Security Consultant – GRC (Governance, Risk, Compliance)

Certain Advantage
Great Lea Common, Berkshire
6 months ago
Applications closed

Related Jobs

View all jobs

Cyber Security Consultant

Marston Search Wolverhampton, United Kingdom

Senior Cloud Security Architect

Softcat Manchester, United Kingdom

Senior Cloud Security Architect

Softcat Birmingham, West Midlands (county), United Kingdom

Cyber Security Consultant

83zero United Kingdom
£550 – £600 pd

Senior Security Consultant - CNI

Bridewell London, United Kingdom
Hybrid

Cyber Security Consultant (MOD/Defence)

Talent Locker Farnborough, GU14 7JT, United Kingdom
Posted
5 Nov 2025 (6 months ago)
Share
Save job
Create job alert

Security Consultant – GRC (Governance, Risk & Compliance)
Location: Reading (Remote role with once or twice per month on-site) 
Rate: Negotiable (DOE)
Contract: Until May 2026

An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.

This is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT.

You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries.

Key Responsibilities
Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out.
Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security.
Translate complex security and compliance requirements into actionable business solutions.
Build trusted relationships with clients at both technical and senior management levels.Skills & Experience Required
4+ years’ experience in a professional consulting role, ideally within enterprise IT security, governance, or risk management.
Proven delivery experience using frameworks such as ISO27001, NIST CSF, CIS, COBIT, or equivalent.
Strong client-facing skills, with the ability to communicate technical concepts to non-technical audiences.
Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or CISMP.
Excellent communication skills and fluency in English.Desirable
Degree in a related discipline (e.g. Information Security, IT, Risk Management).
Exposure across multiple industry sectors.
Additional certifications such as CCSP, CCSE, or CCAK, or knowledge of DORA / NIS2.
Fluency in another European language (French, German, etc.) would be advantageous.This is a fantastic opportunity to work with a leading global organisation on large-scale, complex cyber security programmes. You’ll collaborate with some of the best in the business and gain exposure to major international clients — ideal for someone who enjoys client-facing work and wants to deepen their expertise in GRC consulting.

Interested? 

Please apply now with your updated CV and reach out to Tom Johnson at Certain Advantage - Ref: 79546

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Products

Where to Advertise Cyber Security Jobs in the UK (2026 Guide)

Advertising cyber security jobs in the UK requires a different approach to most technical hiring. The candidate pool is small, heavily vetted and in high demand across government, financial services, critical national infrastructure and the private sector simultaneously. Many of the strongest candidates hold active security clearances, are not actively job-searching through general platforms, and move primarily through specialist networks and trusted referrals. General job boards reach a broad audience but lack the specificity that security professionals expect. Specialist platforms, government-affiliated channels and cleared candidate networks each serve a different part of the market. This guide, published by CybersecurityJobs.tech, covers where to advertise cyber security roles in the UK in 2026, how the main platforms compare, what employers should expect to pay, and what the data says about hiring across different role types.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.