Group GRC Lead

Leeds
1 year ago
Applications closed

Related Jobs

View all jobs

Information Security GRC Lead

OT SOC Engineer

Information Security Technical Assurance Lead

Security Operations Engineer

Data Compliance Lead

Penetration Tester

Group GRC Lead
Permanent Salary: Between £75,000 - £85,000 per annum
Location: Leeds
Working Arrangement: Hybrid - 2 days in office per week

Your new company

I'm currently looking for a GRC Lead to report into the CISO of an international law firm. This role can be completed on a hybrid basis from offices in Leeds, Birmingham or Cardiff.

The ideal candidate will have experience of 3rd party Governance Risk and Compliance management (clients, suppliers, vendors), people management experience, and a go-getter, enthusiastic and engaging personality.

Your new role will involve

Reporting to the CISO (and C-suite in general) on the current state of the firm's Cyber Security from a Governance Risk and Compliance perspective
Assisting in the identification and support of 3rd party compliance requirements
Managing a small team of IT compliance analysts
Spearheading an international Cyber Security Awareness programme
Implementing NIST and maintaining ISO27001 certification
Maintaining a contemporary knowledge of current threats and cyber trends
3rd party and internal risk management
Fostering a risk aware culture among stakeholders and across the firm
Providing strategic advice and input on the firm's cyber security strategyWhat you'll need to succeed

Proven experience of 3rd party GRC leadership work, ideally in legal or professional services, but large-scale complex organisations will work too
Line management experience
A go-getter, engaging and enthusiastic personality
Experience implementing NIST would be useful
Strong Governance Risk and Compliance (GRC) knowledge, understanding and skillset
Excellent leadership ability and communication skills
Strong stakeholder engagement and management abilityWhat you'll get in return

Between £75,000 - £85,000 per annum
Discretionary bonus
26 days annual leave - Buy and Sell Scheme
Private health care
More great benefitsWhat you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.