At a Glance
- Tasks: Lead a dynamic team in managing security and compliance across global operations.
- Company: Join a leading financial services firm focused on innovation and security.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Work in a fast-paced environment with a focus on continuous improvement.
- Why this job: Make a real impact in security while leading a diverse, international team.
- Qualifications: Proven experience in security management and strong communication skills.
The predicted salary is between 80000 - 100000 € per year.
We are looking for an experienced GRC Lead to join our Security Team. As the Security GRC Lead, you will own our Security GRC services. This role sits at the intersection of security, engineering, group and regional operations. You will manage two distinct pillars: GRC Operations and our Regional Information Security Officer Team. You will also provide guidance and leadership to our first line Security Controls Testing team.
Key Responsibilities
- Team Leadership: Lead and mentor a multidisciplinary, international team. Set clear objectives, manage performance, and foster a culture of technical excellence.
- Regulatory and Audit Engagement: Act as a contact point for regulators and auditors for matters relating to information security and technology risk. Ensure that regulatory obligations are understood, mapped to the control framework, and that we are ready for audits and inspections.
- Controls Assurance: Provide oversight and support to the Controls Testing team as we build a continuous assurance model.
- Risk Management: Own our security risk management processes, integrating with enterprise risk management processes and collaborating closely with the 2LoD Technology Risk team.
- Regional Strategy: Support the Regional ISO team to navigate local regulatory requirements while maintaining a consistent global security posture.
About You
- Deep understanding of the financial services industry and a track record of managing security in a high‑growth environment.
- Experience managing international teams and working across different time zones and cultural contexts.
- Hands‑on experience working in cloud‑native technology environments.
- Broad knowledge of international information security frameworks (ISO27001, NIST CSF, PCI‑DSS) and technology risk regulations (DORA, NYDFS 500, CPS234).
- Experience working directly with international regulators.
- Excellent communication and stakeholder management skills.
- Holder of an internationally recognised security certification (CISSP, CISM, MCIT etc.).
Security GRC Lead in London employer: hackajob
Join a dynamic and innovative company that prioritises security and compliance, offering a collaborative work culture where your expertise as a Security GRC Lead will be valued. With a focus on employee growth, we provide ample opportunities for professional development and mentorship within a diverse, international team. Located in a vibrant area, our workplace fosters creativity and engagement, making it an excellent environment for those seeking meaningful and rewarding employment.
StudySmarter Expert Advice🤫
We think this is how you could land Security GRC Lead in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the security and GRC space. Attend industry events or webinars, and don’t be shy about introducing yourself. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your expertise! Create a personal brand online by sharing insights on platforms like LinkedIn. Post articles or comment on relevant discussions to demonstrate your knowledge in security frameworks and risk management.
✨Tip Number 3
Prepare for interviews by brushing up on your leadership skills. Be ready to discuss how you’ve managed teams and navigated regulatory challenges in the past. Use specific examples to showcase your experience and problem-solving abilities.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Keep an eye on our job postings and make sure your application stands out by tailoring it to the role.
We think you need these skills to ace Security GRC Lead in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security GRC Lead role. Highlight your experience in managing security in high-growth environments and your understanding of international information security frameworks. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for our team. Mention your experience with regulatory engagement and team leadership, and don’t forget to show a bit of your personality. We love seeing genuine enthusiasm!
Showcase Your Certifications:If you've got any internationally recognised security certifications like CISSP or CISM, make sure they’re front and centre in your application. These credentials are super important for us, and we want to know how they’ve shaped your approach to security management.
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s the easiest way for us to keep track of your application and ensure it gets to the right people. Plus, it shows you’re serious about joining our team!
How to prepare for a job interview at hackajob
✨Know Your GRC Inside Out
Make sure you have a solid grasp of Governance, Risk, and Compliance (GRC) principles, especially in the context of the financial services industry. Brush up on relevant frameworks like ISO27001 and NIST CSF, as well as technology risk regulations. Being able to discuss these confidently will show that you're not just familiar with the concepts but can apply them effectively.
✨Showcase Your Leadership Skills
As a Security GRC Lead, you'll be managing a multidisciplinary team. Prepare examples of how you've successfully led teams in the past, particularly in international settings. Highlight your ability to set clear objectives and foster a culture of excellence, as this will resonate well with the interviewers.
✨Prepare for Regulatory Discussions
Since you'll be acting as a contact point for regulators and auditors, it's crucial to demonstrate your experience in these areas. Be ready to discuss specific instances where you've engaged with regulatory bodies and how you ensured compliance with security standards. This will show that you understand the importance of regulatory engagement in maintaining security posture.
✨Communicate Effectively
Excellent communication is key in this role. Practice articulating complex security concepts in a way that's easy to understand. Think about how you can convey your ideas clearly to stakeholders from various backgrounds. This will not only help you in the interview but also in your future role.
