Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security governance and risk management, ensuring compliance with industry standards.
- Company: Join a top-tier fintech firm known for innovation and collaboration with major financial institutions.
- Benefits: Enjoy competitive pay, bonuses, and a flexible work environment with remote options.
- Why this job: Be part of a zero-trust, intelligence-driven culture that values your input and expertise.
- Qualifications: 5+ years in Cyber Security, with experience in Security Risk teams and GRC tools.
- Other info: Work on-site 2 days a week in vibrant London.
The predicted salary is between 72000 - 108000 £ per year.
Location: London on-site 2 days p/w
Compensation: Up to £90,000 per annum + variable bonuses up to £115,000
Lawrence Harvey are currently partnered with a top-tier Financial Markets firm who are looking for an AVP of Security Governance, Risk and Assurance to join their strong existing Security Governance and Risk Management Department. In this role, you will be reporting to the Director of Security.
This is a great opportunity to work in an innovative fintech environment at a market-leading organization that operates in a Zero-Trust, intelligence-driven environment. If you want to collaborate with Major Central Banks and Financial Institutions, this is for you:
What you will be doing:
- Maintaining and aligning Security Frameworks by developing and upholding security policies, standards, procedures and frameworks, ensuring alignment with NIST CSF and NIST 800-53
- Addressing security gaps, guiding remediation and monitoring progress
- Understanding security gaps and providing evaluation and treatment options, consultation on remediation approaches to address gaps and continue ongoing monitoring of remediation, re-assess until reduced to an acceptable level.
- Supporting Cybersecurity Risk Management strategies based on security findings and observations, including informing improvements to organizational cybersecurity risk management processes, procedures and activities identified across all security functions.
- Providing assurance to stakeholders by delivering detailed reporting and metrics.
What you will bring:
- A minimum of 5 years of experience in Cyber Security, with ideally 2 years experience working in a Security Risk team.
- Organisation, experience with planning, data reporting, information and updates
- Strong ability to work with others to drive forward security objectives.
- Meticulous attention to detail.
- Experience with GRC tools (RSA Archer preferred)
Desired qualifications/certifications:
- Ideally a Master's Degree in Information Security, CICA/CRISC/CISM/Data Analysis
- NIST CSF, ISO27001, SOC 1/2
- Prince 2, MSP, APMQ are advantageous
Sound like your next move? If it does, apply below or forward a resume to j.walsh@lawrenceharvey.com
AVP, Security Governance, Risk and Assurance employer: Lawrence Harvey
Contact Detail:
Lawrence Harvey Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land AVP, Security Governance, Risk and Assurance
✨Tip Number 1
Familiarise yourself with the NIST Cybersecurity Framework and NIST 800-53 standards. Understanding these frameworks will not only help you in interviews but also demonstrate your commitment to aligning with the company's security policies.
✨Tip Number 2
Network with professionals in the cybersecurity field, especially those who work in financial markets. Engaging with industry peers can provide insights into the role and may even lead to referrals within the company.
✨Tip Number 3
Prepare to discuss specific examples of how you've addressed security gaps in previous roles. Being able to articulate your experience with remediation strategies will showcase your practical knowledge and problem-solving skills.
✨Tip Number 4
Stay updated on the latest trends and threats in cybersecurity, particularly in the fintech sector. Showing that you're proactive about learning and adapting to new challenges can set you apart from other candidates.
We think you need these skills to ace AVP, Security Governance, Risk and Assurance
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Cyber Security, particularly any roles related to Security Governance and Risk Management. Emphasise your familiarity with NIST CSF and NIST 800-53, as well as any GRC tools you've used.
Craft a Compelling Cover Letter: In your cover letter, express your enthusiasm for the role and the company. Discuss how your background aligns with the responsibilities outlined in the job description, particularly your experience in addressing security gaps and providing assurance to stakeholders.
Highlight Relevant Certifications: If you have certifications like CICA, CRISC, or CISM, make sure to mention them prominently in your application. These qualifications can set you apart from other candidates and demonstrate your commitment to the field.
Showcase Soft Skills: The role requires strong organisational skills and the ability to work collaboratively. Use specific examples in your application to illustrate how you've successfully worked with teams to achieve security objectives and how your attention to detail has benefited past projects.
How to prepare for a job interview at Lawrence Harvey
✨Understand the Security Frameworks
Make sure you have a solid grasp of security frameworks like NIST CSF and NIST 800-53. Be prepared to discuss how you've applied these in your previous roles, as this will demonstrate your expertise and alignment with the company's needs.
✨Showcase Your Experience with GRC Tools
If you have experience with Governance, Risk, and Compliance (GRC) tools, especially RSA Archer, be ready to share specific examples of how you've used them to address security gaps and improve processes. This will highlight your technical skills and practical knowledge.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving abilities in real-world situations. Think about past experiences where you identified security gaps and how you approached remediation. This will showcase your analytical skills and attention to detail.
✨Emphasise Collaboration Skills
Since the role requires working closely with various stakeholders, be prepared to discuss how you've successfully collaborated with teams in the past. Highlight any instances where you drove security objectives forward through teamwork, as this is crucial for the position.
