Our client is seeking an experienced Risk Analyst to support a key IT risk management project, reviewing their outsourced IT model and preparing the organisation for ISO 27001 compliance, with a strong focus on strengthening cyber controls in line with DORA requirements.
What’s involved:
Review and assess the current outsourced IT operating model.
Support readiness for ISO 27001 certification.
Work alongside the IT Manager to implement the controls within the organisation.
Update and develop a comprehensive controls manual, clearly documenting how each control is implemented.
Collaborate with internal IT teams and the outsourced IT support partner to ensure effective control implementation.
Drive improvements in cyber security controls, particularly aligned to ISO 27001 Section 8 and DORA expectations.
What you need:
Strong experience in IT risk management and cyber security governance.
Practical experience implementing ISO 27001 controls
Experience working with outsourced IT providers.
Ability to document controls clearly and work collaboratively across technical and non-technical stakeholders.
