GRC Consultant

GRC Consultant

Job Title: GRC Consultant
Contract Type: Permanent
Location: London, England
Salary: Negotiable
Reference: HQ00071547_1524470880
Contact Name: Richard Williamson
Contact Email:
Job Published: April 23, 2018 09:08

Job Description

GRC Consultant

London OR Manchester with Home based working


A rapidly growing Cyber Security Consultancy are searching for a GRC Consultant. This role is greenfield, offering high levels of autonomy.

The role of GRC Consultant will see you engaging with clients on discrete and on-going cyber security projects defining and delivering solutions to meet the client's needs. You will establish and maintain processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness while also participating in project planning activities such as service enhancements. You will also coach and mentor co-workers on governance, risk and compliance issues and verify that they follow process to ensure all projects are delivered with the highest quality.

Key GRC Consultant capabilities
* Policy Development: Drafting new policy or amending existing security policy and procedure sets for clients that suit meet legal, regulatory and compliance requirements but also are tailored to the culture of the client's unique business environment.

* Gap Analysis: Undertaking assessment activity to identify gaps against well-known standards as well as internally developed client security standards. Taking a meticulous evidence based approach to discover the gaps and provide recommendations in closing gaps.

* Risk Assessments: Creating end to end risk management programmes or undertaking risk assessments utilising well-known RA methodologies to identify risk. Defining or incorporating risk appetite in to actionable risk treatment plans for clients.

* Auditing: Carrying out internal security audits or security audits of client's supply chain to provide assurances to the client that compliance is maintained and exceeded.

* ISMS Implementation: Helping clients design and implement end to end or partial components of an Information Security Management System aligned to legal, regulatory and other standards of importance to the client.

* Cyber Strategy: Develop cyber strategy for clients as they seek to become more proactive in improving their security posture in an achievable and tailored manner. Taking in to account relevant threats, business operating environment, and culture to define security principles to help guide definition of plans to address cyber risk.

Please apply to this role to be connected with Richard Williamson at Lawrence Harvey to hear more about this role - Lawrence Harvey is an award winning specialist Technology recruitment Agency, we offer services to both candidates and customers please get in touch to hear more about the value we can add to your search or your organisation.

Lawrence Harvey is acting as an employment agency in regards to this position.
Visit our website and follow us on Twitter for all live vacancies @lawharveyjobs