2 of 2 DemandTrendContract GRC Jobs in Devon

. Cyber Improvement Programme. Chief Information Security Office Function (CISO) The CISO Function consists of four teams, these are CISO Portfolio Office, Secure (by Design), Security Assurance, and Security Governance, Risk & Compliance (GRC). The post of Cyber Security Lead - Security Assurance has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition … by working with control owners and delivery teams to ensure findings are addressed and closed effectively. Providing assurance ratings based on the maturity and implementation of controls, feeding into governance, risk, and compliance (GRC) reporting. Supporting decision-making by presenting findings in a structured, prioritised manner aligned to business risk and impact. Ensuring compliance with regulatory and organisational standards, including More ❯

at the forefront of safeguarding critical national healthcare services and ensuring patient safety through robust cyber resilience. The Cyber Security Lead role is a key part of the Cyber Governance, Risk and Compliance , operating within the Chief Information Security Office (CISO) Function . This team is responsible for providing leadership with accurate information regarding cyber and information security risks in … be aware that RRP is non-contractual and subject to review Main duties of the job As a Cyber Security Lead , your responsibilities include: Deputise for the Head of GRC, leading the GRC team and managing outputs as required. Embed and mature an organisational security operating model to support risk-driven, evidence-based decision making. Oversee the security policy lifecycle … with stakeholders to maintain risk within tolerance. Design, implement, and monitor key controls to reduce risk, provide assurance, and meet compliance obligations. Provide effective security metrics and reporting to governance boards, senior leaders, and audit functions. Conduct research and analysis using diverse data sources to inform security best practices and decisions. Promote 'security by design' across directorates, strategies, and business More ❯