Risk & Control Consultant (Cyber / KRI Alignment)

Up to £550 per day (Inside IR35)

9 months contract - Fully Remote

We are seeking an experienced Risk & Control Consultant to support the alignment of cyber security controls to enterprise risk indicators and industry frameworks. This role focuses on identifying control gaps, aligning to established standards (including NIST), and driving remediation across the organisation.

Key Responsibilities:

• Assess current cyber controls against defined frameworks (e.g. NIST) and organisational standards

• Identify gaps between internal controls and external benchmark requirements (e.g. Tier 1 Bank aligned KRIs)

• Define and implement control improvements to close identified gaps

• Measure and track performance against Key Risk Indicators (KRIs)

• Work closely with senior stakeholders to align on risk posture and remediation priorities

• Drive adoption of new control frameworks across the business

• Ensure strong documentation, governance, and audit readiness

• Support automation of controls and reporting where possible

• Deliver scalable, sustainable control improvements

Key Experience:

• Strong background in Cyber risk, governance, and control frameworks

• Experience aligning controls to NIST or similar frameworks

• Proven gap analysis and remediation delivery

• Experience working with KRIs and risk measurement

• Strong stakeholder engagement across technical and non-technical teams

• Governance, documentation, and audit experience