Location: Remote with occasional travel
Employment Type: Full-Time
Reports To: Information Security Manager
Join our client's teams in Protecting What Matters
Our client is financial service company. They are looking for a passionate and detail-oriented Information & Cyber Security Executive to join the teams.
The role encompasses all aspects of information security including organisational security and governance, people security, physical (site) security and technical security controls. The role will assess evolving technologies and threats and communicate the risks.
They offer salary up to £80k base + £5k car allowance and other benefits. Working remotely with occasional be in office in Essex.
What You’ll Do
* Assess compliance with internal security policies and industry standards (e.g., ISO/IEC 27001/2, PCI-DSS).
* Conduct supplier risk assessments and third-party due diligence.
* Support vulnerability assessments, incident investigations, and operational resilience activities.
* Monitor the effectiveness of security controls to ensure confidentiality, integrity, and availability (CIA).
* Assist with security certifications and regulatory frameworks including GDPR.
* Translate technical risks into clear, business-friendly advice.
* Stay on-call during scheduled weeks for incident support and response.
Requirements
Essential:
* Solid understanding of cyber security, governance, and risk management principles.
* Experience with risk/vulnerability assessments and incident management.
* Experience first and second line support
* Strong analytical thinking and attention to detail.
* Familiarity with compliance frameworks like ISO 27001 / 27002,NIST Cybersecurity Framework – 2.0 ideally version 2, PCI DSS v4.0
* Exceptional communication and stakeholder engagement skills.
* Financial services/FCA experience
Desirable:
* Experience with Microsoft Azure Security tools (Defender for Endpoint, Sentinel, Purview).
* Understanding of ITIL, data protection laws (UK GDPR), and payment card security.
* Security certifications such as CISSP, CISM, CISMP or equivalent.