Information Security Consultant
Indexed description
GRC Specialist | Housing Sector |
Salary: Up to £49,000
Hybrid 2-3 days a week in Worcester
I'm currently partnering with a well-established housing organisation that is investing heavily in its cyber security and governance capabilities and is looking to appoint a GRC Specialist to join the team.
This opportunity has arisen as part of a planned succession, offering the chance to play a key role in shaping and maturing security governance practices across the organisation.
You'll be joining at an exciting stage, with the opportunity to influence policy development, strengthen controls, enhance compliance activities and support the evolution of the organisation's wider security posture.
What you'll be doing:
- Developing and maintaining security policies, standards and procedures
- Supporting governance, risk and compliance activities across the business
- Identifying and managing information security risks and vulnerabilities
- Working with stakeholders to improve security awareness and embed best practice
- Contributing to compliance initiatives, assurance activities and security programmes
- Reviewing existing processes and controls to ensure they remain effective and fit for purpose
- Supporting Cyber Essentials initiatives, awareness campaigns and continuous improvement efforts
- Helping drive governance and controls enhancements within a growing security function
What we're looking for:
We're keen to speak with security professionals who bring a broad GRC background and have experience implementing or operating against recognised frameworks such as:
- ISO 27001 / ISO 27002
- ISO 27005
- NIST CSF
- NCSC CAF
- CIS Controls
- Cyber Essentials / Cyber Essentials Plus
- PCI DSS
Experience with risk management, controls mapping, assessments, assurance activities and supporting security programmes would be highly beneficial.
Candidates who have contributed towards an ISMS, worked within ISO 27001-aligned environments or been involved in framework implementation projects are encouraged to apply.
Desirable certifications include:
- CompTIA Security+
- ISO 27001 Lead Implementer
- ISO 27001 Lead Auditor
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search