TalentHawk

About the Company

TalentHawk is an International technology search and delivery consultancy with IT vendor selection skills that provides end-to-end solutions to organisations seeking maximum benefit from their technology solutions. Our mission is to transform the performance of your business through the acquisition of top tier technology executives and the optimisation of your delivery strategies.

Our distinct market positioning and unique insight into sourcing strategies and talent acquisition enables us to deliver outstanding results across the full professional services spectrum; through the provision of key hires, contract and permanent staffing, third party staff augmentation, third party statement of work and managed programmes.

Founded by Industry experts, TalentHawk specialises in IT and professional resource solution. We provide a comprehensive range of sourcing, consultancy and managed services to an enviable portfolio of clients.

With our in-depth knowledge of IT and professional talent acquisition and best practice vendor selection techniques, we have established an unparalleled reputation for transforming business performance through enhanced sourcing strategies and increased delivery agility.

Our operating principles are proactivity, partnership and project deliver. As a direct result of our 'high touch' consultative approach, we are able to deliver effective end-to-end solutions for both volume and specialist requirements.

Listed Jobs

Company Name

TalentHawk

Job Title

Change Manager - Cyber Security

Job Description

Job title: Change Manager – Cyber Security Role Summary: Lead organisational behavioural change initiatives that embed cyber‑secure practices into daily work, translating technical controls into concrete actions and driving measurable adoption across all roles. Expactations: • Own the change programme lifecycle from design to measurement and reporting. • Collaborate with cyber, IT and business stakeholders to align change activities with technical controls. • Serve as a credible advocate for secure behaviours at all organisational levels. Key Responsibilities: • Design and deliver engagement strategies that foster lasting behavioural change. • Analyse real‑world work practices to identify cyber risks and translate security principles into role‑specific actions. • Develop inclusive, practical interventions for front‑line and office staff. • Partner with cyber security, IT, and business teams to embed change into existing workflows. • Track, analyse, and report on adoption metrics and stakeholder feedback. • Publicise success stories and reinforce positive secure behaviours. Required Skills: • Proven experience leading change management in Cyber Security, IT Risk, or Information Security. • Deep understanding of behavioural change theory and its application in complex organisations. • Strong analytical skills to identify real‑world risks and craft actionable solutions. • Excellent communication, influence and stakeholder‑management abilities. • Adaptability to engage both front‑line staff and senior leadership. • Experience with human‑centred design or behavioural science is a plus. Required Education & Certifications: • Bachelor’s degree in Business, Information Technology, Cyber Security or a related field. • Professional credentials such as CCMP, Prosci Change Practitioner, or equivalent are preferred.

London, United kingdom

Hybrid

27-12-2025

Company Name

TalentHawk

Job Title

Information Security Assurance Manager

Job Description

Job title: Information Security Assurance Manager Role Summary: Lead security assurance, governance, and control effectiveness for a regulated energy delivery organization, ensuring compliance with ISO 27001, NIST, and SOC 2 across cyber, IT, cloud, and third‑party environments. Act as the primary liaison for internal and external audit readiness and executive risk reporting. Expectations: • Deliver end‑to‑end assurance of security controls in complex, regulated settings. • Maintain accurate risk register and drive remediation. • Provide clear, executive‑level reporting on security posture and risk. • Collaborate with Cyber, Risk, IT, and Compliance functions to align security strategy with business objectives. Key Responsibilities: • Conduct security assurance reviews (cyber, IT, cloud, third‑party). • Validate controls against ISO 27001, NIST, SOC 2, and relevant frameworks. • Own audit readiness, support internal and external audits, and address findings. • Manage security risk register and track remediation progress. • Provide assurance on IAM/PAM, vulnerability management, and data protection. • Generate concise executive‑level security dashboards and reports. • Partner with technology, risk, and compliance teams to embed secure practices. Required Skills: • Deep experience in Information Security Assurance and GRC. • Proven track record in regulated environments (energy, utilities, finance, etc.). • Expertise in ISO 27001, NIST, SOC 2 frameworks and related controls. • Effective stakeholder management at senior management level. • Proficient with security tools (risk management platforms, SIEM, vulnerability scanners, IAM, PAM). • Strong analytical, communication, and project‑management abilities. Required Education & Certifications: • Bachelor’s degree in Information Security, Computer Science, or related field (Master’s preferred). • Relevant certifications: CISSP, CISM, CRISC, ISO 27001 Lead Auditor, or equivalent.

London, United kingdom

Hybrid

27-12-2025

Company Name

TalentHawk

Job Title

Cyber Risk Analyst

Job Description

Job Title: Cyber Risk Analyst Role Summary: Contract role delivering qualitative and quantitative cyber, IT, and OT risk assessments. Responsibilities include identifying and documenting risks, maintaining risk registers, supporting mitigation plans, quantifying risk with structured methods, and ensuring compliance with recognised frameworks and regulatory obligations. Works closely with IT teams, risk owners, supply chain partners, and third‑party vendors. Expectations: Execute daily risk activities, keep risk registers current, provide risk treatment recommendations, support supply‑chain risk assessment, contribute to risk quantification initiatives, maintain compliance documentation, and collaborate with stakeholders to agree on mitigation strategies. Key Responsibilities - Identify, assess, and monitor cyber, information security, and OT risks using established risk‑management practices. - Maintain accurate, up‑to‑date risk registers, treatment plans, and control profiles. - Collaborate with IT teams, risk owners, and the GRC function to gather risk data and support mitigation planning and reporting. - Support supply‑chain and third‑party cyber risk assessments in partnership with security assurance activities. - Contribute to cyber risk quantification initiatives, employing structured methods/tools (e.g., FAIR, FAST). - Ensure compliance with internal controls and external regulatory/legislative requirements. Required Skills - 3–5 years in an information‑security or cyber‑risk assessment role. - Practical experience with cyber risk‑management frameworks (ISO 27005, OCTAVE Allegro, FAIR/FAST). - Strong understanding of information‑security principles, frameworks, and regulatory obligations (NIST CSF 2.0, ISO 27001/27002, IEC 62443, PCI‑DSS, GDPR, NIS‑D CAF, Data Protection Act). - Ability to maintain compliance documentation aligned to standards and regulations. - Analytical and problem‑solving skills with strong written communication. - Proficiency in stakeholder collaboration to assess risks and agree on mitigation. - Independent work capability within a team environment. Required Education & Certifications - Bachelor’s degree in Cybersecurity, Information Technology, Risk Management or related discipline. - Industry‑recognised certification desirable (e.g., CRISC) or actively pursuing.

Portsmouth, United kingdom

Hybrid

27-12-2025

Company Name

TalentHawk

Job Title

Threat Security Analyst

Job Description

Job title: Threat Security Analyst Role Summary: Identify, analyze, and report cyber threats that could affect an organization’s IT and OT environments, supporting the protection of critical national infrastructure through timely threat intelligence, actionable insights, and risk-based recommendations. Expactations: - Deliver credible threat intelligence to SOC, incident response, and risk teams. - Maintain up-to-date threat models aligned with MITRE ATT&CK (IT & OT). - Brief senior stakeholders on threat trends, risks, and mitigation strategies. - Collaborate with government, industry, and intelligence-sharing bodies as required. Key Responsibilities: - Monitor, analyze, and assess cyber threats, threat actors, and campaigns relevant to utilities. - Produce actionable threat intelligence for SOC, incident response, and risk teams. - Track emerging threats impacting IT, OT, SCADA, and critical infrastructure. - Correlate intelligence from internal telemetry, SIEM, and external feeds. - Support incident response and post‑incident analysis with threat context. - Brief senior stakeholders on threat trends, risks, and mitigation options. - Maintain threat models aligned to MITRE ATT&CK (IT & OT). - Collaborate with government, industry, and intelligence‑sharing bodies when appropriate. Required Skills: - Experience in cyber threat intelligence and threat analysis. - Knowledge of utilities, energy, or critical infrastructure environments. - Understanding of IT and OT security, including SCADA systems. - Familiarity with MITRE ATT&CK, kill chain, and adversary techniques. - Experience with SIEM, threat intelligence platforms, and OSINT. - Strong analytical and written communication skills. Required Education & Certifications: Not specified.

London, United kingdom

Hybrid

27-12-2025