Group Cyber GRC Manager

I’m currently working with a business that is looking to hire a Group Cyber GRC Manager. This is a fantastic opportunity to take ownership of a global cyber GRC function, shaping strategy and driving maturity across a complex, multinational environment.

• Define and deliver the strategic roadmap for global Cyber GRC.
• Lead and develop a high-performing team across multiple regions.
• Oversee risk management, assurance, and compliance aligned with frameworks such as NIST, ISO27001 and CIS.
• Drive third-party and M&A cyber risk management.
• Deliver clear, data-driven insights and dashboards for senior stakeholders.
• Champion a strong security culture and continuous improvement mindset.

• Proven success leading high-performing security or GRC teams.
• Expertise in cyber risk management, frameworks, and assurance.
• Strong stakeholder engagement and communication skills.
• Experience in large, federated, and complex global organisations would be particularly valuable.
• Certifications such as CISM, CISA, CRISC, CISSP or ISO27001 are highly desirable.
• Proficiency with Power BI and a pragmatic, hands-on approach.

This role offers hybrid working, with two to three days per week in a London office, combined with the opportunity to influence cyber security strategy on a truly global scale.

If this sounds of interest, Drop me a message, jol@barclaysimpson.com, I’d be happy to share more details.