GRC consultant
RightCueDavanagere, INGRC Consultant
About us…
We’re looking for a GRC Consultant to come and join our brilliant team of Information Security Consultants. This is a fantastic opportunity to join a professional team and to work in a forward thinking and stimulating working environment. RightCue’s aspiration is to develop and grow its team by attracting and recruiting the best, ensuring its readiness for future, where the standards set are consistently high and client and employee rewards are great.
About you…
Communication and collaboration are central to effective employee performance here at RightCue. Having the right technical skills and qualifications is undoubtedly important, however, how you interact, engage and build trusting sustainable relationships is what will set us apart here at RightCue. This is a client-facing position and client relations will therefore need to have been central to your career path to date. Due to the sensitive nature of our business, you will be expected to maintain the highest level of data security and confidentiality. The position requires flexibility to work across differing time-zones.
Job title- GRC Consultant
Total Experience - 2 to 5 years
Location- Work from home
Valid Passport is mandatory
Key responsibilities…
Perform data gathering interviews to assist with the preparation of physical, software, information and PII asset registers
Understand clients’ business and write bespoke security policies and procedures
Performing security reviews of a range of different types of customer environments, i.e., on-premises, colocation / data centre or cloud under guidance of a senior consultant
Undertaking client consultancy / projects, such as ISO 27001 implementation, Cyber Security Reviews, Risk Assessments, ISMS Management
Ability to perform supplier assessment / cloud service assessments as per RightCue methodology
Undertake risk assessments to an external standard with knowledge of multiple platforms and technologies, including cloud solutions
Advise on implementing established governance processes and frameworks to bring the best possible value-add solutions to clients
Support the implementation of ISO 27001 standard, CSA, CCM and other equivalent standards
Implement data protection policies and procedures
Support internal audits including GDPR audits
Work with the consultants to perform business impact assessments, threat modelling and risk assessments
Assist clients with management reports, implementation of controls, certification audits
Escalate project delays, scope deviations, and projects risks to Team Leads
Resolve any areas of concern raised by the client
Ensure written reports and other technical information are prepared in a pertinent, concise and accurate manner for distribution to clients
Provide proactive advice to clients on good security practices
Technical skills…
Excellent knowledge of IT networking, anti-malware technologies, security concepts, encryption, access controls and configuration management
Good knowledge of security management systems, data protection, governance & international standards
Broad understanding of the management of cybersecurity risk, tools, and techniques
Ability to gather data, compile information, and prepare professional reports and presentations
Experience in working with suppliers on data security, internal reviews / audits
Liaising with businesses to resolve any issues of non-compliance
1+ years’ delivering ISO 27001 work or information security consulting or in-house information security role
2+ years of client-facing experience in cyber security
3+ years of information technology and network security experience
Qualifications…
You will ideally have or be studying towards one or more of the following or equivalent qualifications :
B. Tech in IT, CISA, CISSP, ISO 27001 Lead Auditor / Lead Implementor, CCSK
The description provided above is not intended to be an exhaustive list of all job duties, responsibilities, and requirements. Duties, responsibilities, and requirements may change over time and according to business need.
What’s in it for you…
Being part of a small but perfectly formed team, you will be afforded every opportunity to get involved and to develop excellent business and leadership skills. We value diversity and are committed to providing equal opportunities for all our employees and importantly, we focus on what you achieve and not how long you spend trying to achieve it.
- 18 paid holidays
- 5 days working as per UK time
- Comparative Salary
- Flexibility to manage your own time and diary
- Growth opportunities – Funded Professional Certifications / Qualifications and Renewals
- Conditions apply)
- Home office set up support
- Conditions apply)
- Hybrid working
- Mediclaim reimbursement
- Conditions apply)
- Laptop
- Internet reimbursement
- Conditions apply)
- Recommend a Friend Scheme
- Work / Life Balance
- Annual Health checkup
If you would like to apply for this position, please email your latest CV to [email protected]
By sending your CV to the above mailbox you consent to us collecting and storing your CV / Application and contact details. We will hold this information securely and process it for recruitment purposes only. Please refer to our Privacy Statement for more details on our compliance with GDPR and Data Protection. The details of which can be found on our website .