Our client is seeking a seasoned cybersecurity professional to drive governance and compliance initiatives that strengthen the security and resilience of critical digital infrastructure.
The Role
You will be a key contributor in administering cybersecurity compliance programmes across a regulated sector, working at the intersection of policy, audit, and risk management. This is a high-impact role where your technical expertise and stakeholder engagement skills will directly influence the security posture of operators providing essential digital services.
What You'll Be Doing
- Oversee compliance with applicable cybersecurity regulations and conduct reviews of audit reports submitted by regulated operators
- Track, validate, and follow up on identified compliance gaps, ensuring timely and effective remediation
- Liaise with external auditors to ensure the completeness and quality of submitted reports, and assess overall compliance against required standards
- Collaborate with internal teams to administer the cybersecurity compliance regime across licensed operators
- Develop cybersecurity metrics reports and maintain GRC-related KPI dashboards to support management oversight
What They're Looking For
- 6 or more years of experience in cybersecurity, technical audit, or GRC roles — a background in IT audit or consultancy is strongly preferred
- Solid knowledge of cybersecurity risk management frameworks and standards, including NIST SP 800-53, ISO 27002, and guidelines from bodies such as ITU, GSMA, and 3GPP
- Familiarity with cloud environments, associated security controls, and cloud assurance practices
- Strong understanding of cybersecurity best practices spanning security risk management, vulnerability management, and incident response
- Excellent written and verbal communication skills, with the ability to present complex technical findings to varied audiences
- Strong stakeholder management and interpersonal skills; comfortable working collaboratively under pressure
- CISA certification is mandatory
- Additional certifications such as CISSP, CISM, CRISC, or CCSP will be advantageous
