CareerAddict

Security Controls Assessor

GCS

Posted on Jun 18, 2025 by GCS
England, United Kingdom
IT
Immediate Start
Annual Salary
Contract/Project

About the Role

My client is seeking an experienced Lead Security Control Assessor for a remote engagement. You will lead the assessment and evaluation of security controls across both on-premise and cloud environments-ensuring risk is effectively mitigated and regulatory and industry standards are met.

This role offers the chance to work in an agile environment at the forefront of information security and cloud governance, partnering with cross-functional teams and contributing to the evolution of Experian's global security assurance programme.

Key Responsibilities

  • Lead design and delivery of repeatable testing methodologies for control assurance.

  • Oversee control testing across systems and processes, including automated testing for cloud.

  • Validate control effectiveness (design and operation) through structured fieldwork and documentation review.

  • Identify, document, and communicate control deficiencies with clear risk articulation and improvement recommendations.

  • Report findings to stakeholders and lead regular status updates.

  • Ensure high-quality documentation and testing accuracy through rigorous QA.

  • Drive efficiency across the control testing programme by standardising testing materials and tracking KPIs.


Skills & Experience

  • 8+ years in IT audit or security control assessments, with at least 3 years leading teams.

  • Deep understanding of cloud environments (AWS, Azure) and associated security controls.

  • Familiar with frameworks like NIST 800-53, ISO 27001/2, COBIT, and CIS Controls.

  • Proficient in control testing tools and techniques (manual and automated).

  • Strong communicator with the ability to deliver findings to technical and non-technical stakeholders.

  • Experience with tools such as SailPoint, Rapid7, Wiz.io, MS Defender, RSA Archer, and ServiceNow.

  • Familiarity with agile methods and platforms like Jira and Kanban boards.


Desirable Qualifications

  • Professional certifications (eg, CISA, CISSP, CISM, ISO 27001 Lead Auditor).

  • Big 4 or large consultancy background preferred.

  • Strong data analysis skills and proficiency with tools like Excel, PowerBI, Tableau, or Alteryx.

  • Experience leveraging generative AI or automation to enhance audit/assurance work.

GCS is acting as an Employment Business in relation to this vacancy.

Reference: 2966962387

https://jobs.careeraddict.com/post/104564551
Back to search results

This Job Vacancy has Expired!

GCS

Security Controls Assessor

GCS

Posted on Jun 18, 2025 by GCS

England, United Kingdom
IT
Immediate Start
Annual Salary
Contract/Project

About the Role

My client is seeking an experienced Lead Security Control Assessor for a remote engagement. You will lead the assessment and evaluation of security controls across both on-premise and cloud environments-ensuring risk is effectively mitigated and regulatory and industry standards are met.

This role offers the chance to work in an agile environment at the forefront of information security and cloud governance, partnering with cross-functional teams and contributing to the evolution of Experian's global security assurance programme.

Key Responsibilities

  • Lead design and delivery of repeatable testing methodologies for control assurance.

  • Oversee control testing across systems and processes, including automated testing for cloud.

  • Validate control effectiveness (design and operation) through structured fieldwork and documentation review.

  • Identify, document, and communicate control deficiencies with clear risk articulation and improvement recommendations.

  • Report findings to stakeholders and lead regular status updates.

  • Ensure high-quality documentation and testing accuracy through rigorous QA.

  • Drive efficiency across the control testing programme by standardising testing materials and tracking KPIs.


Skills & Experience

  • 8+ years in IT audit or security control assessments, with at least 3 years leading teams.

  • Deep understanding of cloud environments (AWS, Azure) and associated security controls.

  • Familiar with frameworks like NIST 800-53, ISO 27001/2, COBIT, and CIS Controls.

  • Proficient in control testing tools and techniques (manual and automated).

  • Strong communicator with the ability to deliver findings to technical and non-technical stakeholders.

  • Experience with tools such as SailPoint, Rapid7, Wiz.io, MS Defender, RSA Archer, and ServiceNow.

  • Familiarity with agile methods and platforms like Jira and Kanban boards.


Desirable Qualifications

  • Professional certifications (eg, CISA, CISSP, CISM, ISO 27001 Lead Auditor).

  • Big 4 or large consultancy background preferred.

  • Strong data analysis skills and proficiency with tools like Excel, PowerBI, Tableau, or Alteryx.

  • Experience leveraging generative AI or automation to enhance audit/assurance work.

GCS is acting as an Employment Business in relation to this vacancy.

Reference: 2966962387

CareerAddict

Alert me to jobs like this:

Amplify your job search:

CV/résumé help

Increase interview chances with our downloads and specialist services.

CV Help

Expert career advice

Increase interview chances with our downloads and specialist services.

Visit Blog

Job compatibility

Increase interview chances with our downloads and specialist services.

Start Test

Similar Jobs

Principle consultant - Snowflake - DV

England, United Kingdom

Agilesource Ltd

Full Stack Developer

England, United Kingdom

Lorien

Business Development Manager - Cyber Security

England, United Kingdom

IO Associates

Business Development Manager - Digital Forensics

England, United Kingdom

IO Associates