Enable job alerts via email!
Cyber Security GRC Manager - London
Crimson
Greater London
Remote
GBP 50,000 - 60,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading consultancy is seeking a Cyber Security GRC Manager to shape and implement governance, risk, and compliance strategies. This fully remote role requires comprehensive knowledge of various security frameworks and a proven background in security analysis or engineering. The ideal candidate has certifications such as CISM or CISSP, and hands-on experience with GRC tools. The position offers a competitive salary and opportunities for professional growth.
Benefits
Qualifications
- Proven experience leading risk assessments and managing risk registers.
- Strong ability to develop and maintain security policies aligned with multiple standards.
- Experience in supporting audit efforts and certification readiness.
Responsibilities
- Shape and implement GRC strategy for the organization.
- Establish structure and collaborate with technical and business teams.
- Support security and compliance initiatives within the organization.
Skills
Education
Tools
Cyber Security GRC Manager – London
Remote working
Salary up to GBP60,000 per annum
This is a fully remote position, with occasional meetings in London and possible travel to India twice yearly.
Cyber Security Manager (GRC) position available for a client based in London. The role involves shaping and implementing a governance, risk, and compliance (GRC) strategy. Responsibilities include establishing structure, collaborating with technical and business teams, and supporting security and compliance initiatives within the organization.
The position requires development and maintenance of security policies aligned with ISO 27001, GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register.
Key skills and responsibilities,
- Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks.
- Senior Security Analyst / Senior Security Engineer background
- Proven experience collaborating with software development teams and implementing technical controls.
- Skilled in articulating technical risks in terms of business impact.
- Professional certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands–on experience with GRC tools (e.g., Vanta, Drata) are highly desirable.
- Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR, HIPAA, and OWASP standards.
- Lead risk assessments and oversee the management of the organization's risk register.
- Support efforts to prepare for audits and maintain certification readiness.
- Collaborate with engineering and operations teams to integrate security into development and delivery processes.
- Respond to client security questionnaires and support due diligence activities.
Interested? Please submit your updated CV to Emma Siwicki at Crimson for immediate consideration.
Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn GBP250 worth of vouchers!
Crimson is acting as an employment agency regarding this vacancy
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
