Information Security GRC Manager
Fully remote (w/travel to mainland Europe every few months, flexible setup)
Up to £95,000 + bonus/package
We're working with a rapid scale-up technology business looking for an Information Security GRC Manager to develop their security posture. This pre-IPO business has been marked as 'one to watch' in multiple high profile cloud technology reports on the market, with ~1000 employees they are looking to expand their global offering.
Reporting to the GRC Director and partnering closely with the CISO, you will help to build a new security GRC function for the organisation as they look to develop a best-in-class information security team. You will be responsible for developing a robust security governance, risk & compliance function by implementing effective controls & standards to meet regulatory demands. The business is ISO27001 certified but is at a low maturity scale which gives you the opportunity to own and develop this domain. Facing off to stakeholders across all levels/departments, you will create a function aligned to the business goals as they look to scale up at significant growth.
Prior experience leading security GRC activities, with track record of developing an effective risk, control and compliance function.
Strong knowledge of information security controls and regulatory standards (i.e. ISO 27001/2, NIST, PCI-DSS, etc.).
Demonstrate good technical knowledge, with an ability to translate technical aspects back to the business.
Highly motivated self-starter with an ability to build strong & trusted relationships both internally and externally.
Experience working in product based technology or digital organisations desirable.
This is an exciting opportunity to join a highly agile, digital organisation looking to scale up their security function, you will be in a broad role with a chance to develop into a key leadership hire in GRC.