1-month contract
Inside IR35
Remote working
SC Clearance advantageous but not essential
Cyber Governance Lead - We are seeking an experienced Cyber Governance professional to support a programme of cyber governance, assurance, policy and standards development, and ISO certification readiness activities across a complex enterprise environment.
The successful contractor will support delivery across cyber risk management, ISMS documentation, governance reporting, policy and standards development, and cyber service catalogue reform activities. This role requires a strong blend of governance, assurance, stakeholder management, and regulatory compliance experience, with the ability to operate independently and engage effectively with senior stakeholders.
Key Responsibilities
- Support ISO 27001 certification readiness activities, including review and maintenance of ISMS documentation, policies, standards, and governance artefacts
- Identify documentation gaps and coordinate remediation activities aligned to certification timelines
- Develop, review, and maintain information security policies, standards, procedures, and supporting governance documentation
- Support audit readiness, assurance, and evidence management activities
- Maintain and improve cyber risk governance and reporting processes
- Produce governance and assurance reporting for leadership and stakeholder forums
- Review and improve the cyber service catalogue, including definition of KPIs and SLAs
- Produce recommendations for service optimisation, transformation, transfer, or retirement
- Work collaboratively with business, technology, risk, and assurance stakeholders across the organisation
- Proven experience within Cyber Governance, Risk & Compliance (GRC)
- Strong experience supporting ISO 27001 / ISMS initiatives
- Experience developing and maintaining security policies, standards, and governance frameworks
- Experience within enterprise cyber risk management and assurance functions
- Strong governance, reporting, and stakeholder management capability
- Experience producing governance documentation, policies, standards, and reporting artefacts
- Experience supporting audit, assurance, or regulatory compliance activities
- Ability to work independently within complex organisational environments
- Experience within government, financial services, utilities, or critical national infrastructure environments
- Familiarity with frameworks such as CAF, NIS, DORA, NIST, or ISO 27001
- Service management or ITIL exposure
- Experience defining KPIs, SLAs, or service governance models
- Certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor
Cyber Governance, Cyber Risk Management, Cyber Assurance, ISO 27001, ISMS, Policy & Standards Development, Governance Risk & Compliance (GRC), Regulatory Compliance, Stakeholder Management, Risk Reporting, Audit & Assurance, Service Governance, Documentation Management.