Cyber Security Grc Consultant/auditor

7 days ago

Leeds, United Kingdom Epaton Ltd Full time

**Cyber Security GRC Consultant/Auditor**

**Permanent**

As a business Epaton / NGS provided Cyber Essentials are building out there GRC practice. We’re seeking someone join and grow with the business.

Working in a fast paced and responsive environment, you will possess good time management and prioritisation skills. Good communication skills are a must for this role as you will be engaging with colleagues and clients at all levels. With your strong attention to detail, pro-active nature, and the ability to build successful relationships, you will quickly establish yourself as a key member of our team.

**Experience**:

- Experience in governance, risk, and compliance roles with a focus on ISO 27001 implementations.
- Strong knowledge of ISO 27001 standards and associated controls, and any other standards such as Cyber Essentials, NIST, NIS 2, PCI-DSS, etc.
- Proven experience working with clients to achieve ISO 27001 certification.
- Excellent project management skills with a track record of delivering projects on time and within budget.
- Strong analytical and problem-solving abilities.
- Exceptional communication and presentation skills.
- Well-developed people skills, capable of building strong working relationships.
- Attention to detail combined with an ability to see the bigger picture.
- A positive outlook and constructive way of working with others.
- Professional personality with a “getting things done” attitude.

Example Responsibilities (Internal / clients)
- Develop and update policies, and procedures in alignment with industry best practices and compliance standards.
- Carrying out and maintaining cyber security awareness programs.
- Conduct risk assessments to identify potential vulnerabilities and threats. Recommend risk mitigation strategies to safeguard against data breaches and cyber-attacks.
- Assess gaps against chosen cyber and information security frameworks, including maturity assessments and report them in a consistent, agreed format.
- Support strategy and investment of the CISO portfolio on a risk reduction basis, using assessments against gaps.
- Ensure the information security policies and practices comply with relevant laws, regulations, and industry standards (e.g., GDPR, ISO 27001, SOC2, Cyber Essentials).
- Oversee internal and external security audits and assessments to evaluate the effectiveness of security controls and recommend improvements.
- Assess and monitor the security practices of third-party vendors and partners to minimize security risks associated with external services.
- Working with the wider GRC / SOC / PS teams on internal and client projects.
- Enhance the reporting ability of colleagues for governance and risk forums, supporting them in providing a picture of what ‘truly matters’ in terms of maturity and risk reduction.

The role reports into the Chief Information Security Officer (CISO)

**Salary**: £45,000.00-£55,000.00 per year

**Benefits**:

- Company pension
- Sick pay

Schedule:

- Monday to Friday

Ability to commute/relocate:

- Leeds, LS1 5QX: reliably commute or plan to relocate before starting work (required)

Work Location: In person

  • Grc Auditor

    2 weeks ago

    Leeds, United Kingdom Advanced Resource Managers Limited Full time

    Our client who are a Cyber Security company are seeking a GRC Consultant/Auditor to join their team based in Leeds. You will work closely with the CISO helping to guide companies through Cyber Essentials and Governance audits, this is a great opportunity for someone who is looking to advance their career within Information Security. Knowledge of Data...

  • Security Consultant

    3 weeks ago

    Leeds, United Kingdom Claranet Full time

    Cyber PracticeClaranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of...

  • Security Consultant

    2 weeks ago

    Leeds, United Kingdom Claranet Full time

    Cyber Practice Claranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of...

  • Security Consultant

    4 weeks ago

    leeds, United Kingdom Claranet Full time

    Cyber Practice Claranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of...

  • Security Consultant

    3 weeks ago

    Leeds, United Kingdom Claranet Full time

    Cyber Practice Claranet’s Cyber Practice is dynamic and fast-moving, delivering a comprehensive range of professional services and managed services both onsite and remotely. The Cyber Practice consists of highly skilled professionals delivering a myriad of offensive security testing and governance, risk, and compliance (GRC) services in support of...

  • Security Consultant

    2 weeks ago

    Leeds, Leeds, United Kingdom Claranet Full time £40,000 - £80,000 per year

    Vacancy NameSecurity ConsultantReq NumberVN320Employment TypeFull-TimeLocationLeeds/HybridPosition SummaryAbout ClaranetFounded at the beginning of the bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one...

  • Security Consultant

    3 weeks ago

    Leeds, United Kingdom Claranet Limited Full time

    About ClaranetAt Claranet, we’re experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We’re committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business.We are agile, focused and experienced in business modernisation. Our...

  • Cyber Security Lead

    5 days ago

    Leeds, United Kingdom NHS England Full time

    NHS England's Cyber Operations team is at the forefront of safeguarding critical national healthcare services and ensuring patient safety through robust cyber resilience. The Cyber Security Lead role is a key part of the Cyber Governance, Risk and Compliance, operating within the Chief Information Security Office (CISO) Function. This team is responsible for...

  • GRC Analyst

    3 days ago

    Leeds, United Kingdom Robert Half Full time

    Robert Half (an S&P 500 global staffing firm) is supporting a major consulting partner in sourcing two experienced Interim GRC Analysts to provide governance and risk support while a wider uplift programme is underway. The roles focus on risk assessments, ISO aligned controls, governance embedding, third party risk activity, and supporting ongoing cyber...

  • GRC Analyst

    3 weeks ago

    Leeds, United Kingdom Robert Half Full time

    Robert Half (an S&P 500 global staffing firm) is supporting a major consulting partner in sourcing two experienced Interim GRC Analysts to provide governance and risk support while a wider uplift programme is underway. The roles focus on risk assessments, ISO aligned controls, governance embedding, third party risk activity, and supporting ongoing cyber...