, or cloud teams. Highlighting your communication skills and ability to bridge gaps between technical and operational aspects will set you apart.
✨Demonstrate Your Problem-Solving Abilities
Be ready to discuss how you've tackled security gaps in previous roles. Prepare a few case studies where you led assessments or remediation planning. This will show that you can think critically and act decisively in fast-paced environments.
✨Understand the Regulatory Landscape
Familiarise yourself with the regulatory frameworks relevant to the role. Be prepared to discuss how you’ve mapped security gaps against these frameworks in past projects. This knowledge will demonstrate your capability to navigate complex compliance requirements effectively.
