Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support cyber resilience initiatives and ensure compliance with evolving UK cyber security standards.
- Company: Join a major Operator of Essential Services focused on cyber security.
- Benefits: Hybrid work model, competitive pay, and the chance to make a real impact.
- Why this job: Play a key role in enhancing cyber security for essential services.
- Qualifications: Experience in cyber security programmes and strong communication skills required.
- Other info: Opportunity for career growth in a dynamic regulatory environment.
The predicted salary is between 60000 - 75000 £ per year.
We are seeking an experienced Cyber Security Governance, Risk & Compliance Analyst to join a major Operator of Essential Services (OES) on an initial 12‑month contract. This role plays a key part in strengthening cyber resilience, supporting regulatory compliance activities, and ensuring alignment with the UK’s evolving cyber security standards.
About the Role
You will support a portfolio of cyber resilience and regulatory initiatives, focusing on:
- Coordinating and delivering the Annual NIS Self‑Assessment and Improvement Report
- Ensuring compliance with NIS Regulations, Ofgem expectations, and the Enhanced Cyber Assessment Framework (ECAF)
- Enhancing and maturing the organisation’s Incident Response Framework
- Designing and delivering scenario‑based incident response exercises for senior leadership
- Conducting comprehensive reviews of the Cyber Risk Register
- Supporting assurance activities across NIS, Ofgem, EU and UK regulatory requirements, and the Cyber Security Resilience Bill
- Contributing to planning, coordination, and reporting across the Cyber Security Roadmap
- Providing project and programme management support, including supplier management, RAID tracking and delivery governance
- Supporting ongoing maintenance of the ISMS, including policies, procedures, governance, and assurance tasks
About You
We are looking for someone who has:
- Strong experience delivering or supporting cyber security programmes, ideally in a regulated sector
- Knowledge of NIS Regulations, CAF, and Ofgem cyber security expectations
- Experience delivering incident response exercises and associated documentation
- A solid understanding of cyber risk management and threat assessment
- Strong communication and stakeholder engagement skills
- The ability to manage multiple workstreams concurrently
- Experience with UK/EU ISMS frameworks (ISO 27001 or similar) is highly beneficial
- A background in sectors such as utilities, energy, transport, or other regulated environments is advantageous
Working Pattern
Hybrid role based in London (1/2 trips per week). Occasional travel expected (Belgium and Norfolk).
Why This Contract
This is an opportunity to have a direct impact on strengthening cyber security resilience within an essential services environment. You will play a central role in regulatory compliance, organisational readiness, and the uplift of key governance and risk processes. If you have strong GRC experience in regulated environments and are looking for a contract where you can make a tangible impact, we would welcome your application.
Senior GRC Analyst in Slough employer: InfoSec People Ltd
Contact Detail:
InfoSec People Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior GRC Analyst in Slough
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, especially those who work in regulated sectors. A friendly chat can lead to insider info about job openings or even referrals.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of NIS Regulations and the Enhanced Cyber Assessment Framework. We want you to be ready to discuss how your experience aligns with the role's requirements.
✨Tip Number 3
Showcase your incident response skills! Be ready to share examples of scenario-based exercises you've delivered. This will demonstrate your hands-on experience and understanding of the role's key responsibilities.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who take the initiative to connect directly with us.
We think you need these skills to ace Senior GRC Analyst in Slough
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of Senior GRC Analyst. Highlight your experience with cyber security programmes and any relevant regulations like NIS and Ofgem. We want to see how your background aligns with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your skills can help strengthen our cyber resilience. Keep it concise but impactful – we love a good story!
Showcase Relevant Experience: When detailing your experience, focus on specific projects or initiatives you've led that relate to incident response exercises or risk management. We’re keen to see how you’ve made a difference in previous roles, especially in regulated sectors.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it’s super easy!
How to prepare for a job interview at InfoSec People Ltd
✨Know Your Cyber Security Stuff
Make sure you brush up on your knowledge of NIS Regulations, Ofgem expectations, and the Enhanced Cyber Assessment Framework. Be ready to discuss how you've applied this knowledge in past roles, as it shows you're not just familiar with the terms but can actually implement them.
✨Showcase Your Incident Response Skills
Prepare examples of incident response exercises you've designed or delivered. Talk about the scenarios you created and how they helped senior leadership understand their roles during a cyber incident. This will demonstrate your hands-on experience and strategic thinking.
✨Engage with Stakeholders
Highlight your communication skills by discussing how you've engaged with various stakeholders in previous roles. Share specific instances where you coordinated with teams or managed multiple workstreams, as this is crucial for the role and shows your ability to collaborate effectively.
✨Be Ready for Scenario Questions
Expect scenario-based questions that test your problem-solving abilities in real-world situations. Think through potential challenges related to cyber resilience and compliance, and be prepared to articulate your thought process and solutions clearly.