Cyber Security Architect

Job Description

We are a $13+ billion global technology company, home to more than 224,000 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud, and AI, powered by a broad portfolio of technology services and products.

HCLTech is a globally recognized leader in the Tech and IT industry, but we’ve never forgotten the startup mindset that got us here. We’ve always approached our work with an idea-first attitude because every one of our accomplishments — no matter how big or small — can be traced back to an idea’s single spark.

It’s that spark — that inner drive — that sets our people apart from our competitors. It enables us not just to pull off game-changing feats but to better our world in the process. We want you to find your spark. Because that’s what drives you to be better, be more, and ultimately, be more fulfilled.

Role: Regional Lead – Governance, Risk and Compliance & Business Resiliency

Location: UK, Edinburgh

Job Type: Full Onsite (5 days a week)

Employment Type: Permanent, Full-time

KEY RESPONSIBILITIES & JOB DESCRIPTION:

• Responsible for business development of HCL Governance, Risk and Compliance services and Business Resiliency services in UK & Europe region. Achieve booking targets and revenue goals.
• Manage P&L and client relationships.
• Identify GRC opportunities within existing client accounts and collaborate with regional sales for new client acquisition.
• Ensure client satisfaction (CSAT) for all GRC delivery engagements in Europe & UK.
• Manage sales, pre-sales, and delivery teams of consultants for regional engagements.
• Oversee Cyber Risk assessments and implementations of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K.
• Lead advisory and consulting engagements around regulatory risks and compliance standards like DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC, etc.
• Program and project manage GRC delivery engagements.
• Participate in strategic risk management, regulatory compliance transitions, and transformation projects.
• Develop reusable knowledge bases and components for GRC advisory services.
• Enhance GRC services, team capabilities, and delivery processes.
• Manage third-party/sub-contractors involved in GRC delivery.
• Develop and manage local partner relationships and sales channels.

Skills:

• Proven expertise in delivering risk and compliance advisory services, preferably from Big4 organizations.
• Experience executing at least 3-4 advisory/consulting engagements.
• Strong technical skills in information security, business continuity, and technology risk assessments (ISO 27K, NIST, AI Governance, CIS, etc.).
• Good understanding of industry-specific compliance standards in BFSI, Healthcare, Telecom, Retail, Data Privacy, Energy & Utilities, and Information Security.
• Knowledge of Business Resiliency, Cyber Recovery, ZTA, and GRC project & program management.
• Excellent written and verbal communication skills.
• Willingness to travel 70%-80% for short and long-term engagements.

Platform / Tool Expertise:

Exposure to tools like MetricStream, Archer, ServiceNow GRC & SecOps, OneTrust is preferred but not mandatory.

Qualifications:

• B.E/B.Tech with MBA or equivalent.
• Certifications such as CISA, CGEIT, CISM, CISSP, CIPP, ISO 27001 Lead Auditor/Implementer, ITIL V3.0 are desirable.