Grc consultant

GRC consultant

Location: London/Hybrid

Salary: Up to £85,000 DOE

We're looking for a GRC consultant to come aboard and use your background in Governance, Risk & Compliance, you will help,

Governance: Direct, oversee, design, implement, or operate within the set of multi-disciplinary structures, policies, procedures, processes, and controls implemented to manage cyber and information security at an enterprise level. Support an organisation's immediate and future regulatory, legal, risk, environmental, and operational requirements and ensure compliance with those requirements.

Policy and Procedure Management: Direct, develop, or maintain organisational cyber and information security policies, standards, and processes, using recognised standards (eg, the ISO/IEC 27000 family, NIST CSF) where appropriate. Apply recognised cyber and information security standards and controls within an organisation, programme, project, or operation. Apply relevant security classification.

Risk Management: Develop cyber and information security risk management strategies and controls, considering business needs, balancing technical, physical, procedural, and personnel controls. Identify and assess information assets, threat-specific information, business impacts, business benefits, and costs to identify and assess potential vulnerabilities and risks.