Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as an AVP, IT Security Specialist to enhance security controls and manage risks.
- Company: Be part of a leading security governance and risk team in a regulated enterprise environment.
- Benefits: Enjoy a hybrid working model with flexibility and opportunities for professional growth.
- Why this job: Make a real impact on cybersecurity while collaborating with diverse teams and stakeholders.
- Qualifications: 2+ years in Information or Cyber Security, preferably in financial services; GRC knowledge is a plus.
- Other info: Work in London with a dynamic team focused on continuous improvement and compliance.
The predicted salary is between 43200 - 72000 £ per year.
Join a leading security governance and risk team as an AVP, IT Security Specialist. You'll play a key role in ensuring robust security controls, compliance, and continuous risk reduction across a regulated enterprise environment.
Key Responsibilities:
- Maintain and evolve security policy, standards, procedures, and frameworks
- Align security practices with NIST CSF, NIST 800-53 and other industry standards
- Advise business and technology teams on information security best practices
- Conduct regular risk assessments and maintain a risk register in RSA Archer
- Identify, assess, and prioritize cybersecurity risks across assets and environments
- Track remediation efforts and ensure ongoing risk reduction to acceptable levels
- Support development of cybersecurity risk management strategies and reporting
- Represent security during internal and external audits and assessments
- Run lessons-learned forums and improve control effectiveness
- Produce detailed assurance reporting, metrics, and dashboards for stakeholders
Key Skills & Experience:
- Minimum 2 years' experience in Information or Cyber Security, ideally in financial services
- Solid understanding of security risk management principles and taxonomy
- Working knowledge of GRC platforms - RSA Archer preferred
- Familiarity with NIST CSF, NIST 800-53, ISO 27001, SOC 1 & 2
- Good written and verbal communication skills for technical and non-technical stakeholders
- Strong documentation and risk reporting skills
- Knowledge of vulnerability management and incident management practices
- Experience planning, analysing, and presenting data to support risk decisions
Desirable Certifications:
- CISM, CRISC, CISA, or MSc in Information Security
- Knowledge of Prince2, MSP, or APMQ beneficial
Location & Working Model:
- Based in London
- Hybrid working model - 2 days onsite per week
AVP, IT Security Specialist - RSA Archer, NIST, GRC - London - Hybrid employer: Scope AT Limited
Contact Detail:
Scope AT Limited Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land AVP, IT Security Specialist - RSA Archer, NIST, GRC - London - Hybrid
✨Tip Number 1
Familiarise yourself with RSA Archer and its functionalities. Since this role specifically mentions RSA Archer, having hands-on experience or a solid understanding of how to navigate and utilise this GRC platform will set you apart from other candidates.
✨Tip Number 2
Stay updated on the latest NIST standards and frameworks. Being well-versed in NIST CSF and NIST 800-53 will not only help you in interviews but also demonstrate your commitment to security best practices, which is crucial for this position.
✨Tip Number 3
Network with professionals in the cybersecurity field, especially those who work in financial services. Engaging with industry peers can provide insights into the role and may even lead to referrals, increasing your chances of landing the job.
✨Tip Number 4
Prepare to discuss real-world scenarios where you've implemented security controls or conducted risk assessments. Having concrete examples ready will showcase your practical experience and problem-solving skills, making you a more attractive candidate.
We think you need these skills to ace AVP, IT Security Specialist - RSA Archer, NIST, GRC - London - Hybrid
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Information or Cyber Security, particularly in financial services. Emphasise your familiarity with NIST CSF, NIST 800-53, and GRC platforms like RSA Archer.
Craft a Compelling Cover Letter: In your cover letter, explain why you are passionate about IT security and how your skills align with the key responsibilities of the role. Mention specific examples of past experiences that demonstrate your ability to manage cybersecurity risks.
Highlight Relevant Certifications: If you hold any relevant certifications such as CISM, CRISC, or CISA, make sure to mention them prominently in your application. This can set you apart from other candidates.
Showcase Communication Skills: Since the role requires good written and verbal communication skills, consider including examples of how you've effectively communicated technical information to non-technical stakeholders in your application.
How to prepare for a job interview at Scope AT Limited
✨Know Your Standards
Familiarise yourself with NIST CSF, NIST 800-53, and other relevant frameworks. Be prepared to discuss how these standards apply to the role and how you've implemented them in past experiences.
✨Showcase Your Risk Management Skills
Prepare examples of how you've conducted risk assessments and managed cybersecurity risks. Highlight your experience with RSA Archer and how you've used it to track remediation efforts.
✨Communicate Effectively
Practice explaining complex security concepts in simple terms. You'll need to communicate with both technical and non-technical stakeholders, so being clear and concise is key.
✨Prepare for Scenario Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about past challenges you've faced in information security and how you overcame them.
