IT GRC Lead Salary: 70,000 – 80,000 Work style: Hybrid 2 days a week in the Office Location: Birmingham Must-Have Skills and Experience: Extensive experience in managing audits and driving continuous improvement of controls. Expert understanding of control frameworks (e.g., ITIL, COBIT, NIST). Strong communication skills. Excellent Governance, Risk, and Compliance (GRC) skills. Effective utilization and management of external suppliers. Ability to react quickly, decisively, and professionally. Industry-related legal, compliance, information security, or business continuity management certification (preferred). Key Responsibilities: Partner with IT & Business Leadership to provide assurance of control effectiveness. Manage and facilitate client audits. Ensure continuous improvement of standards. Evaluate and determine relevant IT compliance requirements and controls. Partner with key clients/auditors to support compliance requirements. Automate and systemize IT & business controls. Implement GRC tools and train management on control ownership. Report regularly to top management. Maintain an inventory of all regulatory, commercial, and organizational technology compliance requirements. Facilitate the creation and modification of technology compliance policies. Implement and maintain a compliance issue management tracking and resolution process. Report IT compliance risk and control effectiveness to key stakeholders. Lead the firm's response to internal and external audits and reviews. Establish, monitor, and report on the state of IT compliance. Create an IT compliance training and awareness program. Lead self-assessments against global standards. Benchmark against ISO27001 and NIST. Provide input and direction to the Cyber Security strategy. Manage the Governance, Risk, and Compliance tool. Update control standards and embed control ownership. Drive cultural change to ensure IT security is a key consideration for new systems and processes. Lead by example by living the values of the firm