Cyber Risk Lead

Trident Search is collaborating with a prominent utilities company in the West of the UK to hire a Security Consultant to lead their risk function.

This role sits within the organisation's Security Risk & Assurance team and serves as the Cyber Risk Lead, responsible for shaping and managing the company’s cyber and supply chain risk frameworks. The position involves working across various departments, including technology and operational services, and interacting with technical experts and senior leaders to enhance risk management strategies.

This hands-on role requires a balance of risk assessment, mitigation planning, risk reporting, and capability building, contributing to the organisation's robust cybersecurity posture.

Key Responsibilities:

• Develop and manage a process for effective cyber risk reporting
• Conduct in-depth cyber risk assessments, evaluating probability and potential impact
• Assist in creating and implementing risk mitigation plans and ensuring governance
• Manage the cyber risk register, aligning with the organisation’s risk tolerance levels
• Define, track, and oversee Key Risk Indicators (KRIs) for cybersecurity
• Ensure the Cyber Risk Management policy and supporting documents are accurate and aligned with organisational needs
• Provide detailed risk reports to internal governance and assurance teams
• Maintain and enforce Supply Chain Risk Management and Third-Party Security policies
• Facilitate supplier onboarding and assessments via the 3rd Party Risk Management platform, managing remediation and non-compliance outcomes
• Support project teams and procurement in addressing supply chain risks
• Perform other tasks as directed by the line manager

This is an exciting opportunity to lead critical cybersecurity initiatives and enhance the resilience of a key player in the utilities sector. If you're passionate about making an impact, I’d love to hear from you.