Security Governance, Risk, and Compliance (GRC) Manager

Security Governance, Risk, and Compliance (GRC) Manager - £125k+

\n

London (3-4 times a week)

\n

\n

What is the role?

\n

\n

My client, a reputable name in the Systematic Trading space, is looking to hire an experienced Security Governance, Risk, and Compliance (GRC) Manager in a hands-on leadership role responsible for overseeing the security compliance and governance activities of the organisation. They need someone with a track record in ensuring a variety of regulatory requirements are met and robust security practices are both implemented and maintained.

\n

\n

\n

What will you be doing?

\n

\n

You will directly contribute to the design, implementation, and management of risk and compliance frameworks as well as designing and implementing a range of security governance practices. Other responsibilities include:

\n

\n
• Providing strong leadership to develop, implement, and maintain a security governance, risk, and compliance program in line with industry standards.
\n
• Governance & Compliance: Oversee security governance efforts, ensuring alignment with frameworks like ISO 27001, NIST, and GDPR, and regulatory standards.
\n
• Risk Management: Identify, assess, and mitigate security risks across the organisation. Implement and maintain risk management processes, ensuring effective controls are in place.
\n
• Compliance Monitoring: Ensure continuous compliance with applicable laws and regulations. Conduct internal audits and manage external audits related to security compliance.
\n
• Stakeholder Collaboration: Work closely with cross-functional teams, including IT, Legal, and Business Operations, to drive compliance initiatives and embed security practices across the organisation.
\n
• Policy Development: Develop and implement security policies, procedures, and standards that support risk mitigation and compliance efforts.
\n
• Hands-On Engagement: Play an active, hands-on role in security initiatives and GRC activities, including incident management, vulnerability assessments, and compliance reviews.
\n

\n

\n

\n

What you will need?

\n

\n

\n
• Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST, GDPR, and COBIT.
\n
• Proven leadership skills with the ability to guide and mentor teams, as well as influence and collaborate with senior stakeholders in a similar GRC, security, or risk management role.
\n
• A hands-on approach with the ability to balance strategic oversight with direct involvement in security tasks.
\n
• CISA, CRISC, or CISSP certification is massively advantageous
\n
• Excellent communication skills, with the ability to present complex information clearly and effectively to non-technical stakeholders.
\n

\n

\n

\n

What they can offer you?

\n

\n

This is a unique role where someone can take ownership of a GRC function in a growing organisation that values risk management and IT security, all within a collaborative, high-impact environment with a talented team of professionals. They will pay a very competitive salary and benefits package and offer flexible working arrangement.