Login with LinkedIn



Banking jobs

< Back to the job list

Cyber Security GRC Consultant - Contract

£500 to £600

London / Contract / Ref: ND-cyberGRC

Cyber Security - GRC Consultant, Contract

A leading financial services organisation are improving their cyber security capability and have a fantastic opportunity for a Governance, Risk & Compliance Consultant to work within an established GRC function. Contract, inside IR35.

You will be responsible for working with the function Lead, security operations, compliance, risk and technology teams, facing off to internal stakeholders and supporting the Lead facing off to external regulators, to ensure effective governance, assurance, compliance and risk management frameworks, policies and procedures are in place. The role will ensure that the group-wide information security management system is operating effectively to manage risk within the defined appetite.

Role Responsibilities:

  • Develop and manage a security governance function including facilitation and participating in various Information Security Committees.
  • Develop and manage Information Security Compliance functions interfacing with 2nd and 3rd line (internal and external) Audit, Operational Risk and Compliance teams.
  • Maintain Information Security policies and controls, based on industry standards and best practices which incorporate all applicable international legislative and regulatory requirements.
  • Develop and maintain an Info Sec dashboard and metrics that provide an accurate representation of the Information Security risk profile and relevant cyber threats.
  • Strong documentation skills - reporting on remediation.
  • Manage and complete external and internal critical supplier risk assessment, as well as assurance reviews of inflight projects.
  • Delivery of security projects and improvement, awareness and training programme including anti-phishing campaigns.
  • Build a security culture within the company by providing guidance, awareness and advocacy of Information Security.

Skills Required:

  • 5+ years cyber and IT security experience in major financial services organisations
  • Strong understanding of governance, risk and compliance practices for cyber security
  • Proven experience working in regulated environments and facing off to external regulators
  • Strong stakeholder management skills including CISOs and external regulators
  • Must have relevant experience with industry best-practice approaches to the governance, operation and management of IT systems (e.g. NIST, ISO 27000, SANS Critical Controls, ITIL, COBIT, ISO 31000, etc)
  • Relevant cyber security qualifications (CISSP, CRICS, etc.)

Alexander Ash Consulting is acting as an agency Apply now

Register with us

Upload your CV, create a profile, manage your applications and create
live job alerts by email Find out more.