Cyber Security Auditor/Information Security Auditor
Job in
Gloucester, Gloucestershire, GL1, England, UK
Listed on 2026-02-04
Listing for:
Morson Edge
Full Time
position Listed on 2026-02-04
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, IT Consultant, Data Security
Job Description & How to Apply Below
Our client, one of the biggest producers of ZERO CARBON energy in the UK, is seeking a highly skilled Cyber Security Auditor / Information Security Auditor to join their Nuclear Services Information Security team. This role is critical in supporting the company's information security objectives, ensuring regulatory compliance, and managing the security risks associated with third-party access to sensitive nuclear information.
You will play a central role in delivering assurance activities, performing audits, and providing expert guidance to internal teams and external partners. This position requires strong attention to detail, excellent communication skills, and the ability to navigate complex security frameworks in a regulated environment.
Key Responsibilities:
Promote information security policies and practices across staff, contractors, and third parties to maintain regulatory compliance and foster an informed workforce.
Act as a Subject Matter Expert to ensure robust cyber security measures are integrated into third-party agreements.
Conduct thorough third-party cyber security assessments during onboarding and renewals, identifying risks accurately and consistently.
Produce reports and dashboards to support informed decision-making.
Lead initiatives to implement automation and tools that enhance efficiency.
Investigate, coordinate, and report security findings, ensuring effective follow-up and resolution.
Support the development of strategies to mitigate information security risks and maintain accredited systems.
Maintain up-to-date awareness of security threats and technologies to guide appropriate controls.
Perform formal information security audits and review systems and networks for potential vulnerabilities.
What We're Looking For:
Good working knowledge of international standards and frameworks (ISO
27001, ISO
27017, GDPR, Cyber Essentials Plus).
Experience in auditing or assurance activities within regulated sectors.
Familiarity with HMG Security Policy Framework and NCSC/CPNI guidance.
Understanding of information security threats, risks, and risk assessment methodologies (ISO
27005, NIST, IRAM2).
Excellent written and oral communication skills, with the ability to translate complex findings to non-security audiences.
Strong problem-solving skills, tenacity, and a willingness to learn and develop professionally.
Key
Competencies:
Championing Change & Improvement
Managing Relationships
Communicating with Influence
Role Modelling the Way
Emotional Resilience
Additional Information:
This role will involve national travel (UK only).
If you are passionate about cyber security, thrive in a regulated environment, and want to contribute to the safe management of critical nuclear information, we want to hear from you
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×