GRC consultant

Role: GRC Consultant

Location: London or Bristol (Hybrid)

Salary: up to £80,000

I am currently working on a brand new GRC Consultant role for a Financial Services Giant. this is a great hybrid Risk and Compliance, offering support and amazing progression routes. This is an amazing opportunity for anyone looking to work in a high pace and rewarding environment for a great company with a large scope of progression.

Ideal Candidate:

Ideal Candidate:

• Have a strong background in information security, risk management, and compliance, as well as a minimum of 3 years experience in designing and delivering client-facing ISO 27001 related Information Security consultancy, DPIAs and other Data Protection related services.

Develop a Virtual Information Security Advisor service

• Developing and ISO 27001 Implementation programme
• Managing the existing Internal Audits Managed Service offering
• You will be responsible for carrying out Data Protection Impact Assessments for existing clients, and managing a dedicated Data Protection advisor (yet to be hired).
• Deliver DPIA’s for clients

You will help clients design and implement a Data Protection offering from the ground up, including:

• Establishing ROPA
• Establishing DPIA questionnaires and processes
• Performing DPIAs
• Designing and implementing Performing Supplier due diligence processes.

• Oversee our organisation’s information security management system (ISMS) in accordance with ISO 27001 standards
• Conduct risk assessments, manage the company Risk Register and Risk Treatment Plan, and oversee the programme of in-house and customer facing ISO 27001 Internal Audits.
• Superb communication skills translating complex compliance requirements to clients and leadership in an easily understandable manner.

If the role sounds of interest, do not hesitate to submit your CV