McFall Recruitment Limited

www.mcfallrecruitment.co.uk

2 Jobs

2 Employees

About the Company

At McFall Recruitment we are committed to the highest standards of quality and service to help you find and attract talented individuals to join your organisation. We specialise within Change Transformation, Business IT and Senior Appointments offering you recruitment solutions for both contract and permanent engagements on a retained or contingent basis.

This is about the journey that we will take together.

We are a recruitment business that recognises our clients and candidates are unique and our recruitment solutions are designed to be tailored to suit this. We approach every vacancy as a truly consultative resourcing partner, providing professional advice and resource planning to ensure your recruitment processes marks the beginning of a successful business relationship.

Whether you are a candidate or a client, you are our a customer and at McFall Recruitment we pride ourselves in putting customers first.

We are here to offer you the best advice, help challenge your thinking to make sure you have considered all options and be that sounding board so we can work together to find the solution.

To us, we want to work with customers that we can build long term relationships with. By getting to know you and working as a team, we can help shape your thinking and help to bring clarity of thought.

Whether you are looking for a new position or looking to hire a new team member; its important to work with the right partner who will spend the time to get to know you, challenge thinking, offer ideas and solutions – let that be McFall Recruitment Group.

Some of the roles that we can help you with:

CTO/ Interim IT Director - Change Director - Head of Change Transformation
IT Programme Director - IT Project Manager - Change Project Manager - Scrum Master
Head of Design - Digital Director - UX Designer
PMO Lead - PMO Analyst

To start the conversation, please call Sally on 07887 713668 or email on sally@mcfallrecruitment.co.uk

Listed Jobs

Company Name: McFall Recruitment Limited
Job Title: Head of Cyber Risk Governance & Compliance GRC
Job Description: Job title Head of Cyber Risk Governance & Compliance GRC Role Summary Lead the development and execution of a global Cyber Security governance, risk, compliance, and resilience framework for a financial services organization, reporting to the CISO and interfacing with executive leadership, boards, and regulators. Expectations - Deliver a mature, responsive information security posture aligned with global regulatory mandates (DORA, GDPR, MAS, CPS230, SOX). - Demonstrate measurable improvement in cyber risk maturity (NIST, ISO 27001:2022) and third‑party risk controls. - Act as a trusted advisor, translating technical risks into clear business decisions for senior executives and regulators. Key Responsibilities - Own the global cyber risk management programme: risk assessments, control evaluations, and treatment plans. - Develop, maintain, and enforce cybersecurity policies, standards, and procedures that satisfy regulatory and business objectives. - Lead the Cyber Security Digital Resilience Forum and champion enterprise‑wide cyber resilience initiatives. - Oversee vendor risk management, ensuring aligned third‑party controls and compliance. - Build and report metrics and dashboards tracking KRIs, control effectiveness, and compliance status. - Collaborate with global governance bodies to embed cyber risk into enterprise risk frameworks. - Support NIST maturity uplift and ISO 27001:2022 alignment efforts. Required Skills - Proven leadership in Cyber Security governance, risk, and compliance, preferably within financial services. - Deep knowledge of global regulatory environments (e.g., DORA, GDPR, MAS, CPS230, SOX) and financial risk frameworks. - Strong stakeholder engagement and communication skills across technical and non‑technical audiences. - Experience managing multi‑time‑zone, global teams and prioritizing across jurisdictions. - Methodical, analytical, and calm under pressure with a detail‑oriented approach. - Capability to drive cultural change, process improvement, and maturity uplift. Required Education & Certifications - Bachelors (or equivalent) in Computer Science, Information Security, Risk Management, or related field. - Professional certifications highly desirable: CISM, CRISC, CISSP, ISO 27001 Lead Implementer/Auditor.

London, United kingdom

Hybrid

05-11-2025

Company Name: McFall Recruitment Limited
Job Title: Head of Cyber Risk, Governance & Compliance GRC
Job Description: **Job title** Head of Cyber Risk, Governance & Compliance (GRC) **Role summary** Lead a global GRC team of six to strengthen and harmonise the organisation’s cyber risk management framework. Directly report to the CISO and drive consistency, compliance, and maturity across worldwide operations, ensuring alignment with regulatory standards and executive expectations. **Expactations** - Deliver strategic direction for cyber governance, risk, and compliance. - Translate technical risk insights into clear, board‑level reporting. - Manage cross‑functional collaboration with Operational Resilience, Engineering, and Cyber Operations teams. - Maintain regulatory compliance and audit readiness across US, UK, EU, Japan, and other jurisdictions. **Key responsibilities** - Head and develop the global GRC team, setting performance and development standards. - Design, maintain, and update policies, standards, and documentation to satisfy regulatory and audit requirements. - Oversee vendor and third‑party due diligence, supplier notifications, and control assurance processes. - Utilize tools such as SecurityScorecard, RiskConnect, and SharePoint for risk monitoring, reporting, and evidence management. - Produce concise risk reports for senior stakeholders and the board, ensuring clarity and actionable insights. - Collaborate with internal teams (Operational Resilience, Engineering, Cyber Ops) to integrate risk controls into operational processes. - Monitor emerging regulations and frameworks (NIST, ISO 27001, CPMI‑IOSCO, CRI Cyber Risk Profile) and advise on necessary adjustments. - Lead audit preparation and liaise with external auditors to ensure compliance and timely closure of findings. **Required skills** - Proven leadership of cyber risk and compliance functions in financial services or similarly regulated sectors. - Deep knowledge of cyber risk frameworks (NIST, ISO 27001, CPMI‑IOSCO, CRI). - Ability to synthesize complex technical risk into executive‑friendly communication. - Strong organizational, documentation, and detail orientation. - Proficiency with risk management platforms (SecurityScorecard, RiskConnect, SharePoint). - Cross‑functional collaboration and stakeholder engagement skills. **Required education & certifications** - CISM – mandatory. - CRISC, ISO 27001 Lead Implementer/Auditor, CISSP or CGEIT – advantageous. - DORA or NIST CSF training – desirable. - Bachelor’s degree in Information Security, Risk Management, or related field (or equivalent professional experience).

Edinburgh, United kingdom

Hybrid

06-11-2025