Enable job alerts via email!
GRC Consultant - Hybrid
MastarRec
United Kingdom
On-site
GBP 65,000 - 90,000
Full time
Job summary
A leading consulting firm in the United Kingdom is seeking an experienced GRC Consultant to advise clients on managing cyber risks and compliance with industry standards. You will perform risk assessments and develop security policies. The ideal candidate should have a deep knowledge of key security frameworks and regulatory mandates. This role offers a competitive salary and opportunities to work across various sectors.
Qualifications
- Deep knowledge of ISO 27001, NIST CSF, GDPR, and risk management frameworks.
- Experience performing security risk assessments, internal audits, and compliance reviews.
- Strong understanding of cybersecurity controls and business risk alignment.
Responsibilities
- Advise clients on cybersecurity governance and compliance frameworks.
- Perform risk assessments and control gap analyses.
- Develop and implement information security policies and procedures.
- Lead client engagements related to GDPR and regulatory requirements.
- Support third-party vendor risk assessments.
Skills
Tools
Salary: GBP65,000 – 90,000 per year
We are seeking an experienced GRC Consultant to support and advise clients in managing cyber risks, ensuring compliance with industry standards, and implementing robust information security governance frameworks. You will work across multiple sectors, helping clients improve their risk posture through audit readiness, control assessments, policy development, and regulatory compliance. The ideal candidate will have deep knowledge of security frameworks (ISO 27001, NIST, CIS), regulatory mandates (GDPR, DORA, PCI DSS), and a strategic approach to enterprise–level governance and risk programs.
last updated 39 week of 2025
- Advise clients on cybersecurity governance, risk management, and compliance frameworks
- Perform risk assessments, control gap analyses, and audits (ISO 27001, SOC 2, etc.)
- Develop and implement information security policies, procedures, and risk registers
- Lead client engagements related to GDPR, DORA, and other regulatory requirements
- Support third–party vendor risk assessments and due diligence activities
- Prepare reports and recommendations for CISO, board, and audit committee presentations
- In–depth knowledge of ISO 27001, NIST CSF, GDPR, and risk management frameworks
- Experience performing security risk assessments, internal audits, and compliance reviews
- Strong understanding of cybersecurity controls, regulatory mandates, and business risk alignment
- Excellent client communication, stakeholder management, and reporting skills
- Familiarity with GRC platforms (e.g., RSA Archer, ServiceNow GRC, LogicGate)
- ServiceNow
- AWS
- GCP
- Architect
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
