GRC Consultant

GRC Consultant

Posted Today by identifi Global Resources

Apply
Negotiable
Outside
Onsite
Wiltshire, England, United Kingdom
Apply
Certified Information Security Manager (CISM) Cloud Computing Cloud Technology Cyber Security Design Elements And Principles Digital Transformation External Auditing Governance Risk Management And Compliance Information Assurance Management Risk Management Stakeholder Engagement Stakeholder Management

Summary: The GRC Consultant role requires experienced professionals with active SC or DV Clearance to provide governance, risk management, compliance assurance, and accreditation support within secure defence environments. Candidates must demonstrate strong stakeholder engagement and a solid understanding of UK Government security standards. The position involves conducting risk assessments, security reviews, and ensuring compliance with various security frameworks. This is a contract position with opportunities for extensions.

Key Responsibilities:

  • Deliver GRC support across secure government programmes.
  • Conduct risk assessments, security reviews, and compliance audits.
  • Support the development and maintenance of security documentation including: Risk Management & Accreditation Documentation Sets (RMADS), Security Operating Procedures (SyOPs), security policies and standards, risk registers and treatment plans.
  • Ensure compliance with JSP 440, JSP 604, NIST, ISO 27001 CAF and Secure by Design principles.
  • Work closely with Accreditor, Security Assurance Coordinators, and technical teams.
  • Identify, assess, and manage information security risks.
  • Support governance forums and security working groups.
  • Provide guidance on security controls and remediation activities.
  • Assist with audit preparation and evidence gathering activities.
  • Contribute to continuous improvement of security governance processes.

Key Skills:

  • Active SC or DV Clearance (essential).
  • Proven experience in GRC, Information Assurance, or Cyber Security within MOD or UK Government environments.
  • Strong understanding of UK Government security frameworks and policies.
  • Experience producing and reviewing RMADS and associated accreditation documentation.
  • Knowledge of risk management methodologies and security assurance processes.
  • Familiarity with ISO 27001, NIST Cyber Security Framework, MOD security policies, and secure systems accreditation.
  • Ability to communicate effectively with both technical and non-technical stakeholders.
  • Experience working within highly regulated or classified environments.

Salary (Rate): undetermined

City: Wiltshire

Country: United Kingdom

Working Arrangements: on-site

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: Other

Detailed Description From Employer:

GRC Consultant (SC / DV Cleared) - Outside IR35

Role Overview

We are seeking experienced Governance, Risk & Compliance (GRC) Consultants with active SC or DV Clearance to support a Defence programme. The successful candidate will provide security governance, risk management, compliance assurance, and accreditation support across secure and complex environments. The role requires strong stakeholder engagement, an understanding of UK Government security standards, and experience operating within defence or national security environments.

Key Responsibilities

  • Deliver GRC support across secure government programmes.
  • Conduct risk assessments, security reviews, and compliance audits.
  • Support the development and maintenance of security documentation including: Risk Management & Accreditation Documentation Sets (RMADS) Security Operating Procedures (SyOPs) Security policies and standards Risk registers and treatment plans
  • Ensure compliance with; JSP 440, JSP 604, NIST, ISO 27001 CAF and Secure by Design principles
  • Work closely with Accreditor, Security Assurance Coordinators, and technical teams.
  • Identify, assess, and manage information security risks.
  • Support governance forums and security working groups.
  • Provide guidance on security controls and remediation activities.
  • Assist with audit preparation and evidence gathering activities.
  • Contribute to continuous improvement of security governance processes.

Required Skills & Experience

  • Active SC or DV Clearance (essential).
  • Proven experience in GRC, Information Assurance, or Cyber Security within MOD or UK Government environments.
  • Strong understanding of UK Government security frameworks and policies.
  • Experience producing and reviewing RMADS and associated accreditation documentation.
  • Knowledge of risk management methodologies and security assurance processes.
  • Familiarity with: ISO 27001, NIST Cyber Security Framework, MOD security policies Secure systems accreditation
  • Ability to communicate effectively with both technical and non-technical stakeholders.
  • Experience working within highly regulated or classified environments.

Desirable Skills

  • CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor or equivalent certifications.
  • Experience with Secure by Design and Zero Trust principles.
  • Understanding of cloud security within defence environments.
  • Previous experience supporting defence digital transformation programmes.

Contract Details

Role Type: Contract

Location: Onsite

Clearance Required: Active SC or DV Clearance

Sector: Defence / Government

Duration: 3 Months + Extensions

Day Rate: Competitive (Outside)

Please note that we have multiple roles available, if you are not available immediately please apply so we can discuss your situation.

Apply
Similar Jobs
Loading data...