Albany Beck are seeking an experienced Cybersecurity Consultant to support a large-scale CMO to FMO migration programme, ensuring the secure transition of environments while maintaining strong governance, risk, and compliance oversight. The role will operate within the Business Information Security Office (BISO) and focus on vulnerability governance, risk management, and security assurance throughout the migration lifecycle.
Key Responsibilities
* Provide cybersecurity consultancy throughout a complex CMO to FMO migration, ensuring security risks are identified, assessed, and managed during the transition of environments.
* Deliver Governance, Risk, and Compliance (GRC) oversight across existing environments to ensure alignment with internal security policies, regulatory obligations, and organisational standards.
* Lead vulnerability management and exposure governance, including identification, assessment, prioritisation, and remediation tracking of vulnerabilities across the current infrastructure.
* Manage day-to-day vulnerability governance, including risk prioritisation, remediation oversight, and risk acceptance processes across security, technology, and business teams.
* Act as a central coordination point within the BISO function, working closely with security, technology, and business stakeholders to ensure effective risk management and security governance.
* Design and implement Vulnerability Management governance processes and RACI frameworks, improving clarity around ownership, escalation routes, and accountability.
* Facilitate regular vulnerability and risk review forums, translating technical findings into business risk insights and ensuring alignment with organisational risk appetite.
* Develop and enhance security metrics, dashboards, and reporting, providing actionable insights to senior leadership and board-level stakeholders.
* Review and validate new Kyndryl data centre builds, ensuring infrastructure design aligns with defined security architecture standards and compliance requirements.
* Support migration readiness assessments, including performing Go/No-Go validation activities for each migration phase and providing documented security recommendations prior to operational acceptance.
* Contribute to the secure transition of environments into Business-As-Usual (BAU) operations following successful migration phases.
* Identify gaps in security process maturity and proactively introduce structured governance and operational improvements where processes are not yet established.
Key Skills & Experience
* Strong experience in vulnerability management, risk governance, and exposure management within enterprise environments.
* Experience working within or alongside BISO, security governance, or GRC functions.
* Proven ability to align technical security findings with business risk and decision-making processes.
* Experience reviewing security architecture and infrastructure builds for compliance with security standards.
* Experience supporting large-scale migration, transformation, or data centre transition programmes.
* Strong stakeholder engagement skills, with experience working with senior leadership, technical teams, and business stakeholders.
* Experience producing security reporting, governance documentation, and risk metrics.
#J-18808-Ljbffr