At a Glance
- Tasks: Lead CIS Controls assessments and drive security implementation in complex environments.
- Company: Major enterprise programme focused on cyber security.
- Benefits: Strong day rate and hands-on experience in a dynamic role.
- Other info: Ideal for those with a background in large-scale transformation.
- Why this job: Make a real impact in cyber security while working with top professionals.
- Qualifications: Experience in GRC, security engineering, and implementing CIS Controls.
We’re supporting a major enterprise programme looking for a Cyber Security SME with deep experience across CIS Controls, security assurance, and enterprise remediation programmes. This is a hands-on role suited to someone who can bridge technical security, governance, and operational delivery across complex environments.
Key Responsibilities
- Lead CIS Controls assessments, gap analysis, and remediation planning
- Map security gaps against regulatory and enterprise security frameworks
- Drive control implementation and technical assurance activities
- Work closely with engineering, infrastructure, cloud, and security teams
- Support operational handover into BAU security functions
- Manage dependencies, risks, and stakeholder engagement across programmes
- Support internal and external audit activities
Required Experience
- Strong background across GRC, security engineering, or controls assurance
- Proven experience implementing CIS Controls within large enterprises
- Strong understanding of cloud security and security governance
- Excellent stakeholder management and communication skills
- Ability to work within fast-paced, highly regulated environments
Ideal for candidates with experience across large-scale transformation or critical infrastructure environments.
For more information and direct contact with me, please send me an email and call only if required. I will be sure to check responses daily and shortlist the best candidates; if you are shortlisted, you will hear from me.
Cyber Security SME — CIS Controls Lead (6-12Mo Contract) in London employer: Gazelle Global
As a leading player in the cyber security sector, we offer an exceptional work environment in London that fosters innovation and collaboration. Our commitment to employee growth is evident through our hands-on approach to professional development, ensuring that you not only contribute to critical enterprise programmes but also enhance your skills in a dynamic and supportive culture. With competitive day rates and the opportunity to work on transformative projects, joining us means being part of a forward-thinking team dedicated to making a significant impact in the field of cyber security.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security SME — CIS Controls Lead (6-12Mo Contract) in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who have experience with CIS Controls. A friendly chat can lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for interviews by brushing up on your technical knowledge and understanding of GRC and cloud security. We recommend practising common interview questions related to CIS Controls and having examples ready that showcase your hands-on experience.
✨Tip Number 3
Don’t underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express your appreciation. It keeps you fresh in their minds and shows your enthusiasm for the role.
✨Tip Number 4
Apply through our website for the best chance at landing that Cyber Security SME role. We’re always on the lookout for candidates who fit the bill, and applying directly helps us keep track of your application!
We think you need these skills to ace Cyber Security SME — CIS Controls Lead (6-12Mo Contract) in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with CIS Controls and security assurance. We want to see how your background aligns with the key responsibilities mentioned in the job description.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you're the perfect fit for this role. Share specific examples of your past work that demonstrate your skills in managing security gaps and stakeholder engagement.
Showcase Your Technical Skills:Don’t forget to mention your technical expertise, especially in cloud security and governance. We’re looking for someone who can bridge the gap between technical and operational delivery, so make it clear how you can do that.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensure it gets the attention it deserves. Plus, it makes the process smoother for everyone!
How to prepare for a job interview at Gazelle Global
✨Know Your CIS Controls Inside Out
Make sure you’re well-versed in the CIS Controls, especially those relevant to the role. Brush up on your knowledge of security assurance and how these controls apply in real-world scenarios. Being able to discuss specific examples from your past experience will show that you’re not just familiar with the theory but can also implement it effectively.
✨Showcase Your Stakeholder Management Skills
Prepare to discuss how you've successfully engaged with various stakeholders in previous roles. Think about specific instances where you managed dependencies or risks and how you communicated effectively across teams. This will demonstrate your ability to bridge technical and operational aspects, which is crucial for this position.
✨Demonstrate Your Hands-On Experience
Since this is a hands-on role, be ready to share detailed examples of your direct involvement in implementing CIS Controls and conducting gap analyses. Highlight any experience you have with cloud security and how you’ve navigated complex environments. This will help the interviewers see you as a practical problem-solver.
✨Prepare for Technical Questions
Expect some technical questions related to security frameworks and remediation planning. Brush up on your knowledge of GRC and security engineering principles. Practising answers to common technical scenarios can help you feel more confident and articulate during the interview.
