4 of 4 GRC Jobs in Bristol

Rate: £600 per day Location: 60% on site per month in either Bristol or London We're looking for an experienced Cyber Security Risk & GRC Consultant to help transform how a large, complex organisation measures, manages, and communicates cyber risk. This is a high-impact, business-critical role focused … building a clear, practical, and transparent approach to security risk - with a strong emphasis on compliance frameworks, measurable controls, and decision-ready reporting for governance boards. Define and implement meaningful cyber security risk metrics aligned to compliance frameworks (e.g. national and international standards) Establish a robust, repeatable method to measure ...

stakeholder workshops, interviews and evidence reviews to assess cyber resilience maturity Support clients in understanding CAF objectives, principles and outcomes Review policies, technical controls, governance processes and operational procedures against CAF requirements Assess cyber security capability across areas such as risk management, protective security, monitoring, incident management, supply chain and … fast paced environments Ensure delivery aligns with government security standards, policies and assurance expectations Essential Skills and Experience Demonstrable experience delivering cyber security assurance, governance, risk or compliance engagements Strong understanding of the NCSC Cyber Assessment Framework (CAF) or similar assurance frameworks Experience facilitating stakeholder interviews and evidence-based assessments ...

role suits someone who is confident being client facing and working in a collaborative environment. What You’ll Be Doing Deliver information assurance and GRC consultancy across defence and central government programmes Lead and conduct risk assessments, control reviews, gap analysis, and threat assessments Produce and maintain accreditation documentation including … colleagues within the team What you’ll need Two or more of the following... Solid, hands-on experience in information assurance, security assurance or GRC Proven delivery in defence or central government environments Strong working knowledge of ISO/IEC 27001, NIST SP 800-53 and the Cyber Assessment Framework ...

company is currently looking for an Information Security Specialist to come in and support the existing Information Security Manager to improve and maintain their governance, risk and compliance (GRC) capability and help us continually improve our ISO 27001/CE+ Information Security Management System (ISMS). The role is full ...