Information Security & Risk Specialist

Information Security & Risk Specialist

Type: Contract, Inside IR35
Duration: 12 Months
Location: London, On-Site Working (1 day remote per week)
Start: ASAP/Urgent

CPS Group UK are delighted to be working with a leading, global Entertainment brand to appoint an Information Security & Risk Specialist to join their Global Information Security team for an initial 12-month contract.

The Information Security & Risk Specialist will partner with technology teams and business units to analyse and mitigate risk in their environments, whilst also providing Information/Cyber Security advice and support for international projects to ensure alignment with global Information Security policies and standards.

The role will also support the onboarding and monitoring of international technical infrastructure to ensure visibility and asset protection. The Information Security & Risk Specialist will also review and manage remediation of existing and new security findings and vulnerabilities.

• Manage the information security and risk aspects of international technology projects for various business units
• Document environment risk and provide regular risk reporting on projects and initiatives
• Build a strong understanding of the international ecosystem and support varying information security and risk initiatives
• Prioritise high risk queries and tasks ensuring they go through a robust risk assessment
• Perform security reviews when required for high-risk impact systems
• Onboarding and monitoring of international infrastructure
• Review, communicate and manage remediation of security findings and vulnerabilities
• Embed a risk-based approach to IT Security across the business
• Assist with coordination and reporting of security incidents
• Support and manage 3rd party security compliance processes and assessments
• Support risk assessments and define security mitigating controls
• Contribute to the development of a culture of security awareness and best practice
• Ensure business and technology alignment with privacy requirements (e.g. GDPR)

• 3+ years' experience in Information or Cyber Security specific roles (ideally focusing on Risk, Audit & Compliance)
• 2+ years' commercial experience in IT Security Risk Management, Security Audit & Compliance (ideally EMEA or Global remit)
• Demonstrable experience of interpreting and assessing risk in large organisations
• Solid understanding of technology concepts, particularly cloud infrastructure engineering and architecture
• Understanding of and hands‑on experience with vulnerability detection tools (e.g. Qualys, Crowd Strike, Tenable, Prisma)
• Strong knowledge of IS compliance frameworks and standards (ISO
  2700x, NIST, GDPR, SOC2, PCI)
• Practical understanding of cyber security technology best practice
• Experience supporting EMEA or Global technology projects from an Info Sec risk perspective
• Blue‑chip/Big4/Large organisation experience

For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed)

By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes.

CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed)