Head of Governance, Risk & Compliance

Head of Governance, Risk & Compliance.

£70,000 - £80,000

Hybrid - 3 days onsite in West London, 2 days remote, with occasional client travel

This is a senior leadership role for someone who is passionate about governance, cyber security, risk management, and helping organisations achieve meaningful compliance outcomes.

The Head of Governance, Risk & Compliance (GRC) is a senior leadership role responsible for building, leading, and commercially developing Governance, Risk and Compliance practice.

The role combines client advisory services, Virtual CISO engagements, risk management, compliance delivery, operational resilience, internal governance, service development, thought leadership, and revenue growth responsibilities.

Acting as a trusted advisor to both clients and internal stakeholders, you will help organisations improve security, reduce risk, achieve certification, and build operational resilience, whilst taking ownership of the Compliance as a Service (CaaS) practice and driving its adoption, service evolution, and commercial performance.

Must have the experience and skills

  • Experience in Governance, Risk & Compliance, Information Security, Audit, or Risk Management.
  • Conducting audits, compliance reviews and governance assessments.
  • Strong knowledge of Cyber Essentials and Cyber Essentials Plus.
  • Strong understanding of UK GDPR and Data Protection legislation.
  • Developing risk registers and remediation programmes.
  • Supplier assurance, third-party risk management or supply chain security.
  • Presenting to senior stakeholders and board members.
  • Excellent written communication and report-writing skills.
  • Strong commercial awareness and client-facing consultancy experience.
  • Ability to manage multiple client engagements simultaneously.
  • Passion for helping organisations improve governance, security and resilience.

Desirable skills

  • ISO 27001 Lead Auditor or Lead Implementer.
  • CISSP, CISM, CRISC, CISMP or equivalent certification.
  • Experience delivering Virtual CISO services.
  • Knowledge of NIST CSF, CAF, DSPT and operational resilience frameworks.
  • Experience delivering business continuity or operational resilience programmes.
  • Experience within a consultancy or managed services (MSP) environment.
  • Familiarity with Microsoft 365 security and compliance tooling.
  • Experience developing AI governance policies and frameworks.
  • Understanding of MSP commercial models and recurring service delivery.

Please get in touch for further information.

Apply Now
Apply Now

Job Details

Company
Vertex I.T. Solutions Ltd
Location
London, United Kingdom
Employment Type
Permanent
Salary
GBP 70,000 - 80,000 Annual
Posted