
Cambridge Consultants · United Kingdom
OVERVIEW We are looking for a software Technology Leader with commercial expertise and a deep understanding of wireless communications systems to join our team...
We are looking for a software Technology Leader with commercial expertise and a deep understanding of wireless communications
systems to join our team. We have a rich history in satellite, cellular, and personal area network communications. To maintain our
position at the forefront of innovation in cutting-edge technologies such as Low Earth Orbit Satellites and High-Altitude
Platforms, we are growing our techno-commercial leadership capability.
If you are the successful applicant you will collaborate with business developers to understand technology trends and market
opportunities, selling and delivering projects for world-leading clients. You will inspire your colleagues to develop technology
breakthroughs that add real value for our customers and help to develop the next generation of leaders within our organisation.
You’re likely to have far more variety in your work here than in your current role: Cambridge Consultants innovates for a wide
range of clients, from start-ups to blue chips. Some are looking to optimise their existing technologies, while others come with a
vision to develop something entirely new that both disrupt markets and create new ones. We will expect you to keep up with
advances in technology and changes in the market, and to propose and investigate novel technologies that could enable new products
and services for our current and future clients.
You won’t be working alone to reach these goals. We have a friendly and supportive culture and a passion for solving technical
challenges.
As a Technology Leader, you will have a proven track record of leadership and innovation in the field of wireless communication
systems. You will be enthusiastic about exploring new technologies and their potential benefits to our clients through a business
lens. You will be a confident communicator, able to articulate your ideas and inspire others to develop theirs.
You will contribute to understanding market trends and clients’ needs alongside business developers. You will take a lead role in
the creation and development of new ground-breaking wireless products, from initial client discussion, understanding of business
outcomes, through to product specification and successful delivery.
By submitting an application to Cambridge Consultants, you confirm that the information provided in this application, together
with any supporting documentation, is true, complete, and accurate to the best of your knowledge and belief. You understand that
any false statement, misleading information, or material omission may render you liable to disqualification from the recruitment
process, withdrawal of any offer of employment, or dismissal without notice if discovered following appointment. You acknowledge
that the organisation reserves the right to verify the information supplied.
About Us Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services. Sophos meets organizations wherever they are in their security maturity and grows with them to defeat cyberattacks. Its solutions combine machine learning, automation, and real-time threat intelligence with frontline human expertise from Sophos X-Ops to deliver advanced, 24/7 threat monitoring, detection, and response. Sophos offers industry-leading managed detection and response (MDR) alongside a comprehensive portfolio of cybersecurity technologies — including endpoint, network, email, and cloud security, extended detection and response (XDR), identity threat detection and response (ITDR), and next-gen SIEM. Together with expert advisory services, these capabilities help organizations proactively reduce risk and respond faster, with the visibility and scalability needed to stay ahead of evolving threats. Sophos goes to market with a global partner ecosystem, including Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), resellers and distributors, marketplace integrations, and cyber risk partners, giving organizations the flexibility to choose trusted relationships when securing their business. Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com. Role Summary This role is for individuals with real cybersecurity experience who understand the pressures faced by security teams and the challenges businesses encounter in strengthening their defences. If you've worked in a cybersecurity team, led advisory engagements through a managed service provider, or helped organisations tackle security challenges, this is your chance to apply that expertise on a larger scale. As a CISO Advantage Field Specialist, you'll be the key expert for MSP partners seeking genuine knowledge. Instead of relying on slides, you'll leverage your deep understanding of advancing cyber maturity and transformation. Your role includes assisting partners in integrating CISO Advantage into their offerings, empowering their teams to deliver effective security services. We seek proactive individuals who thrive at the intersection of technology, people, and business outcomes. If you're excited about helping underserved businesses manage their security risks using leader-edge technology, data and AI as real tools, this role was made for you.
About The Role At think-cell, we are continuously improving how professionals create business presentations by introducing smarter automation and assistance features into our product. In this role, you will help turn new ideas and early AI-driven concepts into reliable features used by more than 1.3 million users worldwide. You will build production-ready systems that connect modern backend services with intuitive user interfaces. In this role, you will work closely with both C++ engineers developing the core product and AI engineers exploring new automation capabilities, helping bring new functionality from concept into everyday product usage. This role is ideal for engineers who enjoy building clean, scalable systems, care deeply about code quality, and are motivated by shipping impactful features in a highly collaborative engineering environment. What you will do * Build and maintain production-ready backend and full-stack features using TypeScript * Integrate AI-powered functionality into the think-cell product, such as text editing assistance and automated slide creation * Work closely with C++ engineers and AI engineers to translate ideas and prototypes into robust product features * Contribute to a strong engineering culture with rigorous code reviews and high standards for code quality You will be great for this position if you have * A degree in computer science, mathematics, physics, or a similar technical field * Relevant experience as a backend or full-stack engineer * Strong experience with TypeScript and Node.js in production environments * Curiosity about AI technologies and interest in integrating them into real-world products * Experience with Python or C++ is a plus What We Offer * Brilliant Team: Work with international colleagues with strong academic and professional experience * Work–life balance: Flexible working hours and an environment that respects your time and focus. * Stable Environment: Join a market leader with a reliable product. * Direct Exposure to C-level * Competitive salary & Relocation Support to Berlin Why is think-cell the right place for you? At think-cell, we’re not just building innovative software – we’re empowering over 1.3 million business users across 35,000 companies, including the world’s top consulting firms, DAX 40 leaders, and the biggest US blue-chip enterprises. With offices in Berlin, Denver, Boston, London, Tokyo, and Dubai, we are a diverse, passionate team of over 220 people, united by a shared commitment to excellence and innovation. Our proprietary technology sets the standard in business document creation, and we're in a dynamic, growing market with enormous potential. As we continue to lead the way in our industry, we’re looking for talented individuals who can help us shape the future of business productivity. Our Values At think-cell, our values are at the heart of everything we do. They guide how we work, collaborate, and create value for our customers. As part of our team, you will embody and help shape the following principles that define us: * Forward Thinking: We are adaptable innovators – we embrace change, value progress, and challenge the status quo to find the best solutions. * Ownership: We take pride in our work – we own our mistakes, learn from them, and go the extra mile to deliver exceptional results. * Customer First: We are committed to our customers – we understand, prioritize, and deliver lasting value through meaningful solutions. * Unified Team: We cultivate collaboration and value every voice – we prioritize integrity and respect, ensuring everyone feels heard, supported, and aligned in our shared mission. * Strive for Excellence: We are driven by excellence – we set ambitious goals, pursue quality relentlessly, and foster growth through exceptional talent. Join Our Journey We encourage you to apply even if you feel you don’t meet every single requirement. At think-cell, we celebrate diversity because we know it drives creativity and excellence. We welcome individuals from all backgrounds who are passionate about making a real impact. Joining us means more than just a job – it’s an opportunity to be part of an inclusive, innovative, and supportive team that values collaboration and growth. Together, we can push boundaries and achieve great things. Let’s shape the future of productivity together. We can’t wait to see what you’ll bring to our team.
WPP is the trusted growth partner for the world’s leading brands. We unite cutting-edge media intelligence and data solutions, world-class creativity, next-generation production, transformative enterprise solutions and expert strategic counsel in a single company – powered by exceptional talent and our agentic marketing platform, WPP Open, to help our clients navigate change, capture opportunity and deliver transformational growth. We work with the world's most valuable brands and have global reach across 100+ markets, with deep local expertise. Our people are the key to our success. We're committed to fostering a culture of creativity, belonging and continuous learning, attracting and developing the brightest talent, and providing exciting career opportunities that help our people grow. For more information, visit WPP.com. ISMS AND RISK OFFICER * Department: Data & Technology Solutions (DTS) * Reports To: SVP Security and Compliance * Location: [London/Hybrid 2 days a week in office] * Position Type: Full-Time ---------------------------------------------------------------------------------------------------------------------------------- ROLE PURPOSE The ISMS and Risk Officer (DTS) is responsible for managing and continuously improving the Information Security Management System (ISMS) across Data & Technology Solutions. You will ensure that security policies, controls, risks, exceptions, and governance processes are properly maintained, evidenced, reviewed, and acted upon. Reporting to the SVP Security and Compliance, you will provide the operational backbone for security governance across DTS. This is a hands-on Governance, Risk, and Compliance (GRC) role. You will collaborate across security, product, engineering, infrastructure, architecture, legal, risk, compliance, and delivery teams to transform security governance into a dynamic, working management system rather than a static documentation exercise. ---------------------------------------------------------------------------------------------------------------------------------- KEY RESPONSIBILITIES 1. ISMS OWNERSHIP & OPERATION * Manage the day-to-day operation and continuous improvement of the DTS ISMS. * Maintain the ISMS framework, documentation, control library, policies, standards, and procedures. * Ensure the ISMS accurately reflects how DTS operates across products, platforms, infrastructure, data, and engineering. * Support alignment with frameworks such as ISO 27001, SOC 2, GDPR, HIPAA (where applicable), and wider WPP security requirements. * Ensure ISMS artefacts are version-controlled, approved, reviewed, and communicated appropriately. * Maintain clear evidence of security governance activity, control operation, risk treatment, and management reviews. 2. POLICY MANAGEMENT & CONTROL GOVERNANCE * Own the lifecycle of DTS security and compliance policies, standards, procedures, and control documentation. * Coordinate policy reviews with Security, Architecture, Infrastructure, Engineering, Product, Legal, Risk, and Enterprise Technology stakeholders. * Ensure policies are practical, clear, enforceable, and aligned with DTS's operating reality. * Track policy exceptions, waivers, compensating controls, and review dates. * Ensure policy changes are communicated and seamlessly embedded into operational processes. 3. RISK REVIEW BOARD OPERATION * Establish and continuously run the DTS Risk Review Board. * Define the Board’s cadence, agenda, inputs, outputs, attendees, and escalation routes. * Prepare comprehensive risk packs, dashboards, decision logs, and action trackers. * Ensure risks are presented clearly, consistently, and with appropriate supporting evidence. * Track decisions, owners, due dates, mitigations, exceptions, and residual risks. * Escalate risks exceeding agreed thresholds to the SVP Security and Compliance, DTS leadership, the CISO office, or other appropriate forums. 4. RISK REGISTER MANAGEMENT * Own and maintain the central DTS security and compliance risk register. * Capture, assess, categorise, and maintain security, compliance, privacy, operational resilience, third-party, and technology risks. * Ensure all risks have clear descriptions, owners, likelihood/impact ratings, inherent risk scores, mitigations, residual risk scores, treatment plans, and target dates. * Partner with risk owners to ensure mitigations are realistic, funded, and actively progressed. * Track overdue risk actions and escalate insufficient progress. * Produce regular risk reporting for DTS leadership and wider WPP governance forums. 5. CONTROL ASSURANCE & EVIDENCE MANAGEMENT * Support ongoing assurance activity by ensuring controls are consistently evidenced, tested, and reviewed. * Maintain control evidence for ISO 27001, SOC 2, client assurance, internal audits, and other compliance needs. * Coordinate evidence collection from Engineering, Infrastructure, Security, Product, HR, Legal, and Enterprise Technology. * Identify gaps between documented controls and actual operating practices, tracking remediation plans. 6. COMPLIANCE SUPPORT & AUDIT READINESS * Support DTS compliance obligations (ISO 27001, SOC 2, HIPAA, GDPR-related controls, and client-specific requirements). * Help prepare for internal/external audits, client reviews, security questionnaires, and due diligence exercises. * Maintain an organized, always-ready evidence library and audit trail. * Support management reviews required by ISO 27001 and other governance frameworks. 7. EXCEPTION, WAIVER & REMEDIATION TRACKING * Manage the formal process for security exceptions, policy waivers, risk acceptances, and remediation plans. * Ensure exceptions are documented, reviewed, approved, time-bound, and assigned to accountable owners. * Track compensating controls, monitor residual risk, and manage the renewal/escalation of expired exceptions. 8. THIRD-PARTY & SUPPLIER RISK SUPPORT * Help assess security and compliance risks associated with vendors, partners, tools, platforms, and managed services. * Maintain supplier risk records and coordinate with Procurement, Legal, CISO, Enterprise Technology, and Product teams. * Ensure third-party risk is appropriately integrated into the DTS risk register and Risk Review Board. 9. SECURITY GOVERNANCE REPORTING * Produce clear, reliable, and actionable governance dashboards and reports for the SVP Security and Compliance and DTS leadership. * Translate complex governance and technical data into clear business language, highlighting trends, overdue actions, and material risks. 10. STAKEHOLDER ENGAGEMENT & CULTURE * Foster a collaborative and practical security governance culture across DTS. * Coach risk owners on how to describe, assess, treat, and monitor risks. * Ensure risk processes support business delivery rather than becoming bureaucratic overhead. ---------------------------------------------------------------------------------------------------------------------------------- KEY ACCOUNTABILITIES The ISMS and Risk Officer will be directly accountable for: * Effective operation, accuracy, and maintenance of the DTS ISMS and Risk Register. * Continuous, disciplined operation of the DTS Risk Review Board. * Up-to-date, approved, and realistic security policies, standards, and control documentation. * Structured tracking of risks, exceptions, waivers, and remediation plans. * Audit-ready evidence management and reliable governance reporting to leadership. ---------------------------------------------------------------------------------------------------------------------------------- SKILLS & EXPERIENCE Required: * Proven experience in information security governance, risk management, compliance, audit, or ISMS operation. * Strong working knowledge of ISO 27001 and practical ISMS management. * Familiarity with SOC 2, GDPR, HIPAA, cloud security, SaaS platforms, and enterprise security controls. * Experience maintaining risk registers, policy frameworks, control libraries, and audit evidence repositories. * Experience running or supporting risk committees, governance forums, or control review boards. * Excellent technical writing skills (policies, standards, risk statements, and governance reports). * Ability to collaborate with technical teams and translate technical issues into business risk/compliance language. * Strong organizational skills, high attention to detail, and a constructive yet persistent approach to driving action. Preferred: * Experience operating within a complex, matrixed, enterprise environment is highly valued. ---------------------------------------------------------------------------------------------------------------------------------- LEADERSHIP EXPECTATIONS * Disciplined & Reliable: Bring structure, order, and high standards of documentation to risk and compliance processes. * Pragmatic & Delivery-Aware: Build trust with technical teams by making governance useful, proportionate, and aligned with delivery. * Proactive: Follow through persistently on actions, dates, and evidence, and escalate bottlenecks clearly. * Collaborative: Support the SVP Security and Compliance in building a mature, transparent, and well-governed security function. ---------------------------------------------------------------------------------------------------------------------------------- SUCCESS MEASURES * A current, well-maintained DTS ISMS with zero "reactive" compliance rushes. * Security policies and standards reviewed, updated, and communicated on schedule. * The Risk Review Board operating systematically with clear actions and high leadership engagement. * DTS risk register actively used by leadership to drive risk-based decisions. * Audit and certification evidence organized so there are "fewer surprises" during external audits and client reviews. * Security governance fully embedded as a natural part of daily DTS operations. Who you are: You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are open-minded: to new ideas, new partnerships, new ways of working. You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected. You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day. What we'll give you: Passionate, inspired people – We aim to create a culture in which people can do extraordinary work. Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry. Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge? #LI-Hybrid We believe the best work happens when we're together, fostering creativity, collaboration, and connection. That's why we’ve adopted a hybrid approach, with teams in the office around four days a week. If you require accommodations or flexibility, please discuss this with the hiring team during the interview process. WPP is an equal opportunity employer and considers applicants for all positions without discrimination or regard to particular characteristics. We are committed to fostering a culture of respect in which everyone feels they belong and has the same opportunities to progress in their careers. PLEASE READ OUR PRIVACY NOTICE (HTTPS://WWW.WPP.COM/EN/CAREERS/WPP-PRIVACY-POLICY-FOR-RECRUITMENT) FOR MORE INFORMATION ON HOW WE PROCESS THE INFORMATION YOU PROVIDE.