Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support security compliance and assurance activities while collaborating with cross-functional teams.
- Company: Custodia, a forward-thinking company prioritising security and compliance.
- Benefits: Competitive salary, hybrid work options, and opportunities for professional growth.
- Other info: Great opportunity to learn and grow in a supportive environment.
- Why this job: Join a dynamic team and make a real impact on security practices.
- Qualifications: Degree in Information Security or related field; 0-3 years of relevant experience.
The predicted salary is between 30000 - 42000 £ per year.
Location: Knutsford, UK
Department: Security
Reports to: CISO
Must have full right to work. Strictly no agencies. Office based/Hybrid.
The Junior Security Engineer - GRC is an operational role responsible for supporting the day-to-day security compliance and assurance activities of Custodia. The role focuses on supporting the operation of the Information Security Management System (ISMS), maintaining compliance evidence, and helping demonstrate that security controls are operating effectively in line with ISO/IEC 27001 and SOC 2 Type II requirements. Working closely with all teams in the organisation to support audit readiness, tracks remediation activity, and helps translate technical security operations into auditable and repeatable compliance outcomes. The role also contributes to educating users, reinforcing security best practices and building hands-on compliance capability within the organisation.
Key Responsibilities
- Audit readiness and Ongoing monitoring
- Support the execution of the organisation's security and compliance strategy by ensuring security controls are documented, evidenced, and operating as intended.
- Assist with identifying, tracking, and escalating compliance-related risks, control gaps, and exceptions.
- Support the maintenance of security policies, standards, and procedures, ensuring alignment between documented controls and operational practice.
- Collect, validate, and maintain compliance metrics and audit evidence to support ISO 27001 and SOC 2 reporting.
- Contribute to regular compliance status updates, risk register updates, and remediation tracking for senior security leadership.
- Work with security engineering, IT, and engineering teams to ensure technical security controls meet documented compliance requirements.
- Support audit readiness by helping ensure reporting, evidence, and control status remain current and accurate.
- Perform day-to-day (BAU) security operations, including:
- Monitoring security alerts and incidents (via SOC and Sentinel).
- Supporting access reviews and entitlement checks.
- Assisting with patching validation and remediation tracking.
- Maintaining security logs and evidence.
- Investigating alerts.
- Collecting evidence.
- Escalating incidents in line with defined runbooks and procedures.
- Collaborate with cross-functional teams, including Risk & compliance, IT, legal, human resources, and operations, to ensure security and compliance requirements are met.
- Engage with industry groups to maintain awareness of best practices and emerging trends.
- Provide guidance and recommendations to management and employees on security-related matters.
- Foster a culture of security awareness and accountability throughout the organisation.
Qualifications & Experience
- Bachelor's degree in Information Security, Cybersecurity, Computer Science, or a related field (or equivalent practical experience).
- 0-3 years' experience in a security, IT, SOC, or technical operations role.
- Foundational understanding of:
- Cloud security concepts (preferably Microsoft Azure).
- Identity and access management principles.
- Logging, monitoring, and alerting.
Certifications
- BCS Certificate in Information Security Management Principles (CISMP).
- ISO/IEC 27001 Foundation or Awareness (desirable).
- Microsoft AZ-900 - Azure Fundamentals.
- Microsoft SC-200 - Security Operations Analyst.
Soft Skills and Leadership
- Leadership, communication, and stakeholder engagement skills across technical and non-technical teams.
- Ability to influence and educate teams on security awareness and compliance best practices.
- Comfortable working in high-trust, regulated environments with executive-level visibility.
- Highly organised, analytical, and proactive in identifying and mitigating risks.
Junior Security Engineer - GRC in Knutsford employer: Custodia
Contact Detail:
Custodia Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Junior Security Engineer - GRC in Knutsford
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of ISO/IEC 27001 and SOC 2 requirements. Be ready to discuss how you've applied security best practices in past roles or projects. Show them you're not just a candidate, but a passionate future team member!
✨Tip Number 3
Don’t forget to showcase your soft skills! Communication and collaboration are key in this role. Share examples of how you've worked with cross-functional teams or educated others on security practices during your interviews.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our team at Custodia.
We think you need these skills to ace Junior Security Engineer - GRC in Knutsford
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Junior Security Engineer role. Highlight any relevant experience or skills that align with the job description, especially around security compliance and operational roles.
Craft a Compelling Cover Letter: Your cover letter should tell us why you're passionate about security and how your background makes you a great fit for our team. Don’t just repeat your CV; use this space to showcase your personality and enthusiasm!
Showcase Your Skills: In your application, be sure to mention any specific tools or frameworks you’re familiar with, like ISO 27001 or Microsoft Sentinel. We love seeing candidates who are proactive about their learning and development in the security field.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re keen on joining our team!
How to prepare for a job interview at Custodia
✨Know Your Stuff
Make sure you brush up on your knowledge of ISO/IEC 27001 and SOC 2 Type II requirements. Familiarise yourself with the key concepts of security compliance and assurance, as well as any relevant tools like Microsoft Sentinel. This will show that you're not just interested in the role but also understand its core responsibilities.
✨Show Your Problem-Solving Skills
Be prepared to discuss how you've tackled security-related challenges in the past, even if they were in a different context. Think about specific examples where you identified risks or gaps and how you addressed them. This will demonstrate your analytical skills and proactive approach to security.
✨Ask Smart Questions
Prepare thoughtful questions about the company's security culture and how they handle compliance. Inquire about their current challenges in maintaining audit readiness or how they foster a culture of security awareness. This shows your genuine interest in the role and helps you gauge if it's the right fit for you.
✨Demonstrate Team Spirit
Since collaboration is key in this role, be ready to talk about your experience working with cross-functional teams. Highlight instances where you successfully communicated security practices to non-technical colleagues or contributed to team projects. This will showcase your ability to engage with various stakeholders effectively.