Cyber GRC Lead – SC Cleared

Farringdon
6 months ago
Applications closed

Related Jobs

View all jobs

Head of Cyber Security Governance, Risk and Compliance

Contract GRC Manager

Cyber Risk Analyst

Head of InfoSec GRC & Awareness

Operational Technology (OT) Cyber Security Analyst / Engineer

Director of Operational Technology (OT) & Manufacturing Security

Cyber GRC Lead – SC Cleared
SR2 is supporting a government department in the development and maturity of its cyber risk capability. We are seeking an experienced and confident Cyber GRC Specialist to lead and shape risk-related initiatives within a critical national infrastructure environment.
This role requires a strategic thinker with expertise in cyber risk management, familiarity with enterprise governance frameworks, and a high level of stakeholder resilience – particularly the ability to navigate and influence senior stakeholders who may have differing priorities or entrenched views.
Key Responsibilities:

Lead the development and refinement of cyber risk management processes, frameworks, and documentation
Embed risk-thinking into cyber governance activities across the organisation
Engage with technical and non-technical stakeholders to assess, prioritise, and communicate risk in business-relevant terms
Own risk registers, reporting cycles, and control effectiveness assessments
Act as a trusted advisor to senior stakeholders, helping align business risk appetite with cyber strategy
Support maturity assessments and benchmarking against frameworks such as NCSC CAF, ISO 27005, or NIST RMFEssential Skills & Experience

Proven experience delivering GRC and cyber risk programmes in complex, regulated, or critical infrastructure environments.
Strong working knowledge of cyber risk methodologies, threat modelling, and control frameworks.
Demonstrable track record of meeting delivery deadlines and producing approved, accurate documentation.
Ability to influence and gain trust from challenging or high-profile stakeholders, balancing diplomacy with clear accountability.
Exceptional workstream management and team leadership skills, with a history of accurate delegation and respectful communication.This is an urgent role looking to start ASAP. Please apply for further details

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.