GRC Consultant

GRC Consultant (SC / DV Cleared) - Outside IR35

Role Overview

We are seeking experienced Governance, Risk & Compliance (GRC) Consultants with active SC or DV Clearance to support a Defence programme. The successful candidate will provide security governance, risk management, compliance assurance, and accreditation support across secure and complex environments.

The role requires strong stakeholder engagement, an understanding of UK Government security standards, and experience operating within defence or national security environments.

Key Responsibilities

  • Deliver GRC support across secure government programmes.
  • Conduct risk assessments, security reviews, and compliance audits.
  • Support the development and maintenance of security documentation including:
  • Risk Management & Accreditation Documentation Sets (RMADS)
  • Security Operating Procedures (SyOPs)
  • Security policies and standards
  • Risk registers and treatment plans
  • Ensure compliance with; JSP 440, JSP 604, NIST, ISO 27001
  • CAF and Secure by Design principles
  • Work closely with Accreditor, Security Assurance Coordinators, and technical teams.
  • Identify, assess, and manage information security risks.
  • Support governance forums and security working groups.
  • Provide guidance on security controls and remediation activities.
  • Assist with audit preparation and evidence gathering activities.
  • Contribute to continuous improvement of security governance processes.

Required Skills & Experience

  • Active SC or DV Clearance (essential).
  • Proven experience in GRC, Information Assurance, or Cyber Security within MOD or UK Government environments.
  • Strong understanding of UK Government security frameworks and policies.
  • Experience producing and reviewing RMADS and associated accreditation documentation.
  • Knowledge of risk management methodologies and security assurance processes.
  • Familiarity with: ISO 27001, NIST Cyber Security Framework, MOD security policies Secure systems accreditation
  • Ability to communicate effectively with both technical and non-technical stakeholders.
  • Experience working within highly regulated or classified environments.

Desirable Skills

  • CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor or equivalent certifications.
  • Experience with Secure by Design and Zero Trust principles.
  • Understanding of cloud security within defence environments.
  • Previous experience supporting defence digital transformation programmes.

Contract Details

  • Role Type: Contract
  • Location: Onsite
  • Clearance Required: Active SC or DV Clearance
  • Sector: Defence / Government
  • Duration: 3 Months + Extensions
  • Day Rate: Competitive (Outside)

Please note that we have multiple roles available, if you are not available immediately please apply so we can discuss your situation.

Apply Now
Apply Now

Job Details

Company
identifi Global Resources
Location
Wiltshire, England, United Kingdom
Posted