Finding the right individual to lead a new or evolving cybersecurity programme isn’t straightforward. People in this field need to display an impressive combination of skills – on one hand, they’ll need to hold their own with top management and be able to talk the language of business risk, whilst being able to understand the intricacies of threat analysis and corresponding controls. On top of that, they’re likely to need to get their head around regular monitoring of the organisation’s cybersecurity maturity and corresponding dashboards – not to mention the need to inspire others to embed strong security into everything they do.
CRMG can help you find the right people when you need them. Our vast collective operational experience and industry contacts mean that we can leap-frog traditional recruitment services to identify and provide experienced, qualified people at short notice – whether on an interim or full-time basis. Examples of roles we can help you fill include:
- Chief Information Security Officer (CISO) or equivalent
- Data Protection Officer (to provide governance related to GDPR activity)
- Head of Information Risk
- Head of Security Assurance
- Information Risk Manager
- Supply Chain Assurance Manager
- Information Security Auditor.
If you would like to discuss our Staff Placement service, please contact us.

Related Articles
10.02.2021. Information Risk Assessment
5 Steps to Building a Risk-based Approach to Cybersecurity
Cybersecurity is a top concern for all areas of an organisation, from legal to HR to IT to operations. A data breach can be devastating, not solely for your technical team, but for the entire company...
Read more…
04.02.2021. Governance
Cybersecurity in the Wake of Amey: Keeping yourself out of the headlines
The recent ransomware attack on Amey rattled nerves in the construction industry. Amey’s response to the breach was seemingly responsible, but when all is said and done...
Read more…
07.01.2021. Privacy & Data Protection
Data Protection: Beware the danger that lurks beneath
DPO appointed? Tick. Data Protection Impact Assessments conducted? Tick. Subject Access Request process operational? Tick. You’re in good shape, right? Well, in a narrow GDPR sense, you might just be. But beware the data protection illusion...
Read more…