GRC Consultant

A Global Regulated Firm require a Contract GRC Consultant to join their Information Security team. In this role, you will be ensuring compliance, and managing risks across multiple business areas and geographical locations. This is a unique opportunity to work within an innovative, global team while protecting digital assets and enhancing their cybersecurity posture.

Day Rate: £450-£500pd

IR35 Status: Inside

Duration: 6 Months initially

Travel: 3 days a week in Surrey Office

This GRC Consultant will have the following previous experience:

• Deep understanding of regulatory frameworks (GDPR, ISO 27001, NIST, CCPA, PCI DSS regulations, etc.).
• Collaborate with business leads, product teams, and operations to drive cyber security awareness, best practices, and regulatory adherence.
• Facilitate security support for digital projects, ensuring robust technical controls and policy implementation.
• Conduct security assessments, manage risk, and advise on compliance to mitigate cyber threats and reduce business impact.
• Champion best practices in both internal processes and external frameworks (e.g., GDPR, ISO 27001, PCI DSS, etc.) to enhance the organisation’s digital security.
• Proven ability to translate complex security regulations into practical, actionable measures.
• Exceptional communication and stakeholder management skills, with a history of building strong partnerships to enhance business security.