Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and implement security strategies to protect data and ensure compliance.
- Company: Join NTT DATA, a global leader in security services with a diverse culture.
- Benefits: Competitive salary, professional development, and a supportive work environment.
- Why this job: Make a real impact in cybersecurity while working with brilliant minds.
- Qualifications: 5+ years in information security and strong understanding of compliance frameworks.
- Other info: Inclusive workplace with opportunities for growth and innovation.
The predicted salary is between 36000 - 60000 £ per year.
NTT DATA is one of the world's largest global security service providers. We are looking for passionate, curious, and motivated individuals to join our team. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services enables you to achieve great things by working with brilliant colleagues and clients on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We offer a range of inclusion networks and a culture that partners with customers every day. Upon joining the NTT DATA UK family, you will experience a culturally diverse organisation living our values of Clients First, Teamwork and Foresight.
At NTT DATA UK, we are proud to support and invest in our people. We offer a variety of rewarding career paths and opportunities to develop professionally with access to cutting edge innovation.
Responsibilities
- Governance: direct, oversee, design, implement or operate within enterprise-level cyber and information security structures, policies, procedures, processes and controls to support regulatory, legal, risk, environmental and operational requirements and ensure compliance.
- Policy and Procedure Management: direct, develop or maintain organisational cyber and information security policies, standards and processes, using recognised standards (e.g. ISO/IEC 27000 family, NIST CSF) where appropriate; apply security classifications.
- Risk Management: develop cyber and information security risk management strategies and controls, balancing technical, physical, procedural and personnel controls; identify assets, threats, impacts, and costs to assess vulnerabilities and risks.
- Data Privacy: direct, oversee, design, implement, contribute to, or operate within structures and controls to manage protection of personal data, privacy and human rights, ensuring regulatory compliance (e.g. GDPR, Data Protection).
- Internal Controls Oversight: establish and monitor internal controls to safeguard data and assets, conducting regular reviews and audits.
- Stakeholder Engagement: act as a liaison, guiding internal teams, external partners, and regulatory authorities; provide remediation guidance and prepare management reports to track remediation activities.
- Continuous Improvement: identify opportunities for process enhancements, drive initiatives to bolster governance framework and security posture; assess and test control effectiveness and document compliance levels to identify risks and gaps.
Qualifications
- 5+ years' varied experience in information security, data protection, risk management, enterprise IT, legal or relevant compliance roles.
- Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53 / CSF, NIS/NIS2, DORA, UK CNI / OT / IIOT compliance.
- Hands-on experience building credibility with external stakeholders, including enterprise clients, critical system vendors, certification auditors and regulatory bodies.
- Proven leadership skills with the ability to guide and mentor teams and influence senior stakeholders in a GRC, security, or risk management role.
- A hands-on approach balancing strategic oversight with direct involvement in security tasks.
- Excellent communication skills to present complex information clearly to non-technical stakeholders.
- Ability to explain complex topics to a diverse range of audiences.
- Strong attention to detail and the ability to deliver high-quality work.
- A valid right to work in the UK and eligibility to obtain UK SC clearance.
- CISA, CRISC, CISM or CISSP certification are advantageous.
We are an equal opportunities employer and are committed to promoting equity and diversity in our employment practices. We are a Disability Confident Committed Employer and guarantee an interview to applicants who declare a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know.
Security Consultant GRC in London employer: NTT DATA UK Ltd.
Contact Detail:
NTT DATA UK Ltd. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Consultant GRC in London
✨Tip Number 1
Network like a pro! Reach out to current employees at NTT DATA through LinkedIn or other platforms. Ask them about their experiences and any tips they might have for landing a role in security consulting.
✨Tip Number 2
Prepare for the interview by brushing up on your knowledge of GRC frameworks like ISO 27001 and NIST. We want to see that you can talk the talk, so be ready to discuss how you've applied these in past roles.
✨Tip Number 3
Showcase your leadership skills! Think of examples where you've guided teams or influenced stakeholders. We love candidates who can demonstrate their ability to lead in a GRC context.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our team.
We think you need these skills to ace Security Consultant GRC in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Consultant GRC role. Highlight your experience in information security, risk management, and compliance frameworks like ISO 27001 or NIST. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about this role and how your background makes you a great fit. Don’t forget to mention any relevant certifications like CISA or CISSP that you hold.
Showcase Your Communication Skills: Since you'll be presenting complex information to non-technical stakeholders, make sure to demonstrate your communication skills in your application. Use clear and concise language, and avoid jargon where possible. We love clarity!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to track your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at NTT DATA UK Ltd.
✨Know Your Frameworks
Make sure you brush up on key security governance, risk, and compliance frameworks like ISO 27001 and NIST CSF. Being able to discuss these frameworks confidently will show that you understand the core of what the role entails.
✨Showcase Your Experience
Prepare specific examples from your past roles where you've successfully implemented security policies or managed risks. This will help demonstrate your hands-on experience and how it aligns with the responsibilities of the Security Consultant GRC position.
✨Communicate Clearly
Practice explaining complex security concepts in simple terms. Since you'll be liaising with non-technical stakeholders, being able to communicate effectively is crucial. Consider doing mock interviews with friends to refine this skill.
✨Ask Insightful Questions
Prepare thoughtful questions about the company's approach to security and compliance. This not only shows your interest in the role but also gives you a chance to assess if the company’s values align with yours.
