Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Help clients manage cyber security through governance, risk, and compliance strategies.
- Company: Join NTT DATA, a global leader in security services with a collaborative culture.
- Benefits: Enjoy flexible work options, tailored benefits, and continuous learning opportunities.
- Why this job: Make a real impact in the world of cyber security while growing your career.
- Qualifications: 5+ years in information security, risk management, or compliance roles required.
- Other info: Be part of an inclusive team that values diversity and personal growth.
The predicted salary is between 36000 - 60000 £ per year.
NTT DATA is one of the world’s largest global security service providers, partnering with some of the most recognized security technology brands. We’re looking for passionate, curious, and motivated individuals to join our team. This vacancy will be joining our rapidly growing security consulting practice for the UK.
What you'll be doing:
- Governance: directs, oversees, designs, implements or operates within the set of multi-disciplinary structures, policies, procedures, processes and controls implemented to manage cyber and information security at an enterprise level. Supporting an organisation’s immediate and future regulatory, legal, risk, environmental and operational requirements and ensuring compliance with those requirements.
- Policy and Procedure Management: directs, develops or maintains organisational cyber and information security policies, standards and processes, using recognised standards (e.g. the ISO/IEC 27000 family, NIST CSF) where appropriate. Applies recognised cyber and information security standards and controls within an organisation, programme, project or operation.
- Risk Management: develops cyber and information security risk management strategies and controls, considering business needs, balancing technical, physical, procedural and personnel controls. Identifies and assesses information assets, threat specific information, business impacts, business benefits and costs to identify and assess potential vulnerabilities and risks.
- Data Privacy: directs, oversees, designs, implements, contributes to, or operates within the set of multi-disciplinary structures, policies, procedures, processes and controls to manage the protection of personal data, privacy and human rights, supporting regulatory, legal, risk, environmental and operational requirements, and ensuring compliance with those requirements. (e.g. GDPR, Data Protection).
- Internal Controls Oversight: Establish and monitor internal controls to safeguard data and assets, conducting regular reviews and audits.
- Stakeholder Engagement: Serve as a liaison, offering guidance and support to internal teams, external partners, and regulatory authorities. Providing remediation guidance and prepare management reports to track remediation activities.
- Continuous Improvement: Identify opportunities for process enhancements, driving initiatives to bolster governance framework and security posture. Assess and test the effectiveness of security controls, and document the compliance levels to identify risks and control gaps.
What experience you’ll bring:
- 5+ years' varied experience in information security, data protection, risk management, enterprise IT, legal or (relevant) compliance roles.
- Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53 / CSF, NIS/NIS2, DORA, UK CNI / OT / IIOT compliance.
- Hands-on experience building credibility with external stakeholders, including enterprise clients, critical system vendors, certification auditors and regulatory bodies.
- Proven leadership skills with the ability to guide and mentor teams, as well as influence and collaborate with senior stakeholders in a similar GRC, security, or risk management role.
- A hands-on approach with the ability to balance strategic oversight with direct involvement in security tasks.
- Excellent communication skills, with the ability to present complex information clearly and effectively to non-technical stakeholders.
- The ability to explain complex topics to a diverse range of audiences.
- Strong attention to detail and the ability to deliver high quality work.
- A valid right to work in the UK.
- Eligible to obtain UK SC clearance.
- CISA, CRISC, CISM or CISSP certification advantageous.
Who we are:
We’re a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation.
What we’ll offer you:
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a Disability Confident Committed Employer - we want to see every candidate performing at their best throughout the job application and interview process, if you require any reasonable adjustments during the recruitment process, please let us know and we look forward to hearing from you.
GRC Security Consultant in Birmingham employer: NTT DATA
Contact Detail:
NTT DATA Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Security Consultant in Birmingham
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the GRC space. Attend industry events, webinars, or even local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a personal website or LinkedIn profile that highlights your experience in governance, risk, and compliance. Share articles, insights, or projects you've worked on to demonstrate your expertise and passion for the field.
✨Tip Number 3
Prepare for interviews like it’s game day! Research NTT DATA and their security consulting practice thoroughly. Be ready to discuss how your background aligns with their needs and come armed with examples of how you've tackled similar challenges in the past.
✨Tip Number 4
Don’t just apply anywhere—apply through our website! It shows you're genuinely interested in joining our team at NTT DATA. Plus, it gives you a better chance of being noticed by the hiring managers who are looking for passionate candidates like you.
We think you need these skills to ace GRC Security Consultant in Birmingham
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the GRC Security Consultant role. Highlight your experience in governance, risk, and compliance, and don’t forget to mention any relevant certifications like CISA or CISSP. We want to see how your background aligns with what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to tell us why you’re passionate about security consulting and how your skills can help our clients. Be sure to mention specific experiences that relate to the job description – we love a good story!
Showcase Your Communication Skills: Since you'll be presenting complex information to non-technical stakeholders, make sure your application reflects your communication prowess. Use clear and concise language, and avoid jargon where possible. We appreciate clarity just as much as you do!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, you’ll find all the details you need about the role and our company culture there!
How to prepare for a job interview at NTT DATA
✨Know Your GRC Frameworks
Make sure you brush up on your knowledge of governance, risk, and compliance frameworks like ISO 27001 and NIST CSF. Be ready to discuss how you've applied these standards in past roles, as this will show your practical understanding and experience.
✨Showcase Your Stakeholder Engagement Skills
Prepare examples of how you've successfully engaged with stakeholders in previous positions. Highlight your ability to communicate complex information clearly to non-technical audiences, as this is crucial for the role.
✨Demonstrate Continuous Improvement Mindset
Think of specific instances where you've identified opportunities for process enhancements in your previous roles. Discuss how you implemented changes and the positive impact they had on security posture or compliance levels.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Practice articulating your thought process and decision-making steps when faced with compliance challenges or risk management issues.
