Policy & Governance Lead / GRC Analyst
Active SC Clearance – required to work on‑site MOD/aerospace programmes.
Aerospace and Defence Experience – demonstrable background delivering architecture within MOD, Defence Digital, or UK aerospace environments.
This role will be based in Reading with hybrid/custom working options where appropriate.
Area: Policy & Governance, GRC/Assurance
Purpose of the Role
Define, maintain, govern, and assure compliance with the organisation’s ISMS policy framework, standards, and procedures, while supporting audit readiness and control assurance.
Key Responsibilities
* Own and maintain all policies, standards, procedures, and guidelines aligned to ISO 27001.
* Manage updates, reviews, version control, and stakeholder approvals.
* Operate the evidence room, ensuring evidence is correctly catalogued, tagged, and mapped.
* Track control implementation and maturity across the organisation.
* Produce audit packs, control records, and compliance dashboards.
* Support GRC functions such as control assessments, policy exception reviews, and risk treatment monitoring.
Skills & Experience
* Experience in GRC, policy governance, or compliance.
* Strong knowledge of ISO 27001 Annex A controls and documentation requirements.
* Excellent analytical and writing skills.