GRC Specialist / Security Consultant

Multiple roles available from junior to senior level.

Location: UK (Remote / Hybrid) * Clearance: SC required

My client, a fast-growing cyber security and information assurance consultancy, is looking for an experienced GRC Specialist / Security Consultant to join their expanding team. This role is ideal for a client-facing security professional who can deliver complex GRC projects and build strong relationships across Defence, Public Sector and commercial clients.

Role Overview

You will:

• Deliver GRC engagements aligned to ISO 27001, NIST, CAF and Secure by Design.

• Support clients with assessments, ISMS development, and accreditation activities.

• Provide security assurance and apply secure-by-design principles.

• Conduct cyber security risk assessments and gap analyses.

• Collaborate with technical teams across infrastructure, cloud and SaaS.

• Support pre-sales, tenders and proposal development.

What My Client Is Looking For

• Experience in security assurance and accreditation.

• Working experience with JSP440, JSP604

• Strong knowledge of ISO 27001, NIST 800, CAF.

• Background in cyber risk assessment and operational security.

• Ability to engage senior stakeholders and deliver end-to-end GRC projects.

• Understanding of modern IT environments.

Relevant qualifications may include:
NIST Practitioner, CISM, CRISC, ISO 27001 Lead Implementer/Auditor, CISSP, CISMP.

What's on Offer

• Competitive salary + bonus

• 27 days' holiday + bank holidays

• Remote working

• Training budget

• Pension, life assurance, private healthcare, vision care

• Cycle-to-work scheme and well-being perks