Senior GRC Consultant (UK) - Dionach by Nomios in London

Join to apply for the Senior GRC Consultant (UK) role at Dionach by Nomios. This role offers flexibility to work remotely, with occasional visits to client sites. Alternatively, you can choose a hybrid arrangement and work from our offices in Oxford or Glasgow, if preferred.

Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally.

Dionach by Nomios holds impressive certifications, including CREST, Cyber Scheme, CHECK, PCI QSA, SWIFT CSCF and ISO 27001. With our focus on enhancing customers' security and fostering team development, you will be joining a company that prioritizes both your growth and the safety of our clients.

• Hybrid Working: Flexibility to work remotely or use our UK offices around client visits.
• Professional Growth: Access to training labs, certification sponsorship, and time for skill development.
• Well-being Focus: Private health insurance, eye care plan, income protection, EAP scheme, and well-being platform.
• Additional Perks: Employee benefits and discounts platform.

At Dionach by Nomios, we believe that diversity fuels innovation. We're dedicated to creating an inclusive workplace where everyone feels valued and respected. We welcome applications from all backgrounds, perspectives, and experiences, and we're committed to being an equal opportunity employer. We do not discriminate based on race, religion, gender, age, disability, or any other legally protected status.

We encourage candidates from underrepresented groups to apply and are committed to providing a supportive and accessible environment for all our employees. If you require accommodations during the application process, let us know, and we'll work to meet your needs.

As a Senior GRC Consultant within our highly skilled Cyber Security Team you will be responsible for contributing to our information security consultancy, with opportunities to work on information security assessments within sizeable projects, conduct ISO 27001 audits, help implement aspects of ISO 27001, and engage in risk management. There is also potential for growth into related fields such as PCI DSS, privacy, and business continuity.

• Recognized ISO 27001 Lead Auditor qualification.
• Significant experience in auditing ISO 27001 based Information Security Management Systems.
• Significant experience in consulting and implementing Information Security Management Systems.
• Strong knowledge of regulatory frameworks such as the GDPR.
• Significant previous IT experience.
• Ability to assess the impact of regulatory changes and advise clients on best practices.
• Experience of working as the lead auditor or consultant and of working in teams.
• Outstanding verbal communication skills.
• Excellent report writing skills with the ability to explain information security risks to non-technical senior stakeholders.
• Proven project management experience in executing GRC projects within complex organizations.
• Ability to handle multiple projects and deadlines, ensuring timely delivery of compliance programs.

• Experience of AI governance and auditing or implementing an ISO 42001 AIMS.
• Information security qualifications such as CISSP, CISA, or CISM.
• Familiarity with GRC cloud-based systems.
• Experience of PCI DSS or a PCI QSA.
• Experience auditing SWIFT CSCF.
• Developing and providing training.
• Writing policies and technical documents.
• Managing a team or leading teams.

Location: Oxfordshire, England, United Kingdom. Employment type: Full-time. Job function: Information Technology. Industry: IT Services and IT Consulting.

If you are keen to join a growing company and feel you will be a great candidate for this role, please apply.