INFORMATION SECURITY GRC SPECIALIST
Buckinghamshire | Hybrid Working (Flexible Days)
Contract: Permanent
Salary: Up to £65,000 + BONUS
Reports to: GRC Manager
Individual Contributor Role – No Direct Reports
Are you a security governance expert looking to play a crucial role in an evolving and high-impact environment? We are seeking an Information Security GRC Specialist to join our InfoSec Governance, Risk and Compliance (GRC) team.
In this role, you’ll help protect the confidentiality, integrity, and availability of our information assets by embedding best-in-class governance practices, assessing risk, and ensuring compliance with key industry standards like ISO27001. You'll work across the business as a trusted security advisor, helping teams understand and manage their risk profile and compliance obligations.
What You’ll Bring
* A strong understanding of the current threat landscape, security risks, and compliance standards.
* Extensive experience in information security, ideally within a GRC or risk management role.
* Experience delivering risk assessments and managing compliance against standards like ISO27001.
* Skilled in writing and implementing security policies, standards, and procedures.
* Working knowledge of frameworks such as ISF, NIST, ISO, and ITIL.
* Excellent communication skills with the ability to convey risk in accessible, business-friendly terms.
* Strong prioritisation and problem-solving skills under pressure.
Desirable Certifications
CISSP – Certified Information Systems Security Professional
CISA – Certified Information Systems Auditor
CRISC – Certified in Risk and Information Systems Control
Why Join?
You’ll play a pivotal role in shaping the security culture and risk posture of the organisation while working in a collaborative, forward-thinking environment. If you’re ready to bring your GRC expertise to a role that truly makes a difference—we want to hear from you.
Apply now and help build a secure, resilient future.