Purpose The GRC Administrator plays a vital role in enhancing the organisation’s security posture by ensuring compliance with industry standards, managing risk, and supporting effective incident response. This role is responsible for assisting the Head of Cyber Security and Risk with implementing and maintaining security policies, conducting assessments, and collaborating with stakeholders to strengthen security controls. By proactively identifying vulnerabilities, optimising security tools, and fostering a culture of cyber awareness, the GRC Administrator will contribute and develop the organisation’s resilience against evolving threats while ensuring alignment with frameworks such as ISO 27001, NIST, and NIS2. Scope of accountability The GRC Administrator is accountable for: Supporting and enhancing the organisation’s security, risk, and compliance framework. Maintaining the Cyber Security Risk Register. Completing regular internal and external audits ensuring alignment to agreed frameworks. Managing vulnerability assessments and remediation plans to address security gaps. Delivering security awareness initiatives to enhance the organisation’s security culture. Supporting internal and external audits, ensuring regulatory and compliance obligations are met.This role requires a proactive approach to risk management, stakeholder engagement, and continuous improvement, ensuring the organisation remains resilient to evolving security threats Areas of responsibility Conduct regular Business Impact and Security assessments and audits to evaluate and improve the organisation’s security posture. Conduct regular supplier audits Develop, update, and maintain security policies, standards, and procedures in alignment with security frameworks such as ISO 27001, NIST or NIS2 frameworks. Assist teams in monitoring security incidents, analysing impact, and responding effectively to mitigate risks. Collaborate with IT teams to ensure security best practices are embedded across systems, infrastructure, and processes. Deliver clear and actionable reports to stakeholders, detailing security assessments, identified vulnerabilities, and incident response outcomes. Assist with delivering engaging security awareness initiatives, including phishing simulations and tailored staff training, fostering a culture of cybersecurity awareness. Assist with external and internal audits to ensure successful outcomes.Join us on the journey… Over the past 30 years, Beauparc has continued to grow and acquire businesses that all share a very similar vision and set of values. We’re now a group of almost 3000 people, all contributing to that growth and success. Whilst Beauparc is the parent company to numerous brands, we all share an ambitious vision for the future. Our primary goal is to ensure the safety and wellbeing of our people and connected partners is front and centre. As a team, we’re safer together. We deliver our customers with a partnership approach to managing their resources responsibly. We constantly push the boundaries of innovation. What’s good today can be better tomorrow. Beauparc is not just a company, it’s a resource recovery business. Over the past three decades we’ve grown and diversified significantly, we believe that great leadership is rooted in strong values. As leaders within this industry, we’re committed to shaping a better future for our friends, families and communities. Our philosophy remains unchanged, balancing customer satisfaction with environmentally sustainable practices. Exceptional customer service, and unwavering dedication to sustainability are the cornerstones of our business. Our journey is dependent upon talented, passionate, and dedicated people that constantly strive and challenge each other for better outcomes. Take the first step today and join us on the journey