Job Title

Please find below the updated job description for the Governance & Risk Management Consultant role: Need Active SC ClearanceRole SummaryWe are looking for a Governance & Risk Management Consultant (15+ years experience) with strong expertise in compliance mapping, vulnerability risk management, and risk escalation. The role focuses on aligning platforms to security frameworks and managing vulnerability lifecycles across hybrid and cloud environments.Key Skills RequiredSecurity Controls Framework mapping (NIST, ISO 27001, NHS DSP Toolkit, NCSC CAF)Strong exposure to vulnerability risk management across hybrid and cloud estates (AWS, Azure)Governance oversight of vulnerability burn-down across platforms, applications, servers, and systemsCompliance reporting aligned to hardening standards (permissive accounts, IaC, etc.)Risk and issue assessment, tracking, and lifecycle managementCompliance evidence collation and governance reportingStakeholder engagement and program oversightKey ResponsibilitiesMap NHS platforms against Security Controls Frameworks with focus on vulnerability managementTrack and manage security issues via Security Issue Management TrackerEscalate unresolved risks to Cyber Operations and governance forumsConduct weekly risk reviews and support audit readinessWork with product owners to identify risks and prioritize vulnerability remediationReport to senior management on remediated, mitigated, and residual risksTPBN1_UKTJ