Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security initiatives in exciting projects and ensure compliance with top-notch security standards.
- Company: Join a prestigious law firm known for its commitment to security and excellence.
- Benefits: Attractive salary, professional growth opportunities, and a supportive work environment.
- Why this job: Make a real difference by embedding security best practices in transformative projects.
- Qualifications: Experience in information security and strong risk management skills required.
- Other info: Collaborative culture with opportunities to work across diverse teams.
The predicted salary is between 60000 - 80000 £ per year.
We are seeking an experienced Information Security Business Change Partner (GRC) to join a leading law firm, supporting both strategic transformation initiatives and business-as-usual (BAU) change. This role is critical in ensuring that all projects are delivered securely and in alignment with established Information Security policies, standards, and governance frameworks.
The Role
As the Information Security Business Change Partner, you will act as the primary security representative across assigned projects, embedding security best practices throughout the full project lifecycle. You will work closely with stakeholders across technology, business teams, and leadership to ensure risk is effectively managed and communicated.
Key Responsibilities
- Act as the single point of contact for information security across assigned projects
- Identify, assess, and manage security considerations throughout project delivery
- Ensure projects are delivered in line with the firm’s Change Governance Framework (including engagement, planning, build, assurance, delivery, and transition)
- Conduct and manage risk assessments, including tracking and mitigating residual risks post-project
- Produce clear, concise reports and updates for senior leadership
- Collaborate with cross-functional teams to embed secure-by-design principles
About You
- Proven experience in information security within project or change environments
- Strong understanding of risk management and governance frameworks
- Experience working within professional services or regulated environments (legal, financial services preferred)
- Excellent stakeholder management and communication skills
- Ability to translate complex security concepts into clear business language
- Relevant certifications (e.g., CISSP, CISM, CRISC) are advantageous
Information Security Business Partner (GRC) employer: DVF Recruitment
Contact Detail:
DVF Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Business Partner (GRC)
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those in law firms or GRC roles. A friendly chat can lead to insider info about job openings that aren't even advertised yet.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of risk management and governance frameworks. We want you to be able to discuss how you've embedded security best practices in past projects with confidence!
✨Tip Number 3
Showcase your communication skills! Practice explaining complex security concepts in simple terms. This will help you connect with stakeholders and demonstrate your ability to translate technical jargon into business language.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Information Security Business Partner (GRC)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Business Change Partner role. Highlight your experience in managing security within project environments and any relevant certifications you have. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Mention specific projects where you've embedded security best practices and how you've communicated risk effectively to stakeholders. Let us know what makes you tick!
Showcase Your Communication Skills: Since this role involves a lot of stakeholder management, make sure to demonstrate your communication skills in your application. Use clear and concise language, and if possible, provide examples of how you've translated complex security concepts into business-friendly terms.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications better and ensures you don’t miss out on any important updates. Plus, it shows us you're keen on joining our team!
How to prepare for a job interview at DVF Recruitment
✨Know Your Stuff
Make sure you brush up on your knowledge of information security, especially in relation to governance, risk management, and compliance (GRC). Familiarise yourself with the specific frameworks and standards relevant to the law firm sector, as this will show that you understand the unique challenges they face.
✨Showcase Your Stakeholder Skills
Prepare examples of how you've successfully managed stakeholders in previous roles. Think about times when you had to communicate complex security concepts to non-technical audiences. This will demonstrate your ability to bridge the gap between technical and business teams, which is crucial for this role.
✨Be Ready for Scenario Questions
Expect to be asked about how you would handle specific project scenarios related to information security. Practice articulating your thought process for identifying risks and implementing security best practices throughout a project lifecycle. This will help you convey your strategic thinking and problem-solving skills.
✨Prepare Your Questions
Have a few insightful questions ready to ask at the end of the interview. This could be about the firm's approach to embedding security in projects or how they measure the success of their change initiatives. Asking thoughtful questions shows your genuine interest in the role and helps you assess if the firm is the right fit for you.