Senior GRC Consultant (UK)

As a Senior GRC Consultant within our highly skilled Cyber Security Team you will be responsible for contributing to our information security consultancy, with opportunities to work on information security assessments within sizeable projects, conduct ISO 27001 audits, help implement aspects of ISO 27001, and engage in risk management. Furthermore, there is potential for growth into such diverse fields as PCI DSS, privacy, and business continuity.

Essential experience and skills:

• Recognized ISO 27001 Lead Auditor qualification.
• Significant experience in auditing ISO 27001 based Information Security Management Systems.
• Significant experience in consulting and implementing Information Security Management Systems.
• Strong knowledge of European regulatory frameworks such as the GDPR, MiFID II, AMLD, and local regulations.
• Significant previous IT experience.
• Ability to assess the impact of regulatory changes and advise clients on best practices.
• Experience of working as the lead auditor or consultant and of working in teams.
• Outstanding verbal communication skills.
• Excellent report writing skills with the ability to explain information security risks to non-technical senior stakeholders.
• Proven project management experience in executing GRC projects within complex organizations.
• Ability to handle multiple projects and deadlines, ensuring timely delivery of compliance programs.

Desirable qualifications and experience:

• Information security qualifications such as CISSP, CISA, or CISM.
• Familiarity with GRC cloud-based systems.
• Experience of PCI DSS or a PCI QSA.
• Experience auditing SWIFT CSCF.
• Developing and providing training.
• Writing policies and technical documents.
• Managing a team or leading teams.

Along with a competitive salary, you will have the following various benefits:

• A hybrid working environment that supports working remotely, with the opportunity to use the offices based on your preference in Oxford or Glasgow, and of course attend team events!
• Private health insurance
• Eye care plan
• Employee benefits and discounts platform
• Cycle to Work scheme
• EAP scheme and well-being platform, including confidential telephone and face to face support and counselling
• Income Protection if unable to work due to illness or injury

Why choose Dionach?

Dionach are a growing information security company specialising in penetration testing, GRC consultancy and information assurance services. We are a growing business and you will play a pivotal role within Dionach in securing the growth and retention of clients across all sectors, which presents opportunities for both interesting work and career development.

Dionach have leading industry certifications including CREST, Cyber Scheme, CHECK, PCI QSA, SWIFT CSCF, and ISO 27001, with a focus on improving customers’ security, and developing people’s skills and qualifications.

Dionach are always looking for self-motivated people who wish to work in a fun, flexible environment, where they can make a difference to the business.

Dionach are proud to be an equal opportunities employer with a commitment to creating an environment which values equality, encourages diversity, and contributes to an inclusive organisational culture.

We strive to create the best working environment possible for each of our employees, whether working from home or from one of our offices. We offer encouragement and support so our employees can develop to their full potential and utilise their unique talents.

Job types: full-time, permanent

Location: remote or hybrid

Gross salary: £60k - £90k per annum, depending on experience and qualifications.