Government Digital & Data
Hanslope, Buckinghamshire
Location Hanslope, South East England, MK19 7BH About the job Job summary At FCDO Services, we protect the UK's interests at home and overseas. We design and construct secure government buildings, courier diplomatic packages worldwide, safeguard government tech, and a whole lot more. Our work is as varied and vital as it gets, but we never lose sight of our people. Their skills, aspirations and growth mean as much as the global mission we're on. In our world, it all matters. Job description Our Digital and Data technology team are at the forefront of digital innovation. They provide best in-class solutions for our clients, helping to shape and support a data driven future for UK government. Whether it's creating bespoke, secure software, offering programme and application support or moving an entire embassy's servers to a Cloud platform. No matter the task, they are on hand to support. Now, you've got the opportunity to join them. Providing innovation to government partners. Delivering best-in-class solutions. Working at the cutting-edge of technology It all matters. Protect, secure and safeguard vital government services Being a Lead Security Architect within the Cyber Security department means you'll be steering architecture and security decisions during a period of significant innovation and change driven by emerging cyber threats and the rise of Cloud and AI technologies. The role will have you working across diverse departments, business processes and large programmes of work - all while you identify potential security information risks associated with the acquisition, implementation and use of technologies. Keeping your focus on monitoring and mitigating risk, you'll recommend controls, audit tests - while also providing input on the development of security policies, system development lifecycles, secure coding practices, risk assessments, governance requirements and architecture for both FCDO Services and its customers. Your leadership skills will help you thrive here. You'll be responsible for leading, coaching and developing a team of Security Information Risk Advisors - fostering a culture that supports high performance and continuous improvement. If you encounter a security breach, you will be the first to come up with solutions rooted in prevention and learning to foster a culture of continual improvement - guiding and advising management and promoting security awareness across the organisation at every step. Use your specialist skills to improve our technological resilience You'll bring extensive knowledge of technical and security tools and techniques - supported with an IS-related qualification at NVQ Level 6 or equivalent. You'll also be well-versed in everything from analysing proposals, technical documentation and designs, processes and practices to identifying security information and cyber vulnerabilities and risks - owing to the experience you've gained through previous roles. You're a born leader. Engaging, motivating and full of knowledge, you'll bring your excellent interpersonal and communication skills to every task you undertake. On a personal as well as professional level, you'll be organised, collaborative, proactive and decisive - which translates to delivering at pace and to deadline. This is an exciting and varied role where you'll play a vital part in keeping the nation safe and secure, all while continuing to grow and develop your own expertise. Discover the support you need to grow your career further Working with us, you'll help keep people, information, and assets safe around the world. It's a role you can feel proud of; and we aim to make every part of your career just as rewarding. That's why when you join us, expect to receive a competitive salary, flexible working to support work/life balance, attractive holiday entitlement and a Civil Service Pension. Along with this, you'll also have access to training and other development opportunities to help grow your career with us. Our offices have an on-site gym, nursery, café, and restaurant, and we offer interest-free loans on season tickets and bikes to help you get there. It's a great set of benefits made to support all you do, and all you need. Want to see your future team's work in action? Step into our Virtual Embassy to see how we deliver for government customers and how you could help. Explore the embassy now at virtual-embassy.fcdoservicescareers.co.uk. Every single colleague must be security cleared before joining us. If you're successful in your application, we'll ask you to undergo our vetting process to achieve Developed Vetting (DV) clearance. You can find out more about vetting at fcdoservicescareers.co.uk/how-to-apply/ To find out more about our benefits and our organisation, please visit fcdoservicescareers.co.uk It takes a diverse team to protect a diverse world. The vital work we do takes an incredible community of colleagues, with different skills, backgrounds, cultures and identities. We support every individual, so that you always know you're welcome and valued. It's what makes us a Disability Confident employer. And why we're recognised as a 'Carer Confident' workplace. And it's how you know you're joining an inspiring, inclusive organisation. Person specification We are looking for people with: IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Extensive knowledge of technical and security tools and techniques Experience analysing proposals, processes and practices and identifying security information risks Line management experience Strong influencing and interpersonal skills Able to produce clear technical documentation Qualifications IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Behaviours We'll assess you against these behaviours during the selection process: Seeing the Big Picture Making Effective Decisions Delivering at Pace Technical skills We'll assess you against these technical skills during the selection process: IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Extensive knowledge of technical and security tools and techniques Experience analysing proposals, processes and practices and identifying security information risks Line management experience Strong influencing and interpersonal skills Able to produce clear technical documentation We only ask for evidence of these technical skills on your application form: IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Extensive knowledge of technical and security tools and techniques Experience analysing proposals, processes and practices and identifying security information risks Able to produce clear technical documentation
Apr 15, 2026
Full time
Location Hanslope, South East England, MK19 7BH About the job Job summary At FCDO Services, we protect the UK's interests at home and overseas. We design and construct secure government buildings, courier diplomatic packages worldwide, safeguard government tech, and a whole lot more. Our work is as varied and vital as it gets, but we never lose sight of our people. Their skills, aspirations and growth mean as much as the global mission we're on. In our world, it all matters. Job description Our Digital and Data technology team are at the forefront of digital innovation. They provide best in-class solutions for our clients, helping to shape and support a data driven future for UK government. Whether it's creating bespoke, secure software, offering programme and application support or moving an entire embassy's servers to a Cloud platform. No matter the task, they are on hand to support. Now, you've got the opportunity to join them. Providing innovation to government partners. Delivering best-in-class solutions. Working at the cutting-edge of technology It all matters. Protect, secure and safeguard vital government services Being a Lead Security Architect within the Cyber Security department means you'll be steering architecture and security decisions during a period of significant innovation and change driven by emerging cyber threats and the rise of Cloud and AI technologies. The role will have you working across diverse departments, business processes and large programmes of work - all while you identify potential security information risks associated with the acquisition, implementation and use of technologies. Keeping your focus on monitoring and mitigating risk, you'll recommend controls, audit tests - while also providing input on the development of security policies, system development lifecycles, secure coding practices, risk assessments, governance requirements and architecture for both FCDO Services and its customers. Your leadership skills will help you thrive here. You'll be responsible for leading, coaching and developing a team of Security Information Risk Advisors - fostering a culture that supports high performance and continuous improvement. If you encounter a security breach, you will be the first to come up with solutions rooted in prevention and learning to foster a culture of continual improvement - guiding and advising management and promoting security awareness across the organisation at every step. Use your specialist skills to improve our technological resilience You'll bring extensive knowledge of technical and security tools and techniques - supported with an IS-related qualification at NVQ Level 6 or equivalent. You'll also be well-versed in everything from analysing proposals, technical documentation and designs, processes and practices to identifying security information and cyber vulnerabilities and risks - owing to the experience you've gained through previous roles. You're a born leader. Engaging, motivating and full of knowledge, you'll bring your excellent interpersonal and communication skills to every task you undertake. On a personal as well as professional level, you'll be organised, collaborative, proactive and decisive - which translates to delivering at pace and to deadline. This is an exciting and varied role where you'll play a vital part in keeping the nation safe and secure, all while continuing to grow and develop your own expertise. Discover the support you need to grow your career further Working with us, you'll help keep people, information, and assets safe around the world. It's a role you can feel proud of; and we aim to make every part of your career just as rewarding. That's why when you join us, expect to receive a competitive salary, flexible working to support work/life balance, attractive holiday entitlement and a Civil Service Pension. Along with this, you'll also have access to training and other development opportunities to help grow your career with us. Our offices have an on-site gym, nursery, café, and restaurant, and we offer interest-free loans on season tickets and bikes to help you get there. It's a great set of benefits made to support all you do, and all you need. Want to see your future team's work in action? Step into our Virtual Embassy to see how we deliver for government customers and how you could help. Explore the embassy now at virtual-embassy.fcdoservicescareers.co.uk. Every single colleague must be security cleared before joining us. If you're successful in your application, we'll ask you to undergo our vetting process to achieve Developed Vetting (DV) clearance. You can find out more about vetting at fcdoservicescareers.co.uk/how-to-apply/ To find out more about our benefits and our organisation, please visit fcdoservicescareers.co.uk It takes a diverse team to protect a diverse world. The vital work we do takes an incredible community of colleagues, with different skills, backgrounds, cultures and identities. We support every individual, so that you always know you're welcome and valued. It's what makes us a Disability Confident employer. And why we're recognised as a 'Carer Confident' workplace. And it's how you know you're joining an inspiring, inclusive organisation. Person specification We are looking for people with: IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Extensive knowledge of technical and security tools and techniques Experience analysing proposals, processes and practices and identifying security information risks Line management experience Strong influencing and interpersonal skills Able to produce clear technical documentation Qualifications IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Behaviours We'll assess you against these behaviours during the selection process: Seeing the Big Picture Making Effective Decisions Delivering at Pace Technical skills We'll assess you against these technical skills during the selection process: IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Extensive knowledge of technical and security tools and techniques Experience analysing proposals, processes and practices and identifying security information risks Line management experience Strong influencing and interpersonal skills Able to produce clear technical documentation We only ask for evidence of these technical skills on your application form: IS related qualifications at NVQ Level 6 or equivalent, e.g. ISO 207001 Internal Auditor or Lead Implementer ISACA CRISC, ISC2 CISSP. Extensive knowledge of technical and security tools and techniques Experience analysing proposals, processes and practices and identifying security information risks Able to produce clear technical documentation
Closing Date: 22/04/2026 Together, we re working to welcome millions more passengers, while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. At Heathrow, you can be part of this providing solutions that make every journey better for millions each year. That means ensuring we meet the changing needs of the passengers, colleagues and partners who use our airport to work, travel, trade, shop, eat, explore and connect. Our Solutions team covers project management, process improvement, business change, technology, cyber defence, masterplanning, infrastructure and procurement. It brings together people with the skills to deliver prestigious and often large-scale projects, from transforming terminals to making big reductions in our carbon emissions. Every day will test your skills and give you the opportunity to make your mark. You might be working with the technology and data that power our city within a city, driving vital commercial agreements with everyone from retailers to airlines, or improving the unique infrastructure that includes everything from 200 buildings to 250 HV substations. It s a collaborative environment, where you can rely on the support of the experts around you as you take on projects you ll both take pride in and feel passionate about. Job Description The Cyber Security Analyst, Risk sits within the Cyber Security Governance, Risk and Compliance team and is responsible for supporting the day-to-day oversight and management of cyber risk across the organisation. The role focuses on ensuring that cyber risks are effectively identified, assessed, documented and managed in accordance with Heathrow s policies, enterprise risk framework and recognised industry best practice. The position requires strong analytical capability, stakeholder engagement skills and an understanding of governance and assurance frameworks within a regulated or complex operational environment. Your role will involve Assist in the management and continuous improvement of relevant policies relating to cyber risk management, ensuring that these align to recognised best practice Help mature and drive effective cyber risk management practices across the business, ensuring that risks are identified, assessed, and managed appropriately and in line with Heathrow policies and relevant good practice. Support the implementation of modern risk management tooling, including ensuring appropriate business engagement and support, in order to maximise the value of the tool Participate in internal and external audits, including relevant follow-up activity. Support the delivery of Heathrow s third-party risk management programme Compile and analyse data for management reporting and metrics. Maintain a comprehensive and current understanding of Cyber Security and Information Security threats. Track and follow-up with Risk owners to ensure risks are being appropriated remediated according to agreed timescales and approach These skills are essential Proven experience operating in cyber risk roles. Experience in mixed IT/OT environments would be advantageous. Relevant risk, assurance and/or cyber leadership certifications, such as CISSP, CISM, C-RISC, CISA, ISO 27001 Lead Auditor / Lead Implementor would be advantageous Knowledge and understanding of key Information Security controls/processes Experience applying Cyber Risk Management frameworks (e.g. ISO 27005, NIST Risk Management Framework, etc) in complex operational environments Understanding of cyber security standards and frameworks, in particular ISO 27001, NIST Cybersecurity Framework v2.0, and the NCSC Cyber Assessment Framework Understanding of the UK regulatory landscape for cyber security and resilience, including the Network and Information Systems Regulations 2018. Knowledge and experience of relevant aviation security frameworks (e.g. CAP1753) would be advantageous. About us There s something so special about working at the world s most iconic airport. Its sights. Its sounds. Its constant air of excitement. Heathrow is an amazing backdrop to a career filled with unique opportunities. Every day, you ll discover a world full of fresh possibilities and end the day buzzing with stories to tell, as you encounter people from all cultures, nationalities and experiences. A world full of pride for what we do and no end of exciting career prospects to explore. It brings out the best in all of us. And inspires everyone to deliver on our ambitious plans. Together, we re working to welcome millions more passengers while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. Join us on that journey and we'll help you achieve your ambitions too. Supporting you to learn, encouraging you to be yourself, backing you to achieve more than you might ever have imagined. Because there s no place like Heathrow. Our rewards We offer competitive salaries and excellent benefits that will support you now and in the future. As well as performance-based annual bonuses and our longer-term Share in Success Bonus plans, we also offer generous annual leave allowances and market-leading pensions. With family friendly policies, access to private health insurance and a wide range of wellbeing tools, we ll support you to be at your best inside and outside work. And of course, we ll provide varied learning and development opportunities too. Here you ll find everything you need for a fulfilling career journey that can take you in exciting directions. Working Location Our Hybrid working approach offers the opportunity for colleagues in some roles to work from home for an average of two days a week, providing the flexibility to work in an agile way whilst ensuring we deliver for the operational needs of Heathrow. Working arrangements vary from team to team and will be confirmed during the recruitment process. You ll need to be based in the UK and within a commutable distance to Heathrow. Sustainable Travel to work Heathrow s Sustainable Travel Guide sets out easy and sustainable travel options that everyone can access. Equal Opportunities As an equal opportunities employer, we encourage applications from all. We believe that diverse talent makes us stronger not least because we welcome passengers from all corners of the globe, every single day. Heathrow is an accessible place to work. With five diversity networks, we champion inclusivity and celebrate individuality. Join Heathrow and discover unlimited opportunities to make a difference.
Apr 14, 2026
Full time
Closing Date: 22/04/2026 Together, we re working to welcome millions more passengers, while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. At Heathrow, you can be part of this providing solutions that make every journey better for millions each year. That means ensuring we meet the changing needs of the passengers, colleagues and partners who use our airport to work, travel, trade, shop, eat, explore and connect. Our Solutions team covers project management, process improvement, business change, technology, cyber defence, masterplanning, infrastructure and procurement. It brings together people with the skills to deliver prestigious and often large-scale projects, from transforming terminals to making big reductions in our carbon emissions. Every day will test your skills and give you the opportunity to make your mark. You might be working with the technology and data that power our city within a city, driving vital commercial agreements with everyone from retailers to airlines, or improving the unique infrastructure that includes everything from 200 buildings to 250 HV substations. It s a collaborative environment, where you can rely on the support of the experts around you as you take on projects you ll both take pride in and feel passionate about. Job Description The Cyber Security Analyst, Risk sits within the Cyber Security Governance, Risk and Compliance team and is responsible for supporting the day-to-day oversight and management of cyber risk across the organisation. The role focuses on ensuring that cyber risks are effectively identified, assessed, documented and managed in accordance with Heathrow s policies, enterprise risk framework and recognised industry best practice. The position requires strong analytical capability, stakeholder engagement skills and an understanding of governance and assurance frameworks within a regulated or complex operational environment. Your role will involve Assist in the management and continuous improvement of relevant policies relating to cyber risk management, ensuring that these align to recognised best practice Help mature and drive effective cyber risk management practices across the business, ensuring that risks are identified, assessed, and managed appropriately and in line with Heathrow policies and relevant good practice. Support the implementation of modern risk management tooling, including ensuring appropriate business engagement and support, in order to maximise the value of the tool Participate in internal and external audits, including relevant follow-up activity. Support the delivery of Heathrow s third-party risk management programme Compile and analyse data for management reporting and metrics. Maintain a comprehensive and current understanding of Cyber Security and Information Security threats. Track and follow-up with Risk owners to ensure risks are being appropriated remediated according to agreed timescales and approach These skills are essential Proven experience operating in cyber risk roles. Experience in mixed IT/OT environments would be advantageous. Relevant risk, assurance and/or cyber leadership certifications, such as CISSP, CISM, C-RISC, CISA, ISO 27001 Lead Auditor / Lead Implementor would be advantageous Knowledge and understanding of key Information Security controls/processes Experience applying Cyber Risk Management frameworks (e.g. ISO 27005, NIST Risk Management Framework, etc) in complex operational environments Understanding of cyber security standards and frameworks, in particular ISO 27001, NIST Cybersecurity Framework v2.0, and the NCSC Cyber Assessment Framework Understanding of the UK regulatory landscape for cyber security and resilience, including the Network and Information Systems Regulations 2018. Knowledge and experience of relevant aviation security frameworks (e.g. CAP1753) would be advantageous. About us There s something so special about working at the world s most iconic airport. Its sights. Its sounds. Its constant air of excitement. Heathrow is an amazing backdrop to a career filled with unique opportunities. Every day, you ll discover a world full of fresh possibilities and end the day buzzing with stories to tell, as you encounter people from all cultures, nationalities and experiences. A world full of pride for what we do and no end of exciting career prospects to explore. It brings out the best in all of us. And inspires everyone to deliver on our ambitious plans. Together, we re working to welcome millions more passengers while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. Join us on that journey and we'll help you achieve your ambitions too. Supporting you to learn, encouraging you to be yourself, backing you to achieve more than you might ever have imagined. Because there s no place like Heathrow. Our rewards We offer competitive salaries and excellent benefits that will support you now and in the future. As well as performance-based annual bonuses and our longer-term Share in Success Bonus plans, we also offer generous annual leave allowances and market-leading pensions. With family friendly policies, access to private health insurance and a wide range of wellbeing tools, we ll support you to be at your best inside and outside work. And of course, we ll provide varied learning and development opportunities too. Here you ll find everything you need for a fulfilling career journey that can take you in exciting directions. Working Location Our Hybrid working approach offers the opportunity for colleagues in some roles to work from home for an average of two days a week, providing the flexibility to work in an agile way whilst ensuring we deliver for the operational needs of Heathrow. Working arrangements vary from team to team and will be confirmed during the recruitment process. You ll need to be based in the UK and within a commutable distance to Heathrow. Sustainable Travel to work Heathrow s Sustainable Travel Guide sets out easy and sustainable travel options that everyone can access. Equal Opportunities As an equal opportunities employer, we encourage applications from all. We believe that diverse talent makes us stronger not least because we welcome passengers from all corners of the globe, every single day. Heathrow is an accessible place to work. With five diversity networks, we champion inclusivity and celebrate individuality. Join Heathrow and discover unlimited opportunities to make a difference.
Cambridge University Press & Assessment
Cambridge, Cambridgeshire
Job Title: Security Governance Analyst Salary: £29,700 - £38,500 Location: Cambridge / Hybrid with 2 days a week in office Contract: Permanent Hours: Full time 35 hours per week Joining us as a Security Governance Analyst offers the opportunity to contribute directly to strengthening our security governance, ensuring our organisation continues to deliver responsibly, securely, and effectively . We are Cambridge University Press & Assessment, a world-leading academic publisher and assessment organisation and a proud part of the University of Cambridge. About the role This role supports the development and oversight of security governance practices across the organisation. You will maintain security documentation, support internal and external audits, contribute to supplier assurance processes, and provide essential security governance support to the wider Group Security team. Your work will help ensure compliance, strengthen our ISMS, and uphold high security standards. Additional responsibilities include: Supporting the development and documentation of security policies and guidelines. Assisting with ISO 27001 and Cyber Essentials audit preparation and evidence collation. Maintaining supplier assurance tools and conducting supplier security assessments Monitoring compliance and contributing to relevant governance reporting. Supporting risk management processes, including maintaining risk registers Providing administrative support to the Group Security team, including processing POs and maintaining the Security Connect page. This position has been classified as a hybrid role, requiring the selected candidate to typically spend 40-60% of their time collaborating and connecting face-to-face at their dedicated location. Aside from our hybrid principles, other flexible working requests will be considered from the first day of employment, including other work arrangements should you require adjustments due to a disability or long-term health condition. About You You will bring: A minimum of 2 years' experience or demonstrated capability in information security governance, risk, or compliance. Working knowledge of ISMS frameworks such as ISO 27001 and Cyber Essentials. Familiarity with supply chain and third-party security management. Knowledge of security threats and mitigation strategies. Strong organisational, communication, and stakeholder engagement skills. If you meet the above minimum requirements, we encourage you to apply. Your application will be even stronger if you can also demonstrate the following desirable criteria: ISO 27001 Foundation or Information Security Fundamentals certification. 27001 Lead Auditor certification (or willingness to work towards it). Experience delivering security awareness programmes. Experience working with security risk frameworks. For a detailed job description, please refer to the link at the bottom of the advert on our careers site. We are a Disability Confident (DC) employer that is committed to equality and inclusion ensuring our recruitment process is accessible to all. The DC scheme's Offer of an Interview commitment applies to applicants who opt in, and disclose a disability or a long-term health condition, and best meet the minimum criteria for the role. In instances where interviewing all qualifying candidates is not practicable, we prioritise those who best meet the minimum criteria, as we would for applicants who do not have a disability or long-term health condition. Please note, Cambridge University Press & Assessment is unable to sponsor this role under the Skilled Worker Visa route as it does not meet the minimum skill requirements. Rewards and benefits We will support you to be at your best in work and to live well outside of it. In addition to competitive salaries, we offer a world-class, flexible rewards package , featuring family-friendly and planet-friendly benefits including: 28 days annual leave plus bank holidays Private medical and Permanent Health Insurance Discretionary annual bonus Group personal pension scheme Life assurance up to 4 x annual salary Green travel schemes Ready to pursue your potential? Apply now. We aim to support candidates by making our interview process clear and transparent. The closing date for all applications will be 17 th April 2026 . We will review applications on an ongoing basis, and shortlisted candidates can expect interviews to take place shortly after it closes. If you are shortlisted and progressed through the stages, you can expect: First stage virtual interview via MS Teams. Final stage interview: in-person at our offices in Cambridge If you require any reasonable adjustments during the recruitment process due to a disability or a long-term health condition, there will be an opportunity for you to inform us via the online application form. We will do our best to accommodate your needs. Please note that successful applicants will be subject to satisfactory background checks including DBS due to working in a regulated industry. We are committed to an equitable recruitment process. As such, applications must be submitted via our official online application procedure. Please refrain from sending your CV directly to our recruiters. If you experience technical difficulties or require additional support with submitting your online application, contact the Recruiter. Why join us Joining us is your opportunity to pursue potential. You will belong to a collaborative team that is exploring new and better ways to serve students, teachers and researchers across the globe - for the benefit of individuals, society and the world. Sharing our mission will inspire your own growth, development and progress, in an environment which embraces difference, change and aspiration. Cambridge University Press & Assessment is committed to being a place where anyone can enjoy a successful career, where it is safe to speak up, and where we learn continuously to improve together. We welcome applications from all candidates, regardless of demographic characteristics (age, disability, educational attainment, ethnicity, gender, marital status, neurodiversity, religion, sex, gender identity and sexual identity), cultural, or social class/background. We believe better outcomes come through diversity of thought, background and approach. We welcome applications from people from all backgrounds and communities, actively seeking to employ people from a wide range of different communities. Documents Security Governance Analyst Job Description March26.pdf (83.17 KB)
Apr 14, 2026
Full time
Job Title: Security Governance Analyst Salary: £29,700 - £38,500 Location: Cambridge / Hybrid with 2 days a week in office Contract: Permanent Hours: Full time 35 hours per week Joining us as a Security Governance Analyst offers the opportunity to contribute directly to strengthening our security governance, ensuring our organisation continues to deliver responsibly, securely, and effectively . We are Cambridge University Press & Assessment, a world-leading academic publisher and assessment organisation and a proud part of the University of Cambridge. About the role This role supports the development and oversight of security governance practices across the organisation. You will maintain security documentation, support internal and external audits, contribute to supplier assurance processes, and provide essential security governance support to the wider Group Security team. Your work will help ensure compliance, strengthen our ISMS, and uphold high security standards. Additional responsibilities include: Supporting the development and documentation of security policies and guidelines. Assisting with ISO 27001 and Cyber Essentials audit preparation and evidence collation. Maintaining supplier assurance tools and conducting supplier security assessments Monitoring compliance and contributing to relevant governance reporting. Supporting risk management processes, including maintaining risk registers Providing administrative support to the Group Security team, including processing POs and maintaining the Security Connect page. This position has been classified as a hybrid role, requiring the selected candidate to typically spend 40-60% of their time collaborating and connecting face-to-face at their dedicated location. Aside from our hybrid principles, other flexible working requests will be considered from the first day of employment, including other work arrangements should you require adjustments due to a disability or long-term health condition. About You You will bring: A minimum of 2 years' experience or demonstrated capability in information security governance, risk, or compliance. Working knowledge of ISMS frameworks such as ISO 27001 and Cyber Essentials. Familiarity with supply chain and third-party security management. Knowledge of security threats and mitigation strategies. Strong organisational, communication, and stakeholder engagement skills. If you meet the above minimum requirements, we encourage you to apply. Your application will be even stronger if you can also demonstrate the following desirable criteria: ISO 27001 Foundation or Information Security Fundamentals certification. 27001 Lead Auditor certification (or willingness to work towards it). Experience delivering security awareness programmes. Experience working with security risk frameworks. For a detailed job description, please refer to the link at the bottom of the advert on our careers site. We are a Disability Confident (DC) employer that is committed to equality and inclusion ensuring our recruitment process is accessible to all. The DC scheme's Offer of an Interview commitment applies to applicants who opt in, and disclose a disability or a long-term health condition, and best meet the minimum criteria for the role. In instances where interviewing all qualifying candidates is not practicable, we prioritise those who best meet the minimum criteria, as we would for applicants who do not have a disability or long-term health condition. Please note, Cambridge University Press & Assessment is unable to sponsor this role under the Skilled Worker Visa route as it does not meet the minimum skill requirements. Rewards and benefits We will support you to be at your best in work and to live well outside of it. In addition to competitive salaries, we offer a world-class, flexible rewards package , featuring family-friendly and planet-friendly benefits including: 28 days annual leave plus bank holidays Private medical and Permanent Health Insurance Discretionary annual bonus Group personal pension scheme Life assurance up to 4 x annual salary Green travel schemes Ready to pursue your potential? Apply now. We aim to support candidates by making our interview process clear and transparent. The closing date for all applications will be 17 th April 2026 . We will review applications on an ongoing basis, and shortlisted candidates can expect interviews to take place shortly after it closes. If you are shortlisted and progressed through the stages, you can expect: First stage virtual interview via MS Teams. Final stage interview: in-person at our offices in Cambridge If you require any reasonable adjustments during the recruitment process due to a disability or a long-term health condition, there will be an opportunity for you to inform us via the online application form. We will do our best to accommodate your needs. Please note that successful applicants will be subject to satisfactory background checks including DBS due to working in a regulated industry. We are committed to an equitable recruitment process. As such, applications must be submitted via our official online application procedure. Please refrain from sending your CV directly to our recruiters. If you experience technical difficulties or require additional support with submitting your online application, contact the Recruiter. Why join us Joining us is your opportunity to pursue potential. You will belong to a collaborative team that is exploring new and better ways to serve students, teachers and researchers across the globe - for the benefit of individuals, society and the world. Sharing our mission will inspire your own growth, development and progress, in an environment which embraces difference, change and aspiration. Cambridge University Press & Assessment is committed to being a place where anyone can enjoy a successful career, where it is safe to speak up, and where we learn continuously to improve together. We welcome applications from all candidates, regardless of demographic characteristics (age, disability, educational attainment, ethnicity, gender, marital status, neurodiversity, religion, sex, gender identity and sexual identity), cultural, or social class/background. We believe better outcomes come through diversity of thought, background and approach. We welcome applications from people from all backgrounds and communities, actively seeking to employ people from a wide range of different communities. Documents Security Governance Analyst Job Description March26.pdf (83.17 KB)
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Apr 14, 2026
Full time
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
This well-regarded and fast-growing wealth management Fintech requires a Lead IT Auditor to join its Internal Audit function in London. This is a high-impact role offering ownership of IT audit coverage across a complex, regulated environment, with hybrid working (typically two days per week in the office). As the lead IT auditor, you will take responsibility for delivering the IT audit plan, leading end-to-end audits across areas such as cyber security, cloud, infrastructure, access management and business continuity. You will work closely with senior technology stakeholders, including the CTO, to assess key risks, provide independent assurance and deliver pragmatic recommendations that strengthen the control environment. This role combines ownership with hands on delivery and would suit someone looking to step into a broader position with increased responsibility. You will contribute to the development of the audit plan, apply data analytics where appropriate and play a key role in shaping IT audit coverage across the organisation. Candidates should have experience in IT audit, risk or controls within a regulated environment, ideally financial services, although other sectors will be considered. A strong understanding of both infrastructure and IT general controls is important, alongside the ability to engage confidently with senior stakeholders. Relevant qualifications such as CISA (or similar) are preferred. The team is high-performing and well regarded, with a strong track record of internal progression and a collaborative, supportive culture. This is an excellent opportunity for an ambitious IT auditor to take ownership of a critical area and develop their career in a stable and growing organisation.
Apr 13, 2026
Full time
This well-regarded and fast-growing wealth management Fintech requires a Lead IT Auditor to join its Internal Audit function in London. This is a high-impact role offering ownership of IT audit coverage across a complex, regulated environment, with hybrid working (typically two days per week in the office). As the lead IT auditor, you will take responsibility for delivering the IT audit plan, leading end-to-end audits across areas such as cyber security, cloud, infrastructure, access management and business continuity. You will work closely with senior technology stakeholders, including the CTO, to assess key risks, provide independent assurance and deliver pragmatic recommendations that strengthen the control environment. This role combines ownership with hands on delivery and would suit someone looking to step into a broader position with increased responsibility. You will contribute to the development of the audit plan, apply data analytics where appropriate and play a key role in shaping IT audit coverage across the organisation. Candidates should have experience in IT audit, risk or controls within a regulated environment, ideally financial services, although other sectors will be considered. A strong understanding of both infrastructure and IT general controls is important, alongside the ability to engage confidently with senior stakeholders. Relevant qualifications such as CISA (or similar) are preferred. The team is high-performing and well regarded, with a strong track record of internal progression and a collaborative, supportive culture. This is an excellent opportunity for an ambitious IT auditor to take ownership of a critical area and develop their career in a stable and growing organisation.
Senior Cyber & Technology Risk Analyst Location: London Contract Type: 12 Month Contract Salary: £600-£700 per day Via Umbrella About VPI VPI is a leading power company operating across the UK, Ireland, and Germany. We address the major systemic challenges in the energy transition by combining deep expertise in trading, operations, and engineering. Our diverse portfolio spans reliable thermal power, battery storage assets, and carbon capture developments - delivering flexible, resilient, and decarbonised power to millions of homes and businesses. The Role Are you an experienced cyber or technology risk professional looking to contribute to a critical function within an evolving energy organisation? VPI is seeking a Senior Cyber & Technology Risk Analyst to join our central cyber security team, supporting a broad stakeholder base across the UK and Europe. Based in London, with occasional travel to other VPI sites, you will play a leading role in enhancing VPI's security governance, risk management, and compliance capabilities. This is a highly impactful role, contributing to the development, alignment, and delivery of cyber and technology risk processes across both IT and OT environments, with significant focus on human risk management, supply chain security, and security policy development. Key Responsibilities Lead and deliver risk assessment outputs across VPI's full Technology Risk Management Framework. Translate individual assessments into group-level and strategic risk tracking. Implement and enhance risk toolkit methodologies within the supply chain risk management framework (including onboarding and aftercare activities). Lead improvement projects to align supply chain risk maturity with NIST Cyber Supply Chain Risk Management (C SCRM) principles. Deliver improvements in personnel security controls aligned with National Protective Security Authority (NPSA) guidance. Produce risk outputs linking operational security tools with user level behaviour, including DLP, social engineering, and high risk activity. Interpret threat intelligence to support policy updates, awareness content, and risk governance. Contribute to the education, awareness, and training programme, including presenting briefing sessions. Support operational metrics analysis to enhance phishing and behavioural protection programmes. Provide cyber and technology risk consultancy across business development projects and new initiatives. Collaborate with partners and suppliers to ensure alignment with VPI security policies and supply chain risk frameworks. What We're Looking For Experience & Skills (Essential) Strong experience delivering cyber and technology risk assessments, particularly within supply chain risk domains. Proven capability managing risk governance across multiple technology-related domains at enterprise level. Experience using risk tools aligned with NCSC Cyber Assessment Framework (CAF) and secure-by-design methodologies. Demonstrated background improving controls associated with human risk factors. Experience developing cyber security policies, user guidance, and awareness materials. Expert communication skills with ability to translate technical metrics into clear, stakeholder-focused reporting. Advanced Microsoft Office skills (Word, Excel, PowerPoint, Teams, Outlook). Desirable Cyber security certifications (CISM, SANS GICSP, ISO27001 Auditor/Implementor, cloud security badges etc.). Educated to HND/Degree level. Experience working within a high assurance security environment and knowledge of NIS regulations. The Person Self-motivated, autonomous, and able to operate confidently against strategic objectives. Humble, collaborative, and considerate of people, processes, and technology. Flexible and adaptable to evolving business needs and working methods. Strong ability to prioritise and manage multiple concurrent workstreams. Enthusiastic about learning, sharing knowledge, and improving processes. Why Join VPI? We are known for our ability to think and act quickly using deep energy intelligence. Our mission is to enable the energy transition - delivering the power needed today while building solutions for tomorrow. VPI offers strong development opportunities, competitive salary and benefits, and the chance to contribute meaningfully to a dynamic and forward thinking organisation. Ready to Apply? If you're ready for your next challenge in a progressive environment, we'd love to hear from you. Rullion celebrates and supports diversity and is committed to ensuring equal opportunities for both employees and applicants.
Apr 09, 2026
Full time
Senior Cyber & Technology Risk Analyst Location: London Contract Type: 12 Month Contract Salary: £600-£700 per day Via Umbrella About VPI VPI is a leading power company operating across the UK, Ireland, and Germany. We address the major systemic challenges in the energy transition by combining deep expertise in trading, operations, and engineering. Our diverse portfolio spans reliable thermal power, battery storage assets, and carbon capture developments - delivering flexible, resilient, and decarbonised power to millions of homes and businesses. The Role Are you an experienced cyber or technology risk professional looking to contribute to a critical function within an evolving energy organisation? VPI is seeking a Senior Cyber & Technology Risk Analyst to join our central cyber security team, supporting a broad stakeholder base across the UK and Europe. Based in London, with occasional travel to other VPI sites, you will play a leading role in enhancing VPI's security governance, risk management, and compliance capabilities. This is a highly impactful role, contributing to the development, alignment, and delivery of cyber and technology risk processes across both IT and OT environments, with significant focus on human risk management, supply chain security, and security policy development. Key Responsibilities Lead and deliver risk assessment outputs across VPI's full Technology Risk Management Framework. Translate individual assessments into group-level and strategic risk tracking. Implement and enhance risk toolkit methodologies within the supply chain risk management framework (including onboarding and aftercare activities). Lead improvement projects to align supply chain risk maturity with NIST Cyber Supply Chain Risk Management (C SCRM) principles. Deliver improvements in personnel security controls aligned with National Protective Security Authority (NPSA) guidance. Produce risk outputs linking operational security tools with user level behaviour, including DLP, social engineering, and high risk activity. Interpret threat intelligence to support policy updates, awareness content, and risk governance. Contribute to the education, awareness, and training programme, including presenting briefing sessions. Support operational metrics analysis to enhance phishing and behavioural protection programmes. Provide cyber and technology risk consultancy across business development projects and new initiatives. Collaborate with partners and suppliers to ensure alignment with VPI security policies and supply chain risk frameworks. What We're Looking For Experience & Skills (Essential) Strong experience delivering cyber and technology risk assessments, particularly within supply chain risk domains. Proven capability managing risk governance across multiple technology-related domains at enterprise level. Experience using risk tools aligned with NCSC Cyber Assessment Framework (CAF) and secure-by-design methodologies. Demonstrated background improving controls associated with human risk factors. Experience developing cyber security policies, user guidance, and awareness materials. Expert communication skills with ability to translate technical metrics into clear, stakeholder-focused reporting. Advanced Microsoft Office skills (Word, Excel, PowerPoint, Teams, Outlook). Desirable Cyber security certifications (CISM, SANS GICSP, ISO27001 Auditor/Implementor, cloud security badges etc.). Educated to HND/Degree level. Experience working within a high assurance security environment and knowledge of NIS regulations. The Person Self-motivated, autonomous, and able to operate confidently against strategic objectives. Humble, collaborative, and considerate of people, processes, and technology. Flexible and adaptable to evolving business needs and working methods. Strong ability to prioritise and manage multiple concurrent workstreams. Enthusiastic about learning, sharing knowledge, and improving processes. Why Join VPI? We are known for our ability to think and act quickly using deep energy intelligence. Our mission is to enable the energy transition - delivering the power needed today while building solutions for tomorrow. VPI offers strong development opportunities, competitive salary and benefits, and the chance to contribute meaningfully to a dynamic and forward thinking organisation. Ready to Apply? If you're ready for your next challenge in a progressive environment, we'd love to hear from you. Rullion celebrates and supports diversity and is committed to ensuring equal opportunities for both employees and applicants.
Job Description In Internal Audit, we ensure that Goldman Sachs maintains effective controls by assessing the reliability of financial reports, monitoring the firm's compliance with laws and regulations, and advising management on developing smart control solutions. Our group has unique insight on the financial industry and its products and operations. We're looking for detail-oriented team players who have an interest in financial markets and want to gain insight into the firm's operations and control processes. WHAT WE LOOK FOR Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical thinking, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, build relationships and thrive in teamwork and a fast paced global environment. YOUR IMPACT As the third line of defense, Internal Audit's mission is to independently assess the firm's internal control structure, including governance processes and controls, risk management and capital and anti financial crime frameworks, raise awareness of control risk and monitor the implementation of management's control measures. In doing so, internal audit: Communicates and reports on the effectiveness of the firm's governance, risk management and controls that mitigate current and evolving risk Raises awareness of control risk Assesses the firm's control culture and conducts risk assessments Monitors management's implementation of control measures Goldman Sachs Internal Audit comprises individuals from diverse backgrounds-including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm's businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber security and technology risk, and engineering. RESPONSIBILITIES Have extensive audit experience relating to EU consumer compliance and the provision of an on line digital savings/deposit proposition, including new business initiatives Assist in every step of an audit, including scoping, planning, fieldwork and reporting Execute audit testing and supervise junior team members to ensure audit fieldwork is focused on the right areas and documentation meets high quality standards Identify risks, assess mitigating controls, and make recommendations on improving the control environment Prepare commercially effective audit conclusions and findings, and present to IA senior management and business clients Follow up on open audit issues and their resolution Assist in the audit team's continuous monitoring effort to cover market and regulatory events, business and technology updates and audit/reviews completed Participate in department wide initiatives aimed at continually improving IA's processes and supporting infrastructure SKILLS AND RELEVANT EXPERIENCE In depth technical knowledge of EU consumer and depositor protection regulation and different regulatory requirements during the lifecycle of consumer products (e.g., product and service design through to implementation, ongoing customer support and marketing) Irish consumer protection regulation - beneficial 8+ years of experience in internal audit, external audit or a related control function, preferably relating to an on line digital savings/deposit proposition An undergraduate degree in finance, accounting, or quantitative discipline Relevant certification or industry accreditation (e.g., ICAEW, ICAS, CFA) is a plus Experience with Data Analytics and Artificial Intelligence is a plus Experience in managing integrated business and technology audit engagements and/or projects Team oriented with a strong sense of ownership and accountability Strong leadership, interpersonal, and relationship management skills Strong verbal and written communication skills Highly motivated with the ability to multi task and remain organized in a fast paced environment Solid analytical skills ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: The Goldman Sachs Group, Inc., 2023. All rights reserved. Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.
Apr 09, 2026
Full time
Job Description In Internal Audit, we ensure that Goldman Sachs maintains effective controls by assessing the reliability of financial reports, monitoring the firm's compliance with laws and regulations, and advising management on developing smart control solutions. Our group has unique insight on the financial industry and its products and operations. We're looking for detail-oriented team players who have an interest in financial markets and want to gain insight into the firm's operations and control processes. WHAT WE LOOK FOR Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical thinking, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, build relationships and thrive in teamwork and a fast paced global environment. YOUR IMPACT As the third line of defense, Internal Audit's mission is to independently assess the firm's internal control structure, including governance processes and controls, risk management and capital and anti financial crime frameworks, raise awareness of control risk and monitor the implementation of management's control measures. In doing so, internal audit: Communicates and reports on the effectiveness of the firm's governance, risk management and controls that mitigate current and evolving risk Raises awareness of control risk Assesses the firm's control culture and conducts risk assessments Monitors management's implementation of control measures Goldman Sachs Internal Audit comprises individuals from diverse backgrounds-including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm's businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber security and technology risk, and engineering. RESPONSIBILITIES Have extensive audit experience relating to EU consumer compliance and the provision of an on line digital savings/deposit proposition, including new business initiatives Assist in every step of an audit, including scoping, planning, fieldwork and reporting Execute audit testing and supervise junior team members to ensure audit fieldwork is focused on the right areas and documentation meets high quality standards Identify risks, assess mitigating controls, and make recommendations on improving the control environment Prepare commercially effective audit conclusions and findings, and present to IA senior management and business clients Follow up on open audit issues and their resolution Assist in the audit team's continuous monitoring effort to cover market and regulatory events, business and technology updates and audit/reviews completed Participate in department wide initiatives aimed at continually improving IA's processes and supporting infrastructure SKILLS AND RELEVANT EXPERIENCE In depth technical knowledge of EU consumer and depositor protection regulation and different regulatory requirements during the lifecycle of consumer products (e.g., product and service design through to implementation, ongoing customer support and marketing) Irish consumer protection regulation - beneficial 8+ years of experience in internal audit, external audit or a related control function, preferably relating to an on line digital savings/deposit proposition An undergraduate degree in finance, accounting, or quantitative discipline Relevant certification or industry accreditation (e.g., ICAEW, ICAS, CFA) is a plus Experience with Data Analytics and Artificial Intelligence is a plus Experience in managing integrated business and technology audit engagements and/or projects Team oriented with a strong sense of ownership and accountability Strong leadership, interpersonal, and relationship management skills Strong verbal and written communication skills Highly motivated with the ability to multi task and remain organized in a fast paced environment Solid analytical skills ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: The Goldman Sachs Group, Inc., 2023. All rights reserved. Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Apr 07, 2026
Full time
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Role Overview Methods is a leading digital transformation consultancy, partnering with public and private sector organisations to deliver innovative and secure solutions. With a strong focus on governance, risk, and compliance (GRC), we help businesses navigate complex security landscapes while ensuring regulatory and operational resilience. Principal Cyber Security Risk & Audit Consultant This role is ideal for a professional with a strong background in cyber security, risk management, and internal audit. The ideal candidate will have experience across both the public and private sectors, with exposure to or experience in management consultancy. Strong team building and leadership experience is highly desirable. Lead and execute cyber security audits, ensuring compliance with regulatory and industry standards. Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR. Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures. Provide expert guidance on cyber risk governance, resilience, and assurance strategies. Assess third party risk management practices and conduct security audits on suppliers and partners. Work closely with CISOs, IT, and compliance teams to drive a proactive security culture. Report findings and recommendations to senior leadership, ensuring risk mitigation strategies are effectively implemented. Essential Skills & Qualifications Candidates must have one of the following qualifications or be willing to work towards them: ChCSP in the Audit and Assurance (specialism) - Chartered status with the UK Cyber Security Council (CSC) PriCSP in the Audit and Assurance (specialism) - Principal level with the CSC, with a commitment to attaining Chartered status CMIIA - Chartered Member of the Institute of Internal Auditors, with willingness to work towards ChCSP CISA - ISACA Certified Information Systems Auditor, with willingness to work towards ChCSP QiCA - Institute of Internal Auditors Qualification in Computer Auditing, with willingness to work towards ChCSP Additional professional certifications of interest include IRM Chartered Risk Manager certification ISACA certifications such as CISM, CRISC, CGEIT CISSP (Certified Information Systems Security Professional) Other essential skills Proven experience in cyber security risk management and audit, ideally within regulated industries Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM, GRC platforms) Excellent communication skills with the ability to influence senior stakeholders A proactive mindset with the ability to work independently and as part of a team This role will require you hold or achieve Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected - Details of this will be discussed with you at interview Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non contributory (spouse and dependants included) Worldwide Travel Insurance - which is non contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website ()
Apr 07, 2026
Full time
Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future. Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them. Predominantly focused on the public sector, Methods is now building a significant private sector client portfolio. Methods was acquired by the Alten Group in early 2022. Role Overview Methods is a leading digital transformation consultancy, partnering with public and private sector organisations to deliver innovative and secure solutions. With a strong focus on governance, risk, and compliance (GRC), we help businesses navigate complex security landscapes while ensuring regulatory and operational resilience. Principal Cyber Security Risk & Audit Consultant This role is ideal for a professional with a strong background in cyber security, risk management, and internal audit. The ideal candidate will have experience across both the public and private sectors, with exposure to or experience in management consultancy. Strong team building and leadership experience is highly desirable. Lead and execute cyber security audits, ensuring compliance with regulatory and industry standards. Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR. Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures. Provide expert guidance on cyber risk governance, resilience, and assurance strategies. Assess third party risk management practices and conduct security audits on suppliers and partners. Work closely with CISOs, IT, and compliance teams to drive a proactive security culture. Report findings and recommendations to senior leadership, ensuring risk mitigation strategies are effectively implemented. Essential Skills & Qualifications Candidates must have one of the following qualifications or be willing to work towards them: ChCSP in the Audit and Assurance (specialism) - Chartered status with the UK Cyber Security Council (CSC) PriCSP in the Audit and Assurance (specialism) - Principal level with the CSC, with a commitment to attaining Chartered status CMIIA - Chartered Member of the Institute of Internal Auditors, with willingness to work towards ChCSP CISA - ISACA Certified Information Systems Auditor, with willingness to work towards ChCSP QiCA - Institute of Internal Auditors Qualification in Computer Auditing, with willingness to work towards ChCSP Additional professional certifications of interest include IRM Chartered Risk Manager certification ISACA certifications such as CISM, CRISC, CGEIT CISSP (Certified Information Systems Security Professional) Other essential skills Proven experience in cyber security risk management and audit, ideally within regulated industries Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM, GRC platforms) Excellent communication skills with the ability to influence senior stakeholders A proactive mindset with the ability to work independently and as part of a team This role will require you hold or achieve Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected - Details of this will be discussed with you at interview Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy. By joining us you can expect Autonomy to develop and grow your skills and experience Be part of exciting project work that is making a difference in society Strong, inspiring and thought-provoking leadership A supportive and collaborative environment Development - access to LinkedIn Learning, a management development programme, and training Wellness - 24/7 confidential employee assistance programme Flexible Working - including home working and part time Social - office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes Time Off - 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year Volunteering - 2 paid days per year to volunteer in our local communities or within a charity organisation Pension - Salary Exchange Scheme with 4% employer contribution and 5% employee contribution Discretionary Company Bonus - based on company and individual performance Life Assurance - of 4 times base salary Private Medical Insurance - which is non contributory (spouse and dependants included) Worldwide Travel Insurance - which is non contributory (spouse and dependants included) Enhanced Maternity and Paternity Pay Travel - season ticket loan, cycle to work scheme For a full list of benefits please visit our website ()
The Association of Technology, Management and Applied Engineering
Birmingham, Staffordshire
Job Description In Internal Audit, we ensure that Goldman Sachs maintains effective controls by assessing the reliability of financial reports, monitoring the firm's compliance with laws and regulations, and advising management on developing smart control solutions. Our group has unique insight on the financial industry and its products and operations. We're looking for detail-oriented team players who have an interest in financial markets and want to gain insight into the firm's operations and control processes. WHAT WE LOOK FOR Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical thinking, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, build relationships and thrive in teamwork and a fast paced global environment. YOUR IMPACT As the third line of defense, Internal Audit's mission is to independently assess the firm's internal control structure, including governance processes and controls, risk management and capital and anti financial crime frameworks, raise awareness of control risk and monitor the implementation of management's control measures. In doing so, internal audit: Communicates and reports on the effectiveness of the firm's governance, risk management and controls that mitigate current and evolving risk Raises awareness of control risk Assesses the firm's control culture and conducts risk assessments Monitors management's implementation of control measures Goldman Sachs Internal Audit comprises individuals from diverse backgrounds-including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm's businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber security and technology risk, and engineering. RESPONSIBILITIES Have extensive audit experience relating to EU consumer compliance and the provision of an on line digital savings/deposit proposition, including new business initiatives Assist in every step of an audit, including scoping, planning, fieldwork and reporting Execute audit testing and supervise junior team members to ensure audit fieldwork is focused on the right areas and documentation meets high quality standards Identify risks, assess mitigating controls, and make recommendations on improving the control environment Prepare commercially effective audit conclusions and findings, and present to IA senior management and business clients Follow up on open audit issues and their resolution Assist in the audit team's continuous monitoring effort to cover market and regulatory events, business and technology updates and audit/reviews completed Participate in department wide initiatives aimed at continually improving IA's processes and supporting infrastructure SKILLS AND RELEVANT EXPERIENCE In depth technical knowledge of EU consumer and depositor protection regulation and different regulatory requirements during the lifecycle of consumer products (e.g., product and service design through to implementation, ongoing customer support and marketing) Irish consumer protection regulation - beneficial 8+ years of experience in internal audit, external audit or a related control function, preferably relating to an on line digital savings/deposit proposition An undergraduate degree in finance, accounting, or quantitative discipline Relevant certification or industry accreditation (e.g., ICAEW, ICAS, CFA) is a plus Experience with Data Analytics and Artificial Intelligence is a plus Experience in managing integrated business and technology audit engagements and/or projects Team oriented with a strong sense of ownership and accountability Strong leadership, interpersonal, and relationship management skills Strong verbal and written communication skills Highly motivated with the ability to multi task and remain organized in a fast paced environment Solid analytical skills ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: The Goldman Sachs Group, Inc., 2023. All rights reserved. Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.
Apr 07, 2026
Full time
Job Description In Internal Audit, we ensure that Goldman Sachs maintains effective controls by assessing the reliability of financial reports, monitoring the firm's compliance with laws and regulations, and advising management on developing smart control solutions. Our group has unique insight on the financial industry and its products and operations. We're looking for detail-oriented team players who have an interest in financial markets and want to gain insight into the firm's operations and control processes. WHAT WE LOOK FOR Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical thinking, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, build relationships and thrive in teamwork and a fast paced global environment. YOUR IMPACT As the third line of defense, Internal Audit's mission is to independently assess the firm's internal control structure, including governance processes and controls, risk management and capital and anti financial crime frameworks, raise awareness of control risk and monitor the implementation of management's control measures. In doing so, internal audit: Communicates and reports on the effectiveness of the firm's governance, risk management and controls that mitigate current and evolving risk Raises awareness of control risk Assesses the firm's control culture and conducts risk assessments Monitors management's implementation of control measures Goldman Sachs Internal Audit comprises individuals from diverse backgrounds-including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm's businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber security and technology risk, and engineering. RESPONSIBILITIES Have extensive audit experience relating to EU consumer compliance and the provision of an on line digital savings/deposit proposition, including new business initiatives Assist in every step of an audit, including scoping, planning, fieldwork and reporting Execute audit testing and supervise junior team members to ensure audit fieldwork is focused on the right areas and documentation meets high quality standards Identify risks, assess mitigating controls, and make recommendations on improving the control environment Prepare commercially effective audit conclusions and findings, and present to IA senior management and business clients Follow up on open audit issues and their resolution Assist in the audit team's continuous monitoring effort to cover market and regulatory events, business and technology updates and audit/reviews completed Participate in department wide initiatives aimed at continually improving IA's processes and supporting infrastructure SKILLS AND RELEVANT EXPERIENCE In depth technical knowledge of EU consumer and depositor protection regulation and different regulatory requirements during the lifecycle of consumer products (e.g., product and service design through to implementation, ongoing customer support and marketing) Irish consumer protection regulation - beneficial 8+ years of experience in internal audit, external audit or a related control function, preferably relating to an on line digital savings/deposit proposition An undergraduate degree in finance, accounting, or quantitative discipline Relevant certification or industry accreditation (e.g., ICAEW, ICAS, CFA) is a plus Experience with Data Analytics and Artificial Intelligence is a plus Experience in managing integrated business and technology audit engagements and/or projects Team oriented with a strong sense of ownership and accountability Strong leadership, interpersonal, and relationship management skills Strong verbal and written communication skills Highly motivated with the ability to multi task and remain organized in a fast paced environment Solid analytical skills ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: The Goldman Sachs Group, Inc., 2023. All rights reserved. Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.
Lead Cyber Security Solution Architect - Banking - London - Up to 120,000 Basic Salary + Hybrid Working Overview We are seeking an experienced Lead Cyber Security Solution Architect to lead a team of Governance, Risk, and Control (GRC) specialists. This team is responsible for conducting Secure-by-Design assessments on technology projects, ensuring compliance with IT security policies and requirements. Role and Responsibilities Lead and manage the Secure-by-Design team across multiple business entities. Oversee security reviews for technology projects prior to implementation. Define KPIs for the team and monitor performance. Engage with business and technology stakeholders to assess technical and non-technical controls. Review reports and validate evidence of control effectiveness. Develop and implement testing strategies for IT security controls. Identify and document risks, gaps, findings, and recommend actions. Ensure timely completion of security assessments and manage team workload effectively. Essential Skills & Experience Proven ability to manage complex tasks with broad scope and ambiguity. Strong background in cybersecurity assurance, policies, and standards. Expertise across IT security domains: Governance, IAM, Risk Management, Security Testing, Incident Management, Vulnerability Management. Experience in senior stakeholder engagement and management reporting. Ability to coach and mentor team members. Deep understanding of IT security frameworks (SOX, FFIEC, ISO27001, NIST, PCI-DSS, Cloud Security Alliance). Strong managerial and leadership skills. Hands-on experience as an IT auditor, security auditor, or GRC analyst. Excellent planning, prioritization, and documentation skills. Broad technical knowledge of IT systems (OS, databases, firewalls, SIEM, DLP). Cloud Platforms: AWS and Azure. AI Knowledge: Understanding of AI principles and security implications. Solutions / Technical Network Architecture: Ability to design secure technical solutions and network architectures. Controls Experience: Strong background in implementing and assessing security controls. Splunk Knowledge: Familiarity with SIEM tools and log analysis. CyberArk: Experience with privileged access management solutions. Package Salary: Up to 120,000 Up to 20% Bonus Hybrid, with travel to London Career Development Opportunities Benefits: Pension scheme, professional training, paid holiday Lead Cyber Security Solution Architect - Banking - London - Up to 120,000 Basic Salary + Hybrid Working
Jan 21, 2026
Full time
Lead Cyber Security Solution Architect - Banking - London - Up to 120,000 Basic Salary + Hybrid Working Overview We are seeking an experienced Lead Cyber Security Solution Architect to lead a team of Governance, Risk, and Control (GRC) specialists. This team is responsible for conducting Secure-by-Design assessments on technology projects, ensuring compliance with IT security policies and requirements. Role and Responsibilities Lead and manage the Secure-by-Design team across multiple business entities. Oversee security reviews for technology projects prior to implementation. Define KPIs for the team and monitor performance. Engage with business and technology stakeholders to assess technical and non-technical controls. Review reports and validate evidence of control effectiveness. Develop and implement testing strategies for IT security controls. Identify and document risks, gaps, findings, and recommend actions. Ensure timely completion of security assessments and manage team workload effectively. Essential Skills & Experience Proven ability to manage complex tasks with broad scope and ambiguity. Strong background in cybersecurity assurance, policies, and standards. Expertise across IT security domains: Governance, IAM, Risk Management, Security Testing, Incident Management, Vulnerability Management. Experience in senior stakeholder engagement and management reporting. Ability to coach and mentor team members. Deep understanding of IT security frameworks (SOX, FFIEC, ISO27001, NIST, PCI-DSS, Cloud Security Alliance). Strong managerial and leadership skills. Hands-on experience as an IT auditor, security auditor, or GRC analyst. Excellent planning, prioritization, and documentation skills. Broad technical knowledge of IT systems (OS, databases, firewalls, SIEM, DLP). Cloud Platforms: AWS and Azure. AI Knowledge: Understanding of AI principles and security implications. Solutions / Technical Network Architecture: Ability to design secure technical solutions and network architectures. Controls Experience: Strong background in implementing and assessing security controls. Splunk Knowledge: Familiarity with SIEM tools and log analysis. CyberArk: Experience with privileged access management solutions. Package Salary: Up to 120,000 Up to 20% Bonus Hybrid, with travel to London Career Development Opportunities Benefits: Pension scheme, professional training, paid holiday Lead Cyber Security Solution Architect - Banking - London - Up to 120,000 Basic Salary + Hybrid Working
