Job Search

Role Overview

The organization is seeking a seasoned IT Program Manager to lead one or more highly complex, enterprise‑wide programs consisting of multiple interconnected projects. This role focuses heavily on security audit readiness, compliance remediation, and cross‑functional program delivery across a large enterprise environment.

You will be responsible for developing program strategy, building business cases, creating high‑level project plans, and ensuring seamless integration across all workstreams. The ideal candidate brings deep experience in security, compliance, and technical project management, along with strong leadership and communication skills.

Key Responsibilities

Manage and deliver enterprise‑wide IT programs involving multiple projects, stakeholders, and technical teams.

Develop program strategy, business cases, and high‑level plans aligned with organizational goals.

Ensure audit readiness and drive remediation efforts based on findings from global or enterprise security audits.

Oversee compliance initiatives related to SOC2, ISO frameworks, vulnerability management, and other security standards.

Track key milestones, identify risks, and recommend adjustments to project managers and leadership.

Communicate program direction, updates, and changes to senior IT and business leaders.

Partner with executive stakeholders to identify and prioritize opportunities for leveraging IT to meet enterprise objectives.

Coordinate creation of technical architecture documentation and system diagrams as needed.

Ensure all projects are delivered on time, within budget, and aligned with strategic requirements.

Required Qualifications

7+ years of project management experience, preferably in technical, security, or compliance domains.

Strong understanding of security audits, compliance frameworks (SOC2, ISO, etc.), vulnerability management, and remediation workflows.

Proven ability to lead large-scale, enterprise-wide initiatives with cross-functional teams.

Excellent executive communication skills, including preparing presentations and briefing senior leadership.

Experience with technical documentation, architecture diagrams, and system mapping.

Proficiency with project management tools such as Jira, Confluence, MS Project, or equivalent.

Bachelor's or Master's degree in Computer Science, Business Administration, or related field (or equivalent experience).

Project Management certification (PMP, PgMP, or equivalent) required.

GCS is acting as an Employment Business in relation to this vacancy.

Read less

GCS is acting as an Employment Business in relation to this vacancy.

Read less

GCS is acting as an Employment Business in relation to this vacancy.

Read less

Role: OT Cyber Security Delivery Manager

Duration: 6 month rolling

Rate: Up to £650 Inside IR35

Location: London (2 days onsite)

I'm supporting an urgent requirement for an experienced OT Cyber Security Delivery Manager to drive the delivery of security improvements across a complex OT environment.

This role is very much delivery-led, so we need someone who has hands-on experience implementing OT security controls, owning execution across initiatives like IT/OT segmentation, NIS2, and secure access.

What we're looking for:

Proven experience leading and delivering OT cyber programmes/projects end-to-end (IEC62443 / NIST aligned)Strong experience across ICS/SCADA and OT environmentsAbility to drive delivery across engineering, cyber, and operations teams

To find out more, please apply now or send a copy of your CV to [email protected]

GCS is acting as an Employment Business in relation to this vacancy.

Read less

OT Cyber Security Project Manager - 6-month rolling - Inside IR35 - Fully Remote

I'm hiring for an experienced OT Cyber Security Project Manager to lead the delivery of Cyber Security improvements across an Operational Technology environment.

Must have managed OT Cyber projects end-to-end, from conception to delivery!

If interested, please drop me a message or an email to [email protected]

GCS is acting as an Employment Business in relation to this vacancy.

Read less

Cyber Security Transformation Manager - Contract (Outside IR35)

Location: UK - Manchester or London (Remote with occasional travel)
Duration: 12 Months
Rate: £950-£1,050/day (Outside IR35)

The Opportunity

We're partnering with a fast-growing retail client on a 12-month cyber security transformation programme.

This role is ideal for a hands-on Transformation Manager who can deliver enterprise-wide cyber initiatives, implement security tooling, and drive compliance improvements to support the client's rapid growth.

You will work closely with internal stakeholders, operational teams, and vendors to ensure successful delivery of multiple workstreams, balancing strategic oversight with practical implementation.

Key ResponsibilitiesLead delivery of cyber security transformation projects across multiple workstreamsImplement and optimise security tooling, monitoring, and controlsDrive compliance uplift across business and technology teams (ISO 27001, NIST, SOC2)Coordinate internal teams, vendors, and external partners to ensure successful outcomesDevelop programme governance structures, reporting frameworks, and progress trackingEngage with senior stakeholders to ensure alignment with business and regulatory objectivesIdentify risks and mitigation strategies to keep programmes on trackExperience RequiredProven track record delivering multi-workstream cyber security projects (This is must!) Experience managing projects in retail, commercial, or scaling business environmentsStrong stakeholder management and communication skillsProgramme governance experience and ability to manage multiple teams simultaneouslyFamiliarity with cyber security frameworks and regulatory requirements (ISO 27001, NIST, SOC2)DesirableExperience implementing enterprise security tools (SIEM, IAM, PAM, cloud security monitoring)Experience in rapidly scaling or high-growth organisationsExposure to OT/ICS or industrial security environments (bonus)Previous contract experience on outside IR35 engagementsAdditional InformationFully remote with occasional client site visits12-month contract (Outside IR35)Immediate start or short notice preferredApply Now

If you are an experienced Cyber Security Transformation Manager with a strong record of delivering high-impact cyber programmes, please apply or reach out for a confidential discussion.

GCS is acting as an Employment Business in relation to this vacancy.

Read less

Cyber Security Program Manager - Contract

Location: UK (Hybrid / Remote options available)
Duration: 6-12 Months
Rate: £800-£1,050 per day

The Opportunity

We're supporting a number of organisations across the UK delivering large-scale cyber security and technology transformation programmes.

These engagements are focused on driving complex change across areas such as cloud security, SOC transformation, regulatory uplift, and enterprise-wide security improvements.

This is suited to Programme Managers who are comfortable operating across both technical and business stakeholders, with a track record of delivering high-impact security programmes.

Key ResponsibilitiesLead end-to-end delivery of cyber security or technology transformation programmesManage multiple workstreams across security, infrastructure, and business teamsEngage senior stakeholders across technology and business functionsDrive governance, reporting, and programme structureEnsure delivery against timelines, budgets, and strategic objectivesSupport coordination across vendors, internal teams, and third partiesExperience RequiredProven experience delivering large-scale programmes within cyber security or technologyStrong stakeholder management across senior leadership and delivery teamsExperience within regulated environments (e.g. financial services, utilities, public sector)Background in areas such as cloud transformation, SOC build, or security uplift programmesAbility to manage complexity across multiple workstreamsDesirableExperience delivering programmes aligned to NIST, ISO 27001, or similar frameworksExposure to security tooling implementations or SIEM transformationsPrevious experience working within consultancy or client-facing environmentsAdditional InformationMultiple programmes currently active across different sectorsFlexible working models depending on clientOutside IR35 engagementsImmediate starts and pipeline roles availableApply Now

If you're a Programme Manager with experience delivering cyber security or transformation programmes, get in touch to discuss current and upcoming opportunities.

GCS is acting as an Employment Business in relation to this vacancy.

Read less

Cyber Security Programme Manager

Contract

Location: Remote / Hybrid (London-based gaming studio)
Contract Length: 9-18 months
Start Date: ASAP
Rate: Senior Day Rate (Outside IR35 where applicable)

About the Role

Our client, a leading gaming organisation, is seeking a highly skilled and experienced Cyber Security Programme Manager to lead a complex portfolio of security initiatives following a recent merger and acquisition. The acquired company has a distinctly different technology estate and security maturity level, requiring a senior leader who can manage multi‑stream integration, uplift programmes, and alignment with Private Equity and VC post‑acquisition expectations.

The ideal candidate is a seasoned security leader who excels at overseeing complex, cross‑functional transformation programmes, communicating with executive boards and investors, and driving security maturity uplift across diverse environments.

Key Responsibilities

Programme Leadership & Portfolio Oversight

Lead and govern a portfolio of cyber security projects spanning network security, DevSecOps, cloud security, IAM, vulnerability management, monitoring, and compliance.Establish programme governance frameworks, steering committees, reporting cadences, and KPI/KRI tracking.Ensure seamless integration of cyber controls across both the parent and acquired technology estates.Prioritise initiatives based on risk, business value, regulatory requirements, and investment mandates.

Post‑M&A Cyber Uplift & Integration Management

Conduct deep‑dive assessments of both security environments to identify gaps, misalignments, and opportunities for consolidation.Develop and execute a multi‑phase security integration roadmap aligned to PE/VC post‑acquisition value creation plans.Lead due diligence follow‑up activities, remediation planning, and standardisation of tooling, governance, and operating models.Oversee integration of security controls, policies, and technologies across the combined organisation.

Executive, Board & Investor Engagement

Prepare and deliver high‑quality executive reporting, dashboards, and board‑level presentations.Communicate security posture, risks, and programme progress to C‑suite, investors, and external stakeholders.Translate complex technical details into commercial and risk‑aligned outcomes suitable for PE/VC audiences.Partner with investment stakeholders to ensure the programme supports valuation, compliance, and exit‑readiness objectives.

Risk Management, Governance & Compliance

Maintain a security risk register, ensure appropriate ownership, and oversee mitigation planning.Guarantee alignment with regulatory and industry frameworks (e.g. ISO 27001, NIST CSF, CIS, GDPR).Lead audits, internal assessments, and third‑party security reviews as part of the M&A and investment lifecycle.Ensure unified policies, standards, and governance structures across the merged entities.

Cross‑Functional Coordination & Stakeholder Management

Collaborate with engineering, infrastructure, cloud, product, legal, and operations teams to deliver programme outcomes.Manage internal teams, contractor resources, and external vendors.Provide leadership, guidance, and structure to security engineering streams working on the integration.Identify blockers early, escalate when necessary, and ensure on‑time delivery of critical initiatives.

Change Management & Organisational Alignment

Champion a security‑first culture across both organisations.Drive operating model changes, process alignment, and the adoption of unified security practices.Ensure continuity of security operations during transformation and consolidation activities.

Experience & Skills

Essential

10+ years' experience in cyber security programme or portfolio management in complex, multi‑site organisations.Proven experience managing post‑M&A cyber security integrations.Direct exposure to Private Equity and Venture Capital stakeholders, including formal reporting and meeting participation.Demonstrable experience running large-scale cyber portfolios with multiple concurrent workstreams.Strong understanding of security domains:Cloud & infrastructure securityNetwork securityIAM & PAMDevSecOps / secure engineeringVulnerability managementIncident response & SOC upliftGRC frameworksExperience delivering transformation in environments with mixed technology maturity.Exceptional communication skills with the ability to influence C‑suite and investors.Strong governance, planning, RAID management, and executive reporting capabilities.

Desirable

Experience working in gaming, digital entertainment, or high‑availability tech organisations.Experience delivering cyber uplift in PE‑owned companies undergoing rapid scale, integration, or value creation cycles.Relevant certifications:CISSP, CISMPMP, MSP, PRINCE2CGEIT or equivalentUnderstanding of the investment lifecycle, including due diligence, integration, value creation, and exit planning.

GCS is acting as an Employment Business in relation to this vacancy.

Read less

Cyber Security Project Manager

Contract

Location: Remote / Hybrid (London-based gaming studio)
Contract Length: 6-12 months
Start Date: ASAP
Rate: Competitive (Outside IR35 where applicable)

About the Role

Our client, a leading gaming company, is seeking an experienced Cyber Security Project Manager Contractor to oversee and drive security workstreams associated with a major merger and acquisition (M&A) integration. The acquisition introduces a new technology estate with differing standards, tools, and security maturity, requiring a dedicated leader to coordinate activities, mitigate risks, and ensure a secure and seamless integration.

This is a senior, hands‑on project leadership role managing cross‑functional teams, third‑party suppliers, and security engineering streams to ensure both environments are aligned, compliant, and secure throughout the transition.

Key Responsibilities

M&A Security Programme Oversight

Lead the delivery of cyber security workstreams tied to the M&A integration.Conduct gap assessments between existing and acquired security controls, policies, and compliance baselines.Develop and manage integration plans covering network security, DevSecOps, identity, vulnerability management, monitoring, and incident response.Drive standardisation of security tools, processes, and governance across both estates.

Project & Stakeholder Management

Create and maintain project plans, RAID logs, migration roadmaps, and status reports.Coordinate and communicate with senior technical stakeholders across both organisations.Manage dependencies across infrastructure, network security, cloud, DevOps, data, and compliance teams.Ensure clear communication of security risks, remediation timelines, and project progress to leadership.

Risk, Governance & Compliance

Identify and manage risks related to the integration of disparate systems and security frameworks.Ensure compliance with internal security policies, industry standards, and regulatory expectations (ISO 27001, NIST, GDPR, etc.).Support internal audits, due diligence, and required security assessments during the transition.

Security Delivery Leadership

Drive implementation of new or updated security controls, monitoring capabilities, and security tooling.Support security engineering teams by removing blockers, prioritising actions, and ensuring resource availability.Oversee remediation of vulnerabilities or misconfigurations identified in the newly acquired estate.

Documentation & Reporting

Produce high‑quality documentation including project reports, governance packs, risk registers, and board updates.Ensure clear handover artefacts for security operations, engineering, and compliance teams.Support the creation of unified security frameworks, policies, and operating models for the merged organisation.

Experience & Skills

Essential

5-10 years' experience in cyber security project or programme management.Proven experience delivering projects during M&A integrations, large transformations, or multi‑environment consolidations.Strong understanding of security domains such as:Network securityCloud securityIdentity & access managementDevSecOps & CI/CD securityVulnerability managementIncident response & monitoringExcellent stakeholder management skills with the ability to influence technical and business leaders.Experience working with Agile, hybrid, or scaled delivery frameworks.Ability to manage multi‑vendor and internal engineering teams.

Desirable

Experience in the gaming, media, or high‑performance technology sector.Familiarity with ISO 27001, SOC 2, NIST CSF, CIS benchmarks, and GDPR.Relevant certifications such as PMP, PRINCE2, CISM, CISSP, or equivalent.Exposure to cloud environments (AWS, Azure, GCP) and common security tooling.

GCS is acting as an Employment Business in relation to this vacancy.

Read less