Remote (Occasional travel to Exeter)

475 Per Day - Inside IR35

Digital Skills are seeking a dynamic and experienced professional to join our client as the Cyber Security Policy & Standards Lead. In this pivotal role, you will be responsible for leading and taking a hands-on approach in delivering cyber security policies, standards, and guidance across the client's business.

Key Responsibilities:

Policy Development and Implementation:

• Lead the development, implementation, and communication of cyber security policies, standards, and guidelines.
• Take a hands-on approach in crafting policies that align with industry best practices (NIST CSF, NCSC CAF, CIS), legal requirements, and business needs.

Standards and Guidance:

• Establish and maintain a set of cyber security standards and guidance documents that provide clear direction for the implementation of security controls and measures.

Collaboration:

• Collaborate with internal stakeholders to understand business needs and integrate cyber security policies seamlessly into operational processes.
• Provide expert guidance to various departments, enabling a culture of security awareness and compliance.

Continuous Improvement:

• Stay up to date with industry trends, emerging threats, and regulations to continuously enhance and update cyber security policies and standards.
• Conduct regular assessments to identify gaps and opportunities for improvement in our Cybersecurity posture.

Mentoring:

• Provide mentorship and training to junior risk managers in relation to developing robust cyber security policy sets.

Qualifications and Requirements:

• Proven experience in leading the development and implementation of cybersecurity policies & standards.
• Strong technical background in Cybersecurity with a hands-on approach to policy implementation.
• Excellent communication and interpersonal skills to effectively engage with stakeholders at all levels.
• In-depth knowledge of industry regulations, best practices, and emerging threats.
• Relevant certifications such as CISSP, CISM, or equivalent are highly desirable.
• Will need to be eligible for SC level Clearance, already having it is a huge plus.

The role will be largely remote with an expectation that the candidate will attend site in Exeter for team meetings once per month.