Start Hiring Start Appying
Start Appying

StudySmarter Job Board

GRC Lead
Apply now
Job Board
Companies
Arcus Search
GRC Lead

GRC Lead

Manchester Full-Time 57000 - 95000 £ / year (est.) No home office possible
A

At a Glance

  • Tasks: Lead the development and governance of IT and cyber security policies.
  • Company: Join a leading organisation at the forefront of cyber governance.
  • Benefits: Enjoy a competitive salary, discretionary bonus, and excellent benefits.
  • Why this job: Shape a strong security culture and make a real impact in cyber security.
  • Qualifications: 5+ years in cyber governance; knowledge of NIST, ISO 27001, and compliance standards required.
  • Other info: Position based in Manchester, with 3 days onsite per week.

The predicted salary is between 57000 - 95000 £ per year.

Location: Manchester (3 days per week onsite)

Salary: Up to £95,000 + discretionary bonus & excellent benefits

Employment Type: Full-time, Permanent (applicants must be UK based and NOT require sponsorship)

About the Role: A leading organisation is seeking a highly experienced and strategic Security Culture and Awareness Manager to join its cyber security team. This is a fantastic opportunity to shape and lead the development, governance, and awareness of IT and cyber security policies across a large and complex organisation. As the Global Cyber Policy and Governance Lead, you will be responsible for aligning cyber controls with business strategy, enhancing policy frameworks, ensuring compliance with international standards and regulations, and providing leadership-level reporting and insight.

Key Responsibilities:

  • Lead the design, implementation, and governance of IT and cyber security policy frameworks.
  • Develop and manage a global policy governance structure that aligns with industry best practices and internal strategy.
  • Ensure cyber policies remain current, effective, and aligned with evolving technologies, threats, and compliance requirements.
  • Promote cyber awareness initiatives across the organisation to embed a strong security culture.
  • Monitor and report on policy adherence, risks, and mitigation plans to senior stakeholders.
  • Collaborate with key internal and external stakeholders to ensure a consistent and integrated approach to cyber policy and governance.
  • Identify opportunities for policy automation and toolset enhancements.

Key Experience & Qualifications:

  • 5+ years’ experience in cyber governance, cyber assurance, policy development, or IT compliance.
  • Strong knowledge of cyber security frameworks such as NIST and ISO 27001.
  • Understanding of regulatory and compliance standards including GDPR, PCI-DSS, and ITGC.
  • Hands-on experience with cloud platforms including AWS, Azure, or GCP.
  • Relevant certifications such as CISSP, CISM, or CRISC are preferred but not essential.
  • Excellent stakeholder management, reporting, and communication skills.

What’s on Offer:

  • A competitive salary up to £95,000
  • Discretionary bonus
  • Excellent benefits package
  • The chance to join a well-established and recognised organisation at the forefront of cyber governance

Interested? Apply now with your CV or get in touch for a confidential conversation to learn more about this opportunity.

GRC Lead employer: Arcus Search

Join a leading organisation in Manchester as a GRC Lead, where you will be part of a dynamic cyber security team dedicated to fostering a robust security culture. With a competitive salary of up to £95,000, discretionary bonuses, and an excellent benefits package, this role offers not only financial rewards but also significant opportunities for professional growth and development. Embrace a collaborative work environment that values innovation and strategic thinking, while working three days a week onsite in a vibrant city known for its rich culture and thriving tech scene.
A

Contact Detail:

Arcus Search Recruiting Team

View Arcus Search Profile

StudySmarter Expert Advice 🤫

We think this is how you could land GRC Lead

✨Tip Number 1

Network with professionals in the cyber security field, especially those who have experience in governance and compliance. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends in cyber policy.

✨Tip Number 2

Familiarise yourself with the specific cyber security frameworks mentioned in the job description, such as NIST and ISO 27001. Being able to discuss these frameworks confidently during interviews will demonstrate your expertise and alignment with the role.

✨Tip Number 3

Prepare to showcase your experience in developing and managing policy frameworks. Think of specific examples where you've successfully implemented policies or improved compliance within an organisation, as this will be crucial in demonstrating your fit for the role.

✨Tip Number 4

Research the company’s current cyber security initiatives and any recent news related to their governance practices. This knowledge will not only help you tailor your discussions but also show your genuine interest in contributing to their security culture.

We think you need these skills to ace GRC Lead

Cyber Governance
Policy Development
IT Compliance
Stakeholder Management
Risk Management
Cyber Security Frameworks (NIST, ISO 27001)
Regulatory Compliance (GDPR, PCI-DSS, ITGC)
Cloud Platforms (AWS, Azure, GCP)
Communication Skills
Leadership Skills
Analytical Skills
Problem-Solving Skills
Project Management
Cyber Awareness Initiatives
Policy Automation

Some tips for your application 🫡

Tailor Your CV: Make sure your CV highlights relevant experience in cyber governance, policy development, and compliance. Use keywords from the job description to demonstrate that you meet the specific requirements for the GRC Lead position.

Craft a Compelling Cover Letter: Write a cover letter that showcases your understanding of cyber security frameworks like NIST and ISO 27001. Explain how your experience aligns with the responsibilities of the role and express your enthusiasm for promoting a strong security culture.

Highlight Relevant Certifications: If you have certifications such as CISSP, CISM, or CRISC, be sure to mention them prominently in your application. Even if they are not essential, they can set you apart from other candidates.

Showcase Stakeholder Management Skills: In your application, provide examples of your stakeholder management and communication skills. This is crucial for the role, so demonstrating your ability to collaborate effectively will strengthen your application.

How to prepare for a job interview at Arcus Search

✨Understand the Cyber Security Frameworks

Make sure you have a solid grasp of key cyber security frameworks like NIST and ISO 27001. Be prepared to discuss how these frameworks can be applied in the role and how they align with the organisation's strategy.

✨Showcase Your Stakeholder Management Skills

Since this role involves collaboration with various stakeholders, come equipped with examples of how you've successfully managed relationships in previous positions. Highlight your communication skills and ability to report effectively to senior management.

✨Demonstrate Your Policy Development Experience

Be ready to talk about your experience in developing and implementing IT and cyber security policies. Discuss specific challenges you've faced and how you overcame them, as well as any tools or automation you've used to enhance policy governance.

✨Stay Current on Compliance Standards

Familiarise yourself with relevant compliance standards such as GDPR and PCI-DSS. During the interview, express your understanding of how these regulations impact cyber governance and share any experiences you have in ensuring compliance within an organisation.

A
Similar positions in other companies
UK’s top job board for Gen Z
discover-jobs-cta
Discover now
>