Cyber Security GRC Lead

CYBER SECURITY GRC LEAD
WELLINGBOROUGH (HYBRID)

Are you ready to be at the forefront of our Cyber Security efforts? Reporting to our Senior Cyber Security Manager, you will act as a trusted advisor to the business, shaping and leading the Cyber Security function. You will provide security expertise, manage Cyber Security risks, perform security assessments of third-party suppliers, and ensure compliance with security requirements.

Based in our Wellingborough head office, you will have the flexibility to work from home up to two days per week.

Your efforts will protect the organisation, its clients, colleagues, and partners from cyber threats. You'll have the freedom to set your own priorities and manage your workload, with a supportive line manager available when needed. We actively support your training and development, and success in this role can open doors to various professional pathways.

Salary: £67,000 - £75,000 per annum (DOE)

Benefits include: (but not limited too)

• 25 days of annual leave (plus bank holidays).
• Private medical insurance.
• Pension scheme.
• Onsite subsidised restaurant.
• Free onsite parking (with EV charging points).
• Discounts and benefits through our Reward Gateway platform.

• Maintain and develop the security control assessment process to ensure security risks are effectively identified, assessed, and managed.
• Driving accountability for security risk mitigation and control compliance across the business.
• Monitoring emerging threats to proactively identify and adjust security risks and appropriate controls.
• Contributing to the maintenance and improvement of the Information Security Management System (ISMS).
• Conduct security risk assessments and oversee audits, including Third-Party Due Diligence, to maintain effective security practices across the organisation.
• Providing consultancy services for security projects, ensuring security requirements are integrated into project plans and deliverables.

• Extensive experience in cyber security, with a proven track record with GRC-focused roles.
• Strong understanding of risk management and promoting risk culture.
• Expertise in laws and standards like Data Protection Laws, SOX, ISO 27001, SOC 2, and NIST.
• Ability to articulate security concepts to stakeholders and fostering a security aware culture.
• Certifications in at least one of: CRISC, CISM, CISSP, Lead Auditor.

Weatherbys is one of the best regarded independent banking groups in the UK, winning Private Bank of the Year at the Spear's UK Wealth Management awards in 2021, 2023 and 2024. As you would expect from a business with ambitious growth plans, we are continually evolving and looking to the future, but always put our clients at the heart of everything we do. Don't just take our word for it, find out more here: www.weatherbys.bank

JOIN THE FUTURE OF FAMILY BANKING.