×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Cyber Assurance Specialist

Job in Bristol, Bristol County, BS1, England, UK
Listing for: Civica
Full Time position
Listed on 2025-12-30
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below

The Cyber Assurance Specialist plays a vital role in safeguarding the organisation's reputation and customer trust by ensuring robust cyber governance, compliance, and the continuous improvement of security practices. This position enables secure business growth and supports the organisation's digital transformation.

The Cyber Assurance Specialist supports the organisation's cyber assurance and governance activities by maintaining key documentation, assisting with audits and due diligence, and contributing to awareness and training initiatives. The role is pivotal in ensuring the organisation's security posture remains transparent, compliant, and continuously improving.

Key Responsibilities
  • Documentation & Knowledge Management
    • Curate and maintain internal knowledge bases and external Trust Centre articles.
    • Ensure content is accurate, accessible, and aligned with current cyber policies and standards.
    • Collaborate with subject matter experts to update documentation in response to regulatory or operational changes.
  • Policy, Risk & Governance Support
    • Assist in the development, review, and maintenance of cyber security policies and procedures.
    • Support the Head of Cyber Governance in maintaining and improving ISO 27001 controls and other compliance frameworks (e.g., NIST, CIS).
    • Support risk identification, assessment, and reporting, collaborating with risk owners and business units.
  • Audit & Assurance Activities
    • Prepare and coordinate evidence for internal and external audits.
    • Conduct assurance activities against ISO 27001 and other relevant standards.
    • Maintain audit trails and track remediation of findings.
    • Proactively suggest improvements to controls and processes based on lessons learnt.
  • Customer & Supply Chain Due Diligence
    • Respond to customer security questionnaires and due diligence requests.
    • Support supply chain assurance activities, including supplier risk assessments and documentation.
    • Maintain a repository of standard responses and evidence for reuse.
  • Cyber Awareness & Training
    • Assist in the development and rollout of security training materials for staff.
    • Support the planning and execution of phishing simulations and cyber awareness campaigns.
    • Track engagement and effectiveness of awareness initiatives through metrics and reporting.
  • Incident Response Support
    • Assist with incident response documentation and post‑incident reviews.
  • SharePoint & Information Management
    • Develop and Maintain Cyber SharePoint sites to ensure content is current and well‑organised.
    • Ensure documentation is version‑controlled and accessible to relevant stakeholders.
  • Tooling & Automation
    • Support the adoption and optimisation of GRC/assurance tooling (e.g., Microsoft Purview, One Trust).
  • Continuous Improvement
    • Proactively identify and recommend improvements to controls, processes, and training.
  • Stakeholder Engagement
    • Build strong relationships with stakeholders across the business, IT, and external partners to ensure alignment and effective communication.
Qualifications and Experience
  • Knowledge & Application
    • Extensive knowledge of cyber security governance, risk management, and compliance principles, practices, and technologies (ISO 27001, NIST, CIS, GDPR).
    • Strong analytical and problem‑solving skills to address complex security challenges and incidents.
    • Excellent communication and interpersonal skills to collaborate effectively with various departments and senior leadership.
    • Awareness of cloud security principles and controls.
    • Strong written communication skills, with experience in technical writing or documentation.
    • Working knowledge of ISO 27001 and other cyber security standards.
    • Experience supporting audits or compliance activities.
    • Familiarity with SharePoint or similar content/document management platforms.
    • Ability to manage multiple tasks and prioritise effectively.
    • Experience in a cyber assurance, governance, or compliance role.
    • Understanding of data protection regulations (e.g., GDPR).
    • Experience with phishing simulation platforms and awareness tools.
    • Knowledge of risk management and supplier assurance processes.
    • Experience in Microsoft Purview, UpGuard, or similar tools.
    • Basic scripting or automation skills (desirable).
  • Experience
    • Minimum three years'…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search