Intelance is an independent UK advisory firm and an IASME Certification Body for Cyber Essentials, Cyber Essentials Plus and IASME Cyber Assurance. We work with mid-market, enterprise and regulated organisations across cyber assurance, governance, architecture and technology risk.
We are appointing a small number of senior Cyber Governance and Risk specialists to our associate panel.
This is not permanent employment. Work will be offered on a project-by-project basis according to client demand, suitability and availability. There is no guaranteed volume of work.
Tasks
You may be asked to:
- Lead independent cyber governance and risk reviews for complex organisations.
- Assess risk appetite, risk ownership, control effectiveness and risk-treatment decisions.
- Review policies, risk registers, control mappings, assurance evidence and governance arrangements.
- Judge whether evidence supports the conclusions being presented to senior leaders.
- Explain cyber risks and control gaps clearly to boards, executives and non-technical stakeholders.
- Lead interviews and workshops with CISOs, risk owners, technology leaders and control owners.
- Work alongside security architects, technical assessors and other Intelance specialists.
- Write clear, defensible and client-ready reports.
- Complete scheme-specific training and participate in internal quality reviews where required.
Requirements
You should have:
- Substantial senior experience in cyber security governance, risk management or formal cyber assurance, normally gained over at least ten years.
- Experience working with large, complex or regulated organisations.
- Strong evidence of advising boards, executive teams or senior risk committees.
- Practical knowledge of recognised frameworks such as ISO 27001, NIST CSF, Cyber Essentials or equivalent.
- Excellent written English. Reports must be ready for clients without heavy editing.
- The ability to work independently and challenge weak evidence respectfully.
We are particularly interested in applicants who hold:
- UK Cyber Security Council professional registration at Principal or Chartered level in Cyber Security Governance & Risk Management.
We will also consider candidates who can demonstrate experience aligned with Chartered level and are willing to undergo formal professional assessment.
General certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Auditor or Lead Implementer are useful, but do not replace the professional registration requirement.
You must be based in the UK, able to attend UK client sites when agreed, and able to contract through a limited company or another compliant arrangement.
Benefits
- Senior cyber assurance and advisory assignments.
- Flexible associate working based on your availability.
- Direct access to Intelance leadership.
- Work with experienced governance, architecture and technical-assurance specialists.
- Clear scopes, templates and quality-review arrangements.
- Potential inclusion in Intelance proposals and associate credentials, subject to agreement.
Please provide:
- Your CV and LinkedIn profile.
- Your exact UK Cyber Security Council registration, specialism and registration number or public profile.
- If you are not registered, a short explanation of why your experience meets Chartered level.
- One example of a difficult enterprise cyber-risk decision you personally led.
- Your location, availability and expected day rate.
- Details of any Cyber Essentials, Cyber Essentials Plus, IASME or ISO 27001 qualifications.