Cyber Security Governance Risk and Assurance Lead

  • Novax Recruitment Ltd
  • Exeter, UK
  • 28/02/2024
Full time Data Engineering Business Intelligence Software Engineering Cybersecurity

Job Description

Cyber Security Governance Risk and Assurance Lead.

In this pivotal role, you will be responsible for leading and taking a hands-on approach in delivering cyber security policies, standards, and guidance.

The role will be largely remote with an expectation that the candidate will attend site in Exeter for team meetings once per month.

Candidates without an active SC Security Clearancel, will not be considered.

Key Responsibilities:

Policy Development and Implementation:

  • As a Cyber Security Governance Risk and Assurance Lead you will be expected to Lead the development, implementation, and communication of comprehensive cyber security policies, standards, and guidelines. Take a hands-on role in crafting policies that align with industry best practices (NIST CSF, NCSC CAF, CIS), legal requirements, and business needs.

Standards and Guidance:

  • Establish and maintain a set of cyber security standards and guidance documents that provide clear direction for the implementation of security controls and measures


  • Collaborate with internal stakeholders to understand business needs and integrate cyber security policies seamlessly into operational processes.
  • Provide expert guidance to various departments, fostering a culture of security awareness and compliance.

Continuous Improvement:

  • Stay abreast of industry trends, emerging threats, and regulatory changes to continuously enhance and update cyber security policies and standards.
  • Conduct regular assessments to identify gaps and opportunities for improvement in our cybersecurity posture.


  • Provide mentorship and training to junior risk managers in relation to developing robust cyber security policy sets.

Qualifications and Requirements:

  • This role requires a candidate with an active SC Security Clearance.
  • Proven experience in leading the development and implementation of cybersecurity policies and standards.
  • Strong technical background in cybersecurity with a hands-on approach to policy implementation.
  • Excellent communication and interpersonal skills to effectively engage with stakeholders at all levels.
  • In-depth knowledge of industry regulations, best practices, and emerging threats.
  • Relevant certifications such as CISSP, CISM, or equivalent are highly desirable.

How to apply:

If you are interested in our Cyber Security Governance Risk and Assurance Lead in Exeter, we encourage you to apply directly now, or to call us on 0161 241 0370.