Control Frameworks SME - Inside IR35 - SC Cleared

Control Framework SME - SC Cleared
Inside IR35 - £450 - £500
6 months Rolling Contract

We are seeking a Control Frameworks SME to design, implement, and mature security control frameworks within a complex organisational environment. The ideal candidate will have deep knowledge of control design, mapping, and operationalisation across security domains, and will be confident building control frameworks from the ground up.

This role is pivotal in aligning control environments with regulatory and standards-based expectations (eg ISO 27001, NIST, NCSC CAF), ensuring effective risk mitigation and measurable security assurance.

Key Responsibilities

• Design, build, and implement comprehensive control frameworks tailored to the organisation's risk posture and security strategy.
• Map controls to industry standards, regulations, and internal policies (eg NIST CSF, ISO 27001, GDPR, NCSC CAF).
• Identify control gaps, define control objectives, and work with stakeholders to ensure effective implementation and monitoring.
• Collaborate with governance, risk and compliance (GRC), technical, and operational teams to ensure controls are understood, owned, and Embedded.
• Develop supporting documentation, including control matrices, process flows, and assurance reporting artefacts.
• Support audits and assurance activities by demonstrating control effectiveness and readiness.
• Advise on continuous improvement opportunities, ensuring frameworks remain current and proportionate to emerging threats and changes in the regulatory landscape.