Governance, Risk, and Compliance (GRC) SME - Senior Consultant

Do you want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients' most important challenges? We are growing and are looking for people to join our team. You'll be part of an entrepreneurial, high-growth environment of 300.000 employees. Our dynamic organization allows you to work across functional business pillars, contributing your ideas, experiences, diverse thinking, and a strong mindset. Are you ready?

 

About the role

We are looking for a highly skilled Cyber GRC (Governance, Risk, and Compliance) Senior Consultant to help organizations strengthen their cybersecurity posture, manage cyber risks, and ensure regulatory compliance. The ideal candidate will have deep expertise in cybersecurity frameworks, risk management, regulatory compliance, and security governance.

As a Cyber GRC Senior Consultant, you will collaborate with client security, IT, and compliance teams to direct and oversee the development and implementation of cybersecurity policies, conduct risk assessments, and ensure adherence to global security standards and regulations.

Key Responsibilities:

·       Work on global projects with a truly global team, with the support of over 330,000 technical staff from our parent organization.

·       Contribute to the development of consulting go to market offerings and innovative solutions targeted at the C-Suite executive community that help them to understand and mitigate their cyber risks.

·       Direct and lead NIST CSF risk assessments

·       Oversee the design of innovative new services to lead the market incorporating AI and ML where it brings value.

·       Support presales, sales, and account management pursuits from a subject matter expert perspective.

Do you want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients' most important challenges? We are growing and are looking for people to join our team. You'll be part of an entrepreneur...

Requirements

You will have already achieved strong career progression to date, and experience working with recognized consulting brands and large commercial sector clients. You will have a passion for cyber security and a genuine interest in staying updated with the latest industry trends and developments.

Your security experience must include:

·       A relevant undergrad or post grad degree (Infosec, Cyber Security, IT Security)

·       1-5 years+ in the field of cyber security/infosec.

·       A broad business skill set including stakeholder management, problem-solving, and resilience

·       Experience in gathering, validating, synthesizing, documenting, and communicating data and information for a range of audiences

·       Excellent interpersonal skills and strong written and verbal communication skills in country’s official language(s) (C2 proficiency) and English (C2 proficiency), project-related mobility/willingness to travel

Your diverse Security experience should include one or some of below:

·       A good understanding of NIST CSF

·       A post graduate degree in cyber /information security

·       An understanding of ISO27001, NIS2, SOX, GDPR, DORA,

·       Cyber Due Diligence Assessments

·       Third- Party & Supply chain Cyber Risk Management

·       Incident Response Plan review

·       Supporting bids, RFP responses and proposals

·       Crisis Management Exercises (CMX)

·       Accreditation such as CISSP, CISM, CISA, GSLC, GSTRT, GCPM,

·       Helped design Target Operating Models (TOMs) and RACI Matrices

·       Helping the design of Cyber Security Roadmaps

·       Supporting Post Incident Reviews

·       Reading and summarising Cyber Threat Intelligence reports

·       Cyber security compliance programs (GDPR, DORA, ISO27001, NIS2, SOX)

·       Cyber Security Risk Assessments or Maturity Assessments

·       Design and/deliver awareness training.

·       Worked on Identity and Access Management projects.

·       Worked on Privileged access management projects

Our ideal candidate may have some of the following skills:

·       Have a broad business skill set including stakeholder management, problem-solving, and resilience

·       Have experience in gathering, validating, synthesizing, documenting, and communicating data and information for a range of audiences

·       Have excellent interpersonal skills and strong written and verbal communication skills in country’s official language(s) (C2 proficiency) and English (C2 proficiency), project-related mobility/willingness to travel

·       Enjoy working with different clients from different industries.

·       Have some experience in balancing technical and commercial considerations to develop practical advice or solutions for clients.

·       Be able to build strong and effective business relationships at all levels

·       Be able to support and oversee staff with less experience in their tasks

·       Be able to explain complex cyber methodologies using accessible non-technical language (both written and verbal)

Given that this is just a short snapshot of the role we encourage you to apply even if you don't meet all the requirements listed above. We are looking for team members who strive to make an impact and are eager to learn. If this sounds like you and you feel you have the skills and experience required, then please apply now.

Do you want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients' most important challenges? We are growing and are looking for people to join our team. You'll be part of an entrepreneurial, high-growth environment of 300.000 employees. Our dynamic organization allows you to work across functional business pillars, contributing your ideas, experiences, diverse thinking, and a strong mindset. Are you ready?

 

About the role

We are looking for a highly skilled Cyber GRC (Governance, Risk, and Compliance) Senior Consultant to help organizations strengthen their cybersecurity posture, manage cyber risks, and ensure regulatory compliance. The ideal candidate will have deep expertise in cybersecurity frameworks, risk management, regulatory compliance, and security governance.

As a Cyber GRC Senior Consultant, you will collaborate with client security, IT, and compliance teams to direct and oversee the development and implementation of cybersecurity policies, conduct risk assessments, and ensure adherence to global security standards and regulations.

Key Responsibilities:

·       Work on global projects with a truly global team, with the support of over 330,000 technical staff from our parent organization.

·       Contribute to the development of consulting go to market offerings and innovative solutions targeted at the C-Suite executive community that help them to understand and mitigate their cyber risks.

·       Direct and lead NIST CSF risk assessments

·       Oversee the design of innovative new services to lead the market incorporating AI and ML where it brings value.

·       Support presales, sales, and account management pursuits from a subject matter expert perspective.

Do you want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients' most important challenges? We are growing and are looking for people to join our team. You'll be part of an entrepreneur...

Requirements

You will have already achieved strong career progression to date, and experience working with recognized consulting brands and large commercial sector clients. You will have a passion for cyber security and a genuine interest in staying updated with the latest industry trends and developments.

Your security experience must include:

·       A relevant undergrad or post grad degree (Infosec, Cyber Security, IT Security)

·       1-5 years+ in the field of cyber security/infosec.

·       A broad business skill set including stakeholder management, problem-solving, and resilience

·       Experience in gathering, validating, synthesizing, documenting, and communicating data and information for a range of audiences

·       Excellent interpersonal skills and strong written and verbal communication skills in country’s official language(s) (C2 proficiency) and English (C2 proficiency), project-related mobility/willingness to travel

Your diverse Security experience should include one or some of below:

·       A good understanding of NIST CSF

·       A post graduate degree in cyber /information security

·       An understanding of ISO27001, NIS2, SOX, GDPR, DORA,

·       Cyber Due Diligence Assessments

·       Third- Party & Supply chain Cyber Risk Management

·       Incident Response Plan review

·       Supporting bids, RFP responses and proposals

·       Crisis Management Exercises (CMX)

·       Accreditation such as CISSP, CISM, CISA, GSLC, GSTRT, GCPM,

·       Helped design Target Operating Models (TOMs) and RACI Matrices

·       Helping the design of Cyber Security Roadmaps

·       Supporting Post Incident Reviews

·       Reading and summarising Cyber Threat Intelligence reports

·       Cyber security compliance programs (GDPR, DORA, ISO27001, NIS2, SOX)

·       Cyber Security Risk Assessments or Maturity Assessments

·       Design and/deliver awareness training.

·       Worked on Identity and Access Management projects.

·       Worked on Privileged access management projects

Our ideal candidate may have some of the following skills:

·       Have a broad business skill set including stakeholder management, problem-solving, and resilience

·       Have experience in gathering, validating, synthesizing, documenting, and communicating data and information for a range of audiences

·       Have excellent interpersonal skills and strong written and verbal communication skills in country’s official language(s) (C2 proficiency) and English (C2 proficiency), project-related mobility/willingness to travel

·       Enjoy working with different clients from different industries.

·       Have some experience in balancing technical and commercial considerations to develop practical advice or solutions for clients.

·       Be able to build strong and effective business relationships at all levels

·       Be able to support and oversee staff with less experience in their tasks

·       Be able to explain complex cyber methodologies using accessible non-technical language (both written and verbal)

Given that this is just a short snapshot of the role we encourage you to apply even if you don't meet all the requirements listed above. We are looking for team members who strive to make an impact and are eager to learn. If this sounds like you and you feel you have the skills and experience required, then please apply now.