Enable job alerts via email!
Cyber Security GRC Manager - London
Crimson
City Of London
Remote
GBP 51,000 - 60,000
Full time
Job summary
A leading technology firm in London is seeking a Cyber Security GRC Manager for a fully remote position. The role involves shaping the governance, risk, and compliance strategy while collaborating with various teams. The ideal candidate has comprehensive knowledge of compliance frameworks like ISO 27001 and GDPR, and holds professional certifications such as CISM or CISSP. The position offers a salary of up to £60,000 per annum.
Benefits
Qualifications
- Experience in developing and maintaining security policies aligned with relevant standards.
- Leading risk assessments and managing a risk register.
- Collaboration with engineering and operations teams to integrate security into processes.
Responsibilities
- Shape and implement a GRC strategy.
- Establish structure and collaborate with technical/business teams.
- Support security and compliance initiatives.
Skills
Education
Cyber Security GRC Manager - London
Remote working
Salary up to 60,000 per annum
This is a fully remote position, with occasional meetings in London and possible travel to India twice yearly.
Cyber Security Manager (GRC) position available for a client based in London. The role involves shaping and implementing a governance, risk, and compliance (GRC) strategy. Responsibilities include establishing structure, collaborating with technical and business teams, and supporting security and compliance initiatives within the organization.
The position requires development and maintenance of security policies aligned with ISO 27001, GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register.
Key skills and responsibilities,
- Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks.
- Senior Security Analyst / Senior Security Engineer background
- Proven experience collaborating with software development teams and implementing technical controls.
- Skilled in articulating technical risks in terms of business impact.
- Professional certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands‑on experience with GRC tools (e.g., Vanta, Drata) are highly desirable.
- Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR, HIPAA, and OWASP standards.
- Lead risk assessments and oversee the management of the organization's risk register.
- Support efforts to prepare for audits and maintain certification readiness.
- Collaborate with engineering and operations teams to integrate security into development and delivery processes.
- Respond to client security questionnaires and support due diligence activities.
Interested? Please submit your updated CV to Emma Siwicki at Crimson for immediate consideration.
Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn 250 worth of vouchers!
Crimson is acting as an employment agency regarding this vacancy
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
