Manager, Cyber Advisory in London

In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity—not just answers—in all areas of business. We value the diverse backgrounds and perspectives that enable us to think globally. As part of One team, One Kroll, you’ll contribute to a supportive and collaborative work environment that empowers you to excel.

Through a combination of subject matter expertise, global research capabilities and flexible technology tools, Kroll helps clients take a risk-based approach toward meeting obligations or remediating failures regarding cybersecurity, privacy program maturity and related regulatory mandates. Our engagements include Virtual CISO, regulatory and compliance assessments, strategies and security program design, transactional due-diligence, data-driven framework design and assessments, expert testimony, privacy program building and a myriad of other advisory efforts.

RESPONSIBILITIES:

Kroll’s Cyber Risk team works on over 3,000 cases a year, including some of the most complex and highest profile matters in the world. With experts based around the world, supported by ground-breaking technology, we help protect our client’s data, people, operations and reputation with innovative assessments, investigations and intelligence. We are the only company in the world with the expertise and resources to deliver global, end-to-end cyber risk management, supporting organizations through every step of their journey toward cyber resilience.

We are looking for bright, inquisitive minds who are experienced in and passionate about cybersecurity consulting and advisory services. Our Advisory team responds to our clients’ needs and provides leadership and strategic guidance when and where it is needed the most.

• Support the delivery of high-quality cybersecurity consulting advice and services to a portfolio of clients of varying size, scope, and complexity.
• Develop data-driven security and governance frameworks and processes using various platforms and tools to continually assess, treat and manage security risks across client organisations.
• Conduct analysis / prioritization of data collected from attack surface monitoring and cybersecurity surveys, development / presentation of reports to clients/portfolio companies, and participation in regular client meetings to discuss findings and answer questions.
• Design and drive programs and remediation activities across GRC & ICT Risk Management, Incident Reporting, Vulnerability Management, Third Party Risk Management and Security Testing.
• Work closely with clients’ security and IT teams to understand their requirements and guide implementation of technologies and processes.
• Undertake implementation, configuration and operationalization activities for new and existing security solutions or services.
• Review and uplift of relevant frameworks, policies and procedures and provide practical advice to support the operation of new processes.
• Stay updated on emerging IT security threats and implement appropriate safeguards.
• Effectively communicate findings, reports, training and strategies to technical staff, executive leadership, legal counsel, and to both internal and external clients.
• Support the development of proposals and statements of work for Kroll clients.
• Work with sales and marketing teams to support the development of new business opportunities.

QUALIFICATIONS:

• Excellent interpersonal skills, drive, enthusiasm, and a passion for security.
• Professional qualifications and/or proven experience in IT/ Information Security, GRC / Risk Management, Vulnerability Management, Incident Response, and/or Regulatory Compliance roles.
• Technical acumen in tools such as Excel, Tableau, Power BI, and/or SQL, to empower teams to extract actionable insights and drive informed decision-making.
• Good knowledge of the technology and cybersecurity regulatory and compliance landscape and requirements e.g. DORA, NIS2, GDPR, PRA/FCA or similar.
• Good knowledge of the security threat landscape, control frameworks and cyber resilience strategies.
• Ability to multi-task and prioritise, at times, conflicting priorities.
• Enjoys solving problems and designing solutions/capabilities leveraging people, processes and technologies.
• Strong written and verbal communication and presentation skills, teamwork, and client relationship skills.
• A broad range of knowledge and understanding of wider commercial, business, and economic issues.
• Experience in client-facing roles and experience in engaging with senior stakeholders in organizations (desirable but not mandatory).
• Experience in high-quality delivery to tight timescales.
• A critical thinker and problem solver with attention to detail and adaptability.
• Outstanding organizational skills.
• Ability to travel up to 25% as required to support response activities.

Above all, Kroll expects candidates to be strategically minded, excellent communicators, strong decision makers, intellectually curious and willing to immerse themselves in new challenges. In return, the company provides an environment where there is on-going training and unparalleled exposure to a wide range of clients, assignments and technologies.

Kroll is committed to creating an inclusive work environment. We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.