GRC Project Manager

TwinStream was founded in 2019 by engineers with a mission to solve complex cross-domain problems for government organisations. Today, we re a trusted consultancy delivering technical excellence and exceptional service to our clients. Our teams operate both remotely and on-site, bringing together expertise, collaboration, and a passion for solving the most demanding challenges.

The GRC Project Manager Opportunity:

We re looking for an experienced Governance, Risk & Compliance (GRC) Project Manager to lead and deliver key compliance and accreditation programmes across the business. This role will focus on maintaining our ISO27001 and Defence Cyber Protection Partnership (DCPP) accreditations, while driving projects to achieve new certifications in ISO9001, ISO20000, and ISO14005.

You ll play a pivotal role in shaping and embedding governance frameworks, working closely with stakeholders to ensure policies, processes, and controls are aligned with compliance standards, and ensuring projects are delivered on time and to scope.

What You ll Do:

• Manage and maintain ISO27001 & Cyber Essentials+ accreditations
• Ensure compliance with DCPP requirements
• Lead accreditation projects for ISO9001, ISO20000, and ISO14005
• Work with auditors, certification bodies, and key stakeholders
• Develop and embed governance policies, processes, and controls
• Coordinate internal and external audits and follow up on corrective actions
• Monitor evolving standards and advise on necessary changes
• Facilitate risk assessments, update risk registers, and report to senior management
• Deliver project plans, timelines, and reports for compliance initiatives

What You ll Bring:

• Proven track record as a GRC, Compliance, or IT Project Manager
• Strong knowledge of ISO27001 (implementation & certification)
• Hands-on experience leading accreditation or certification programmes
• Excellent understanding of governance, risk, and compliance frameworks
• Strong stakeholder management and communication skills
• Detail-oriented, organised, and able to manage multiple workstreams

Desirable:

• Experience with ISO9001, ISO20000, ISO14005 implementation
• Knowledge of ITIL frameworks and IT service management
• Understanding of environmental management & sustainability practices
• Project management certification (Agile, PRINCE2, PMP)
• Experience in regulated industries (defence, financial services)

Additional Information

Due to the nature of our clients, all roles are subject to successful completion of security screening.

Interested?

If you re a GRC professional with a proven track record in compliance and accreditation delivery, we d love to hear from you. Apply now to play a key role in helping TwinStream strengthen and expand its compliance framework.