Senior Governance, Risk & Compliance Specialist in Manchester

Senior Governance, Risk & Compliance (GRC) Specialist

Are you looking for an opportunity to apply your governance, risk, and compliance expertise in an environment where cyber security really matters? You’ll be joining Sopra Steria’s Aerospace, Defence and Security business, working at the front line of cyber security alongside experienced professionals who value collaboration, learning and high standards. As a Senior GRC Specialist, you’ll play an important role in developing and applying robust governance, risk management and compliance frameworks that support our clients and the wider business.

You’ll work closely with a wide range of stakeholders, including leadership teams and customers, helping to ensure we meet regulatory requirements, industry standards and contractual obligations. This is a role where your analytical thinking, technical knowledge and ability to communicate complex ideas clearly will make a real and visible impact.

This role is offered on a hybrid basis. You’ll be aligned to either our London, Manchester or Gloucestershire offices and expected to attend the office for meetings, collaboration, training or customer activity as required, with flexibility to work from home the rest of the time.

What you’ll be doing:

• Supporting and, in some cases, leading project-level security activities for client engagements, ensuring controls align with objectives and contractual requirements.
• Identifying and assessing cyber risks, evaluating their impact and supporting the development of appropriate mitigation strategies.
• Performing security assessments and supporting programmes of audit activity against relevant standards and frameworks.
• Implementing compliance measures to ensure alignment with applicable regulations, standards and industry best practice.
• Building and maintaining strong relationships with internal and customer stakeholders through effective engagement and influence.
• Contributing to security strategy development and supporting bid responses when required.

What you’ll bring:

• Experience working on consultancy engagements such as ISMS implementation, risk assessments, compliance audits and security strategy definition.
• A strong analytical and systematic approach, with the ability to select and apply appropriate standards, methods and tools.
• The ability to make decisions that positively influence project outcomes and team objectives.
• Experience presenting complex technical information to both technical and non-technical audiences.
• Good project management skills, with the ability to manage multiple priorities at the same time.
• A cyber or information security qualification such as CISSP, CISM, CCSP or ISO 27001 Lead Auditor.

It would be great if you had:

• Experience of cloud security implementation.
• Knowledge of identity and access management (IDAM).
• Exposure to operational technology (OT) environments.
• An understanding of security architecture principles.

If you’re interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!

Employment Details:

Employment Type: Full-time, Permanent.

Location: London, Manchester or Gloucestershire – hybrid working.

Security Clearance Level: eDV.

Internal Recruiter: Rebecca.

Salary: £45,000 – £60,000 per annum.

Benefits: 25 days annual leave with the choice to buy additional days, health cash plan, life assurance, and pension.

Although this role is advertised as full‑time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if you’re interested and need to work flexibly, we encourage you to apply and talk to us about what might be possible.

Loved reading about this job and want to know more about us? Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other.

We embrace difference as a source of creativity, innovation and competitive advantage and are striving to become a more diverse organisation. We welcome applications from people with a diverse variety of backgrounds and identities. We are committed to equality of opportunity for all and do not discriminate on the basis of race, religion, colour, gender, age, disability, sexual orientation or marital status. We have partnered with Vercida, the UK’s largest diversity and inclusion focused careers site, where all our vacancies are available in an accessible format. If you require any adjustments to the recruitment process, to enable you to perform to the best of your ability, please let us know when completing your application. We participate in the Disability Confident scheme and are committed to offering an interview to any candidate with a disability, who meets the minimum criteria for the role. If you believe this could apply to you, please let us know when completing your application.