Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our GRC team to ensure clients' data is secure and compliant.
- Company: Cognisys is a leading cybersecurity firm known for innovation and customer service.
- Benefits: Enjoy hybrid work, professional development budget, wellness resources, and 22-25 days holiday.
- Why this job: Be part of a collaborative team making a real impact on global clients.
- Qualifications: 3+ years in GRC compliance; strong communication and analytical skills required.
- Other info: Open to diverse backgrounds; focus on ability and attitude over strict qualifications.
The predicted salary is between 28800 - 48000 £ per year.
Location: Leeds (Hybrid) / London also considered
Salary: up to £40K (DOE)
We have an exciting opportunity to join our GRC team as a GRC Consultant at a time of rapid growth and innovation at Cognisys. Cognisys is a leading cybersecurity company specialising in Penetration Testing, GRC Consulting, and Managed Security services. We pride ourselves on our customer service, forward-thinking approach, and commitment to excellence. Our small but mighty team works with some of the best-known companies in the world, covering over 30 countries worldwide!
About The Role
At Cognisys, our Governance, Risk, and Compliance (GRC) team is central to our mission of ensuring our clients’ data is protected to the highest standards of security and compliance. Due to our continued expansion, we are excited to announce this opportunity to further build our GRC team with an experienced, driven individual. Your contribution will be essential to the future growth of this team.
Key Responsibilities
- Ensure our clients establish robust governance frameworks, manage risks effectively and maintain compliance with regulatory standards.
- Conduct thorough security audits to evaluate and improve the effectiveness of risk management, control and governance processes.
- Lead or support ISO 27001 projects from scoping through to certification.
- Develop and maintain core ISMS documentation, including policies, procedures, SoA (Statement of Applicability), and risk treatment plans.
- Lead governance activities, including reporting and continual process improvement.
- Conduct comprehensive internal audits, ensuring adherence to ISO27001 standards.
- Conduct thorough risk assessments and develop risk management strategies.
- Create and maintain security policies.
- Support and develop the knowledge of junior members of the team.
Requirements
- Minimum three years of experience in a similar lead GRC compliance, consulting or security role (including policy/documentation reviews & auditing).
- Proven track record in successfully maintaining information security standards in a workplace environment (ISO27001, SOC2, etc.).
- Compliance or information security-related certification.
- A strong desire to grow, develop and support junior members of the team.
- Excellent written and oral communication skills for liaising with external stakeholders, conveying complex compliance information.
- Ability to analyse data, identify key issues, and develop practical solutions.
- Plan, prioritise, and manage time efficiently.
- Due to the nature of this role, having an eye for detail is crucial.
If you think you can deliver but don't match the criteria above, please don't be put off. We are very open-minded and focus on ability and attitude above skills.
What We Offer
- A dynamic and supportive work environment where customer care and innovation drive everything we do.
- A dedicated budget for your professional development.
- EMI Employee Share Schemes provide the opportunity to share in the company's success.
- Access to an Employee Wellness Hub supported by Kara Connect for health and well-being resources.
- Frequent team social events and celebrations.
- 22 days holiday rising to 25, plus a birthday holiday.
- Refer a friend bonus scheme, up to £2,000!
Why Join Us?
At Cognisys, you will be part of a collaborative and innovative team that values your input and shares support. You'll have the opportunity to work on challenging projects that make a real impact on our clients. We'd love to hear from you if you want to challenge, lead and innovate!
We're not just about the work; we're about the people. Join a team where innovation is celebrated and your contributions are valued. We foster a collaborative environment where fresh ideas thrive and professional growth is encouraged.
Applications
Please feel free to reach out to Dom, our Head of Talent Acquisition, if you would like any further information, to discuss accessibility requirements, or if you require this information provided in an alternative format – hiring@cognisys.co.uk
We welcome applications from candidates from diverse backgrounds and can make various reasonable adjustments to accommodate individual needs.
GRC Consultant employer: Cognisys Group
Contact Detail:
Cognisys Group Recruiting Team
hiring@cognisys.co.uk
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Consultant
✨Tip Number 1
Familiarise yourself with ISO 27001 standards and other relevant compliance frameworks. Being well-versed in these will not only help you during interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with current or former employees of Cognisys on platforms like LinkedIn. Engaging with them can provide valuable insights into the company culture and expectations, which can be a game-changer in your application process.
✨Tip Number 3
Prepare to discuss specific examples from your past experience where you've successfully implemented governance frameworks or conducted audits. Real-life scenarios can showcase your expertise and problem-solving skills effectively.
✨Tip Number 4
Stay updated on the latest trends in cybersecurity and compliance. Showing that you're proactive about learning and adapting to new challenges can set you apart from other candidates.
We think you need these skills to ace GRC Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in GRC consulting, compliance, and security roles. Emphasise your familiarity with ISO 27001 and any other certifications you hold that are pertinent to the role.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for cybersecurity and your understanding of governance, risk, and compliance. Mention specific projects or experiences that demonstrate your ability to manage risks and maintain compliance.
Highlight Soft Skills: In your application, emphasise your communication skills and ability to work collaboratively. Given the role's focus on liaising with external stakeholders, showcasing your interpersonal skills will be crucial.
Showcase Continuous Learning: Mention any ongoing professional development or training related to GRC, compliance, or cybersecurity. This shows your commitment to staying updated in a rapidly evolving field and your desire to grow within the team.
How to prepare for a job interview at Cognisys Group
✨Understand the GRC Landscape
Before your interview, make sure you have a solid grasp of Governance, Risk, and Compliance principles. Familiarise yourself with ISO 27001 standards and other relevant frameworks, as this will demonstrate your expertise and commitment to the role.
✨Showcase Your Experience
Prepare specific examples from your past roles that highlight your experience in GRC consulting, particularly in conducting audits and developing compliance documentation. Use the STAR method (Situation, Task, Action, Result) to structure your responses effectively.
✨Communicate Clearly
Since excellent communication skills are crucial for liaising with stakeholders, practice articulating complex compliance information in a clear and concise manner. This will help you convey your ideas effectively during the interview.
✨Demonstrate Team Spirit
Cognisys values collaboration and support within their team. Be prepared to discuss how you've mentored or supported junior colleagues in the past, showcasing your ability to contribute positively to the team dynamic.
