Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our GRC team to ensure clients' data is secure and compliant.
- Company: Cognisys is a leading cybersecurity firm focused on innovation and customer service.
- Benefits: Enjoy hybrid work, professional development budget, wellness resources, and 22-25 days holiday.
- Why this job: Be part of a collaborative team making a real impact while growing your skills.
- Qualifications: Minimum three years in GRC compliance; strong communication and analytical skills required.
- Other info: Open-minded about qualifications; we value ability and attitude over strict criteria.
The predicted salary is between 32000 - 48000 £ per year.
Location: Leeds (Hybrid) / London also considered
Salary: up to £40K (DOE)
We have an exciting opportunity to join our GRC team as a GRC Consultant at a time of rapid growth and innovation at Cognisys. Cognisys is a leading cybersecurity company specialising in Penetration Testing, GRC Consulting, and Managed Security services. We pride ourselves on our customer service, forward-thinking approach, and commitment to excellence. Our small but mighty team works with some of the best-known companies in the world, covering over 30 countries worldwide!
About the Role
At Cognisys, our Governance, Risk, and Compliance (GRC) team is central to our mission of ensuring our clients’ data is protected to the highest standards of security and compliance. Due to our continued expansion, we are excited to announce this opportunity to further build our GRC team with an experienced, driven individual. Your contribution will be essential to the future growth of this team.
Key Responsibilities
- Ensure our clients establish robust governance frameworks, manage risks effectively and maintain compliance with regulatory standards.
- Conduct thorough security audits to evaluate and improve the effectiveness of risk management, control and governance processes.
- Lead or support ISO 27001 projects from scoping through to certification.
- Develop and maintain core ISMS documentation, including policies, procedures, SoA (Statement of Applicability), and risk treatment plans.
- Lead governance activities, including reporting and continual process improvement.
- Conduct comprehensive internal audits, ensuring adherence to ISO27001 standards.
- Conduct thorough risk assessments and develop risk management strategies.
- Create and maintain security policies.
- Support and develop the knowledge of junior members of the team.
Requirements
- Minimum three years of experience in a similar lead GRC compliance, consulting or security role (including policy/documentation reviews & auditing).
- Proven track record in successfully maintaining information security standards in a workplace environment (ISO27001, SOC2, etc.).
- Compliance or information security-related certification.
- A strong desire to grow, develop and support junior members of the team.
- Excellent written and oral communication skills for liaising with external stakeholders, conveying complex compliance information.
- Ability to analyse data, identify key issues, and develop practical solutions.
- Plan, prioritise, and manage time efficiently.
- Due to the nature of this role, having an eye for detail is crucial.
If you think you can deliver but don't match the criteria above, please don't be put off. We are very open-minded and focus on ability and attitude above skills.
What We Offer
- A dynamic and supportive work environment where customer care and innovation drive everything we do.
- A dedicated budget for your professional development.
- EMI Employee Share Schemes provide the opportunity to share in the company's success.
- Access to an Employee Wellness Hub supported by Kara Connect for health and well-being resources.
- Frequent team social events and celebrations.
- 22 days holiday rising to 25, plus a birthday holiday.
- Refer a friend bonus scheme, up to £2,000!
Why Join Us?
At Cognisys, you will be part of a collaborative and innovative team that values your input and shares support. You'll have the opportunity to work on challenging projects that make a real impact on our clients. We’d love to hear from you if you want to challenge, lead and innovate! We’re not just about the work; we’re about the people. Join a team where innovation is celebrated and your contributions are valued. We foster a collaborative environment where fresh ideas thrive and professional growth is encouraged.
Applications
Please feel free to reach out to Dom, our Head of Talent Acquisition, if you would like any further information, to discuss accessibility requirements, or if you require this information provided in an alternative format – hiring@cognisys.co.uk
We welcome applications from candidates from diverse backgrounds and can make various reasonable adjustments to accommodate individual needs.
NO RECRUITMENT AGENCIES, PLEASE
GRC Consultant employer: Cognisys
Contact Detail:
Cognisys Recruiting Team
hiring@cognisys.co.uk
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Consultant
✨Tip Number 1
Familiarise yourself with ISO 27001 standards and other relevant compliance frameworks. Being well-versed in these will not only help you during interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the GRC field, especially those who work at Cognisys or similar companies. Engaging with them on platforms like LinkedIn can provide insights into the company culture and expectations.
✨Tip Number 3
Prepare to discuss specific examples of how you've successfully managed compliance projects or conducted audits in the past. This will showcase your experience and problem-solving skills effectively.
✨Tip Number 4
Showcase your passion for mentoring and developing junior team members. Highlight any previous experiences where you've supported others, as this aligns with Cognisys's values and team dynamics.
We think you need these skills to ace GRC Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in GRC consulting, compliance, and security roles. Emphasise your familiarity with ISO 27001 and any other certifications you hold.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for cybersecurity and your understanding of the GRC landscape. Mention specific projects or experiences that demonstrate your ability to manage risks and ensure compliance.
Highlight Soft Skills: In your application, emphasise your communication skills and ability to work collaboratively. Provide examples of how you've successfully liaised with stakeholders or supported junior team members in previous roles.
Showcase Continuous Learning: Mention any ongoing professional development or training related to GRC, compliance, or cybersecurity. This shows your commitment to growth and staying updated in the field.
How to prepare for a job interview at Cognisys
✨Understand the GRC Landscape
Familiarise yourself with the key concepts of Governance, Risk, and Compliance. Be prepared to discuss how these elements interact and their importance in cybersecurity, particularly in relation to ISO 27001 standards.
✨Showcase Your Experience
Highlight your previous roles and specific projects related to GRC consulting. Be ready to provide examples of how you've successfully maintained information security standards and conducted audits.
✨Demonstrate Communication Skills
Since the role involves liaising with external stakeholders, practice articulating complex compliance information clearly and concisely. Prepare to discuss how you would communicate findings from audits or risk assessments.
✨Emphasise Team Collaboration
Cognisys values a collaborative environment, so be sure to express your willingness to support and mentor junior team members. Share examples of how you've worked effectively within a team to achieve common goals.
