Enable job alerts via email!

NPPV Cleared Cyber Security GRC Consultant

ÜÇGE Shopfitting & Design

Leicester

Hybrid

GBP 60,000 - 80,000

Full time

30+ days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An innovative firm is seeking a skilled Cyber Security GRC Consultant to join their dynamic team. This role offers a unique opportunity to blend strategic advisory services with hands-on cyber security assessments. You will engage with clients, helping them navigate complex security challenges while developing and refining governance processes. The position is flexible, allowing for both on-site and remote work, and offers the chance to work on impactful projects that shape the future of cyber security. If you're passionate about making a difference and have a strong background in cyber security, this role is perfect for you.

Qualifications

3+ years in consultancy or security risk management roles.
Strong understanding of cyber security frameworks and controls.

Responsibilities

Conduct cyber security assessments and provide strategic advisory services.
Facilitate workshops and enhance clients' preparedness for cyber threats.

Skills

Cyber Security

Governance, Risk, and Compliance (GRC)

Stakeholder Engagement

Cyber Security Frameworks (NIST, ISO 27001)

Risk Assessment

Communication Skills

Education

Cybersecurity Qualification (CISSP, CISM, CRISC)

We are seeking an NPPV Cleared Cyber Security GRC (Governance, Risk, and Compliance) Consultant to join our team on an initial 3 months contract assignment based in Leicester/Remote. (Duration is very likely to extend) Inside IR35.

This role involves a blend of strategic advisory services, cyber security assessments, and active participation in governance meetings with clients. This is a new role at Telefonica Tech, so the successful candidate will also be involved in helping to develop and refine the Cyber Governance & Advisory service.

Key Responsibilities:

Conduct bespoke advisory engagements with clients to help them gain answers to cyber security challenges and make key strategic decisions.
Perform cyber security assessments against established frameworks to identify weaknesses and recommend mitigations including roadmaps to maturity.
Provide expert opinion and insights during governance meetings with clients' senior stakeholders.
Facilitate interactive workshops, including tabletop incident response scenarios, to enhance clients' preparedness for cyber threats and help them agree security roles and responsibilities.
Work closely with clients to customise security policies to their business requirements.
Conduct cyber security risk assessments to support clients' senior decision-making.
Operate cyber governance processes for clients, such as maintaining KPIs, running governance forums, and performing policy reviews.
Contribute to the design and enhancement of our GRC service processes and technologies.
Identify opportunities for sales of our broader portfolio of services, in particular the NextDefense suite.
Stay abreast of the latest cyber security trends and regulations to advise clients effectively.

Qualifications:

A recognized cybersecurity qualification (eg, CISSP, CISM, CRISC) is desirable.
Minimum of 3 years of experience in a consultancy or security risk management role involving senior stakeholder engagement.
Proven track record of delivering GRC or similar services in complex business environments.
Strong understanding of cyber security frameworks (eg, NIST, ISO 27001, CIS-18) and typical cyber security controls.
Excellent communication and facilitation skills, including written communication skills.
Ability to translate technical risks into business language for diverse audiences.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.