Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Deliver end-to-end Cyber GRC consulting for major enterprise clients.
- Company: Join a global tech leader expanding its cyber security consulting practice.
- Benefits: Negotiable rate, remote work with occasional on-site meetings, and career growth.
- Why this job: Make a real impact in cyber security while working with top industry experts.
- Qualifications: 4+ years in consulting, experience with GRC frameworks, and strong client-facing skills.
- Other info: Opportunity to engage with international clients and enhance your expertise.
The predicted salary is between 36000 - 60000 £ per year.
Location: Reading (Remote role with once or twice per month on-site)
Rate: Negotiable (DOE)
Contract: Until May 2026
An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that is expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.
This is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT.
You will play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries.
Key Responsibilities- Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out.
- Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security.
- Translate complex security and compliance requirements into actionable business solutions.
- Build trusted relationships with clients at both technical and senior management levels.
- 4+ years’ experience in a professional consulting role, ideally within enterprise IT security, governance, or risk management.
- Proven delivery experience using frameworks such as ISO27001, NIST CSF, CIS, COBIT, or equivalent.
- Strong client-facing skills, with the ability to communicate technical concepts to non-technical audiences.
- Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or CISMP.
- Excellent communication skills and fluency in English.
- Degree in a related discipline (e.g. Information Security, IT, Risk Management).
- Exposure across multiple industry sectors.
- Additional certifications such as CCSP, CCSE, or CCAK, or knowledge of DORA / NIS2.
- Fluency in another European language (French, German, etc.) would be advantageous.
This is a fantastic opportunity to work with a leading global organisation on large-scale, complex cyber security programmes. You will collaborate with some of the best in the business and gain exposure to major international clients — ideal for someone who enjoys client-facing work and wants to deepen their expertise in GRC consulting.
Interested? Please apply now with your updated CV and reach out to Tom Johnson at Certain Advantage - Ref: 79546
Security Consultant – GRC (Governance, Risk, Compliance) employer: Certain Advantage
Contact Detail:
Certain Advantage Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Consultant – GRC (Governance, Risk, Compliance)
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend relevant events, and engage with professionals on platforms like LinkedIn. We can’t stress enough how important it is to build relationships that could lead to job opportunities.
✨Tip Number 2
Prepare for interviews by researching the company and understanding their GRC needs. We recommend practising common interview questions and having examples ready that showcase your experience with frameworks like ISO27001 or NIST CSF.
✨Tip Number 3
Showcase your expertise! Create a portfolio or case studies of past projects where you’ve successfully delivered GRC solutions. This will help you stand out and demonstrate your hands-on experience to potential employers.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we’re always looking for talented individuals who are passionate about GRC consulting and want to make an impact.
We think you need these skills to ace Security Consultant – GRC (Governance, Risk, Compliance)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Consultant role. Highlight your experience with GRC frameworks like ISO27001 and NIST CSF, and don’t forget to showcase your client-facing skills!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about GRC and how your background makes you a perfect fit for our team. Keep it concise but impactful.
Showcase Relevant Certifications: If you've got certifications like CISSP or CISA, make them stand out! These credentials are crucial in the security consulting world, so don’t shy away from flaunting them in your application.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss any important updates from us!
How to prepare for a job interview at Certain Advantage
✨Know Your GRC Frameworks
Make sure you brush up on the key frameworks mentioned in the job description, like ISO27001 and NIST CSF. Be ready to discuss how you've applied these in past roles, as this will show your practical experience and understanding of governance, risk, and compliance.
✨Engage with Stakeholders
Since this role involves engaging with senior stakeholders, practice articulating complex security concepts in a way that's easy for non-technical audiences to grasp. Think of examples where you've successfully communicated technical information to clients or management.
✨Showcase Your Client-Facing Skills
Prepare to share specific instances where you've built trusted relationships with clients. Highlight your ability to listen to their needs and translate those into actionable solutions, as this is crucial for a consulting role.
✨Certifications Matter
If you have relevant certifications like CISSP or CISA, be sure to mention them during the interview. If you’re working towards any additional certifications, let them know too! This shows your commitment to professional development in the field of cyber security.