GRC Consultant

Location: Leeds (Hybrid) / London also considered

Salary: up to £40K (DOE)

We have an exciting opportunity to join our GRC team as a GRC Consultant at a time of rapid growth and innovation at Cognisys.

Cognisys is a leading cybersecurity company specialising in Penetration Testing, GRC Consulting, and Managed Security services. We pride ourselves on our customer service, forward-thinking approach, and commitment to excellence. Our small but mighty team works with some of the best-known companies in the world, covering over 30 countries worldwide!

About The Role

At Cognisys, our Governance, Risk, and Compliance (GRC) team is central to our mission of ensuring our clients’ data is protected to the highest standards of security and compliance.

Due to our continued expansion, we are excited to announce this opportunity to further build our GRC team with an experienced, driven individual. Your contribution will be essential to the future growth of this team.

Key Responsibilities

We seek a passionate, detail-oriented GRC Consultant to join our team. In this pivotal position, you will ensure our clients establish robust governance frameworks, manage risks effectively and maintain compliance with regulatory standards.

You will also conduct thorough security audits to evaluate and improve the effectiveness of risk management, control and governance processes.

• Lead or support ISO 27001 projects from scoping through to certification.
• Develop and maintain core ISMS documentation, including policies, procedures, SoA (Statement of Applicability), and risk treatment plans.
• Lead governance activities, including reporting and continual process improvement.
• Conduct comprehensive internal audits, ensuring adherence to ISO27001 standards.
• Conduct thorough risk assessments and develop risk management strategies.
• Creating and maintaining security policies.
• Support and develop the knowledge of junior members of the team.
  
  

Requirements

• Minimum three years of experience in a similar lead GRC compliance, consulting or security role (including policy/documentation reviews & auditing).
• Proven track record in successfully maintaining information security standards in a workplace environment (ISO27001, SOC2, etc.).
• Compliance or information security-related certification.
• A strong desire to grow, develop and support junior members of the team.
• Excellent written and oral communication skills for liaising with external stakeholders, conveying complex compliance information.
• Ability to analyse data, identify key issues, and develop practical solutions.
• Plan, prioritise, and manage time efficiently.
• Due to the nature of this role, having an eye for detail is crucial.
  
  

If you think you can deliver but don't match the criteria above, please don't be put off. We are very open-minded and focus on ability and attitude above skills.

What We Offer

• A dynamic and supportive work environment where customer care and innovation drive everything we do.
• A dedicated budget for your professional development
• EMI Employee Share Schemes provide the opportunity to share in the company's success.
• Access to an Employee Wellness Hub supported by Kara Connect for health and well-being resources.
• Frequent team social events and celebrations.
• 22 days holiday rising to 25, plus a birthday holiday.
• Refer a friend bonus scheme, up to £2,000!
  
  

Why Join Us?

At Cognisys, you will be part of a collaborative and innovative team that values your input and shares support. You'll have the opportunity to work on challenging projects that make a real impact on our clients. We'd love to hear from you if you want to challenge, lead and innovate!

We're not just about the work; we're about the people. Join a team where innovation is celebrated and your contributions are valued. We foster a collaborative environment where fresh ideas thrive and professional growth is encouraged.

Applications

Please feel free to reach out to Dom, our Head of Talent Acquisition, if you would like any further information, to discuss accessibility requirements, or if you require this information provided in an alternative format – hiring@cognisys.co.uk

We welcome applications from candidates from diverse backgrounds and can make various reasonable adjustments to accommodate individual needs.

NO RECRUITMENT AGENCIES, PLEASE