Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team in managing information security and risk management activities.
- Company: Join a vital organisation in the UK healthcare sector making a positive societal impact.
- Benefits: Enjoy a competitive salary, excellent pension, and a supportive hybrid work environment.
- Why this job: Be part of a culture that values work/life balance and champions cyber security practices.
- Qualifications: Proven GRC Analyst experience with strong knowledge of security controls and team management.
- Other info: Fruition is an equal opportunities employer welcoming diverse applicants.
The predicted salary is between 52500 - 70500 £ per year.
Salary: Up to £66,500 + excellent pension and benefits
Location: Leeds (Hybrid)
I am currently recruiting a fantastic role for an organisation that plays a crucial role in the UK healthcare industry, making a positive impact on society. The role will play a key part in the organisation's GRC team, leading a team of 2 and taking the lead on key GRC activities. The organisation offers a supportive environment and truly values work/life balance.
Key Responsibilities
- Own the Information Security Assurance framework and programme.
- Design and perform reviews to provide assurance of information security controls effectiveness.
- Be responsible for establishing and implementing the information security and technology risk management programme.
- Identify, engage and manage 3rd party organisations to ensure appropriate security assurance activities are conducted.
- Lead on Secure by Design activities to ensure business and technical changes meet security requirements.
- Liaise with other bodies to contribute to the maturing of cyber security practices across the Health and Social care industry.
Required Skills/Experience
- Proven experience in a GRC Analyst role.
- Experience of mentoring or managing team members.
- Strong knowledge of Security controls across Microsoft based technologies, Endpoints, IdAM, Networks, Applications, Email and Cloud.
- Experience of authoring governance documentation (standards, policies, reporting, proposals, analysis).
- Experience of delivering culture, training and awareness programmes.
- Experience of working with Senior stakeholders to champion the security agenda.
If this role would be of interest, then please apply to this advert and I will be in contact to give you more detail.
Fruition are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation or age.
Cyber Security (GRC) Principal employer: Fruition Group
Contact Detail:
Fruition Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security (GRC) Principal
✨Tip Number 1
Network with professionals in the cyber security field, especially those who work in GRC roles. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends and challenges in the sector.
✨Tip Number 2
Familiarise yourself with the specific security controls and frameworks relevant to Microsoft technologies and healthcare. This knowledge will not only help you in interviews but also demonstrate your commitment to understanding the unique requirements of the role.
✨Tip Number 3
Prepare to discuss your experience in mentoring and managing teams. Think of specific examples where you've successfully led a team or contributed to a culture of security awareness, as this is a key aspect of the role.
✨Tip Number 4
Research the organisation's current GRC practices and any recent initiatives they have undertaken. Being able to speak knowledgeably about their work will show your genuine interest and help you stand out during discussions.
We think you need these skills to ace Cyber Security (GRC) Principal
Some tips for your application 🫡
Understand the Role: Before applying, make sure to thoroughly read the job description for the Principal GRC Analyst position. Understand the key responsibilities and required skills, as this will help you tailor your application to highlight relevant experiences.
Tailor Your CV: Customise your CV to reflect your experience in GRC roles, particularly focusing on your leadership skills and knowledge of security controls. Use specific examples that demonstrate your ability to manage teams and engage with stakeholders.
Craft a Compelling Cover Letter: Write a cover letter that not only outlines your qualifications but also expresses your passion for cyber security and its impact on the healthcare industry. Mention how your values align with the organisation's commitment to work/life balance and societal impact.
Highlight Relevant Achievements: In both your CV and cover letter, include quantifiable achievements related to information security assurance and risk management. This could be successful projects you've led or improvements you've made in previous roles that showcase your expertise.
How to prepare for a job interview at Fruition Group
✨Showcase Your GRC Expertise
Make sure to highlight your experience in Governance, Risk, and Compliance (GRC) during the interview. Be prepared to discuss specific projects where you've successfully implemented security frameworks or managed risk assessments, as this will demonstrate your capability for the role.
✨Demonstrate Leadership Skills
Since the role involves leading a team, it's essential to convey your leadership style and experience. Share examples of how you've mentored team members or led initiatives, focusing on how you foster collaboration and drive results within a team setting.
✨Prepare for Technical Questions
Expect technical questions related to security controls, especially around Microsoft technologies and cloud services. Brush up on your knowledge of security best practices and be ready to discuss how you've applied these in previous roles.
✨Engage with Stakeholders
The ability to work with senior stakeholders is crucial. Prepare to discuss how you've successfully communicated security agendas to non-technical audiences and influenced decision-making processes. This will show your capability to champion security within an organisation.
