Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber security risk assessments and develop GRC policies to shape the company's cyber strategy.
- Company: Join a forward-thinking company at the start of its cyber journey, based in London or Crawley.
- Benefits: Enjoy a competitive salary, bonuses, pension, and opportunities for professional certifications.
- Other info: This role offers real autonomy and the chance to influence the company's cyber security landscape.
- Why this job: Be part of a transformative role where your ideas matter and cyber security is a top priority.
- Qualifications: Experience in technology or cyber risk, knowledge of ISO 27001, and strong communication skills required.
The predicted salary is between 60000 - 84000 £ per year.
Senior Cyber Security Risk Specialist – Make This Role Your Own! 3 days a week on-site in London or Crawley Circa £75K + up to 15% bonus + 10% pension + guaranteed annual salary increases Are you passionate about Cyber Security Risk and ready to play a key role in shaping a GRC function from the ground up? If so, this is a brilliant opportunity to join a business that’s right at the beginning of its cyber journey. With offices in both London and Crawley, they’re looking to build a best-in-class cyber security function and you’ll be right at the heart of that transformation. This isn’t a tick-box auditing role. It’s hands-on, it’s strategic, and it’s a chance to truly influence how cyber risk is approached across the business. Working closely with the GRC Manager, you’ll be instrumental in embedding risk awareness into the business and ensuring technology and threat considerations are front and centre. The best part? This role has space to be shaped by you. There are, of course, some core responsibilities, including: What You’ll Be Doing: Risk Management: Carry out cyber security risk assessments using the company’s risk framework, identifying key issues and tracking remediation actions. Communicate risks and treatments clearly to internal and external stakeholders. Reporting & Metrics: Create meaningful MI on risk and control health. Help define KPIs and KRI metrics across IS teams, prepare regulatory submissions, and track compliance. ISMS Support: Maintain the Information Security Management System (ISMS) in line with ISO 27001/27002. Manage governance forums, minutes, and documentation. Policies & Standards: Develop GRC policies, standards, and procedures. Track exceptions, monitor risk, and report on performance and compliance. Controls Framework: Strengthen the IT controls environment. Understand technical risks and support control improvement initiatives. What You’ll Need: Strong experience in technology risk or cyber risk roles. A proactive approach to identifying threats and making smart, independent decisions. A working knowledge of ISO 27001 and aligning businesses to compliance frameworks. Confidence presenting to senior internal/external stakeholders. Excellent communication skills and a collaborative mindset. Culture fit really matters here. What’s In It For You? Freedom to shape the role. Real autonomy to define the GRC roadmap alongside the manager. Ongoing investment in you. The team is already completing certs like CISM, CRISC, OT & Cloud, ISO Lead Implementer, and more. Award-winning employer. Recognised for diversity, digital transformation, and consistently ranked among the UK’s top employers. Real cyber focus. Not just ticking compliance boxes. Cyber is a business priority. If you want to be part of something from the ground up where your input is valued, your growth is supported, and your work makes a real impact, let’s have a chat
Senior Cyber Security Risk Specialist employer: Morson Talent
Contact Detail:
Morson Talent Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Cyber Security Risk Specialist
✨Tip Number 1
Familiarise yourself with the company's current cyber security landscape. Research their existing policies and frameworks, especially around ISO 27001, to demonstrate your understanding of their needs during discussions.
✨Tip Number 2
Network with professionals in the cyber security field, particularly those who have experience in GRC roles. Engaging with them can provide insights into the challenges and expectations of the position, which you can leverage in conversations.
✨Tip Number 3
Prepare to discuss specific examples of how you've successfully managed cyber risks in previous roles. Highlight your proactive approach and decision-making skills to show that you're ready to take on the responsibilities of this role.
✨Tip Number 4
Showcase your communication skills by practising how you would present complex risk information to non-technical stakeholders. Being able to convey technical details clearly will be crucial in this role.
We think you need these skills to ace Senior Cyber Security Risk Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in technology and cyber risk roles. Emphasise your proactive approach to identifying threats and any relevant certifications like ISO 27001.
Craft a Compelling Cover Letter: In your cover letter, express your passion for shaping a GRC function and how your skills align with the company's needs. Mention specific examples of how you've influenced cyber risk strategies in previous roles.
Showcase Communication Skills: Since the role involves presenting to senior stakeholders, include examples in your application that demonstrate your excellent communication skills and collaborative mindset.
Highlight Cultural Fit: Research the company culture and reflect this in your application. Mention why you believe you would be a good fit for their team and how you can contribute to their cyber security priorities.
How to prepare for a job interview at Morson Talent
✨Show Your Passion for Cyber Security
Make sure to express your enthusiasm for cyber security during the interview. Share specific examples of projects or initiatives you've been involved in that demonstrate your commitment to the field and your proactive approach to identifying threats.
✨Understand the Company's Cyber Journey
Research the company's current cyber security landscape and their goals for building a best-in-class function. Be prepared to discuss how your skills and experiences align with their vision and how you can contribute to shaping their GRC roadmap.
✨Prepare for Technical Discussions
Since this role involves understanding technical risks, brush up on your knowledge of ISO 27001 and other compliance frameworks. Be ready to discuss how you've applied these standards in previous roles and how you would approach risk assessments in this new position.
✨Demonstrate Strong Communication Skills
As you'll be presenting to senior stakeholders, practice articulating complex cyber risk concepts in a clear and concise manner. Use examples from your past experiences to illustrate how you've effectively communicated risks and treatments to various audiences.