Governance Risk And Compliance Specialist

Are you a Senior GRC Specialist with a strong background in Cyber Security and Cloud technology? If so read on! This is an opportunity to work at the front line of cyber security delivering value to our client base.

As a Senior GRC Specialist, you will be responsible for developing and implementing robust governance, risk management and Compliance strategies and frameworks. You will work closely with key stakeholders, including leadership teams, to make sure Sopra Steria adheres to regulatory requirements, industry standards, contractual obligations and best practices.

With your knowledge of GRC principles, excellent analytical skills, and the ability to effectively communicate complex concepts you’ll play a meaningful role in shaping and enhancing our GRC practices.
We can offer great career progression opportunities, ability to be based anywhere across the UK, benefits which you can flex to meet your needs and training and development opportunities.
What you will be doing:

• Support security activities and in some cases lead at project level for client engagements, developing a framework of security controls that align with overall objectives and contractual obligations.
• Enable the development of strong stakeholder relationships (customer and internal) through positive engagement and influence during meetings and communications.
• Identify and understand customer requirements and demonstrate strong understanding and experience of industry best practice in applying solutions for the benefit of the customer
• Contribute to the formulation of security strategy, creatively applying a wide range of technical and/or management principles
• Perform complex assessments and support programs of audit activity
• Implement compliance programs against relevant legal and regulatory requirements, contractual obligations and industry standard

What you’ll bring:

• Experienced security professional who is a security subject matter master and must have a security certification (e.g. CISSP, CISM, CCP,CRISC)
• Experience in consultancy engagements such as ISMS implementation, risk assessments, compliance audits and strategy definition
• Able to select appropriately from applicable standards, methods, tools and applications and demonstrate an analytical and systematic approach to problem solving
• Able to make decisions which influence the success of projects and team objectives
• Can present complex technical information to both technical and non-technical audiences
• Experience of implementing - information security risk management methodologies, management and assessments

If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!

Although this role is advertised as full-time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if you’re interested and need to work flexibly, we encourage you to apply and talk to us about what might be possible.
Employment Type: Permanent
Location: Home based – some travel required
Security Clearance Level: SC
Internal Recruiter: Rebecca
Salary: £45-65,000 per annum
Benefits: 25 days annual leave with the choice to buy additional days, life assurance, Health cash plan, pension, and generous flexible benefits fund
Loved reading about this job and want to know more about us?
Our Aerospace, Defence and Security business designs, develops and deploys digital solutions that bring clients enduring business value across the UK’s Public and Private sectors. We foster a culture in which employees feel valued and supported, delivering exceptional rates of customer satisfaction in the UK’s most complex safety- and security-critical markets.