At a Glance
- Tasks: Lead cyber governance initiatives and support ISO 27001 certification readiness.
- Company: Dynamic organisation focused on cyber security and governance.
- Benefits: Remote work, competitive pay, and opportunities for professional growth.
- Other info: Join a complex enterprise environment with exciting challenges and career advancement.
- Why this job: Make a real impact in cyber governance while working with top professionals.
- Qualifications: Experience in Cyber Governance, Risk & Compliance, especially with ISO 27001.
The predicted salary is between 60000 - 80000 £ per year.
1‑month contract. Inside IR35. Remote working. SC Clearance advantageous but not essential. We are seeking an experienced Cyber Governance professional to support a programme of cyber governance, assurance, policy and standards development, and ISO certification readiness activities across a complex enterprise environment. The successful contractor will support delivery across cyber risk management, ISMS documentation, governance reporting, policy and standards development, and cyber service catalogue reform activities. This role requires a strong blend of governance, assurance, stakeholder management, and regulatory compliance experience, with the ability to operate independently and engage effectively with senior stakeholders.
Key Responsibilities
- Support ISO 27001 certification readiness activities, including review and maintenance of ISMS documentation, policies, standards, and governance artefacts
- Identify documentation gaps and coordinate remediation activities aligned to certification timelines
- Develop, review, and maintain information security policies, standards, procedures, and supporting governance documentation
- Support audit readiness, assurance, and evidence management activities
- Maintain and improve cyber risk governance and reporting processes
- Produce governance and assurance reporting for leadership and stakeholder forums
- Review and improve the cyber service catalogue, including definition of KPIs and SLAs
- Produce recommendations for service optimisation, transformation, transfer, or retirement
- Work collaboratively with business, technology, risk, and assurance stakeholders across the organisation
Required Experience
- Proven experience within Cyber Governance, Risk & Compliance (GRC)
- Strong experience supporting ISO 27001 / ISMS initiatives
- Experience developing and maintaining security policies, standards, and governance frameworks
- Experience within enterprise cyber risk management and assurance functions
- Strong governance, reporting, and stakeholder management capability
- Experience producing governance documentation, policies, standards, and reporting artefacts
- Experience supporting audit, assurance, or regulatory compliance activities
- Ability to work independently within complex organisational environments
Desirable
- Experience within government, financial services, utilities, or critical national infrastructure environments
- Familiarity with frameworks such as CAF, NIS, DORA, NIST, or ISO 27001
- Service management or ITIL exposure
- Experience defining KPIs, SLAs, or service governance models
- Certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor
Key Skills
- Cyber Governance
- Cyber Risk Management
- Cyber Assurance
- ISO 27001
- ISMS
- Policy & Standards Development
- Governance Risk & Compliance (GRC)
- Regulatory Compliance
- Stakeholder Management
- Risk Reporting
- Audit & Assurance
- Service Governance
- Documentation Management
Cyber Governance Lead (ISO 27001 & Risk, Remote) employer: Xcede
As a Cyber Governance Lead, you will join a forward-thinking organisation that prioritises employee development and fosters a collaborative remote work culture. With a focus on ISO 27001 certification readiness and cyber risk management, the company offers unique opportunities for professional growth while ensuring a supportive environment where your expertise in governance and compliance can thrive. Enjoy the flexibility of remote working while contributing to impactful projects that enhance cybersecurity across a complex enterprise landscape.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Governance Lead (ISO 27001 & Risk, Remote)
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber governance field and let them know you're on the lookout for opportunities. You never know who might have a lead or can put in a good word for you.
✨Tip Number 2
Prepare for those interviews by brushing up on your ISO 27001 knowledge and governance frameworks. We recommend practising common interview questions related to cyber risk management and assurance to show off your expertise.
✨Tip Number 3
Don’t forget to showcase your stakeholder management skills! Be ready to discuss how you've effectively engaged with senior stakeholders in past roles, as this is crucial for the Cyber Governance Lead position.
✨Tip Number 4
Apply through our website for a smoother process! It’s the best way to ensure your application gets the attention it deserves. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Cyber Governance Lead (ISO 27001 & Risk, Remote)
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cyber Governance Lead role. Highlight your experience with ISO 27001, risk management, and governance frameworks. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Share specific examples of your past work in cyber governance and how you've tackled similar challenges.
Showcase Your Stakeholder Management Skills:Since this role involves engaging with senior stakeholders, make sure to highlight your experience in stakeholder management. We love seeing how you've successfully navigated complex organisational environments in the past.
Apply Through Our Website:Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can’t wait to see what you bring to the table!
How to prepare for a job interview at Xcede
✨Know Your ISO 27001 Inside Out
Make sure you brush up on ISO 27001 standards and how they apply to cyber governance. Be ready to discuss your experience with ISMS documentation and any specific projects you've worked on that relate to certification readiness.
✨Showcase Your Stakeholder Management Skills
Prepare examples of how you've effectively engaged with senior stakeholders in previous roles. Highlight your ability to communicate complex governance concepts clearly and how you've managed expectations and built relationships.
✨Be Ready for Scenario-Based Questions
Expect questions that ask how you would handle specific situations related to cyber risk management or policy development. Think through potential scenarios in advance and be prepared to explain your thought process and decision-making.
✨Demonstrate Your Audit Readiness Knowledge
Familiarise yourself with audit processes and what it means to be audit-ready. Be prepared to discuss how you've supported audit activities in the past and what steps you take to ensure compliance and readiness.
