At a Glance
- Tasks: Design and maintain security governance structures and risk management frameworks.
- Company: Sword, a leader in business technology solutions for various sectors.
- Benefits: Competitive salary, flexible working, and personalised career development.
- Other info: Inclusive workplace culture with a focus on diversity and professional growth.
- Why this job: Make a real impact on cybersecurity and work with innovative technology.
- Qualifications: Experience in information security policies and risk reporting; relevant certifications preferred.
The predicted salary is between 60000 - 80000 £ per year.
Overview
Sword is a leading provider of business technology solutions within the Energy, Public and Finance Sectors, driving real transformational change within our clients. We use proven technology, specialist teams and domain expertise to build solid technical foundations across platforms, data and business applications. We have a passion for using technology to solve business problems, working in partnership with our clients to help in achieving their goals.
This contract engagement represents an opportunity to design and maintain our clients' security governance structures, risk management frameworks, policy ecosystem, and security awareness strategy. This role ensures cybersecurity is effectively governed, risk-managed, and communicated across all levels of the organisation through structured frameworks, stakeholder engagement, and compliance oversight.
Responsibilities and qualifications
- Experience with setting Information Security Policy and Frameworks
- Experience with Technology Risk Reporting and engagement with Enterprise Risk and Audit Committees
- Excellent understanding of regulatory frameworks e.g. UK CAF, Cyber Security and Resilience Bill, NIS2
- Confident engaging senior leadership and explaining the current risk position and options for risk reduction
- Familiar with IT security frameworks such as the NIST CSF
- Bachelor’s in CS, InfoSec, or equivalent experience
- Certifications: GICSP, CISSP, or equivalent qualification
This opportunity is offered on a contract basis and can operate Outside IR35 or on a PAYE basis.
Benefits
At Sword, our core values and culture are based on caring about our people, investing in training and career development, and building inclusive teams where we are all encouraged to contribute to achieve success. We offer comprehensive benefits designed to support your professional development and enhance your overall quality of life. In addition to a Competitive Salary, here's what you can expect as part of our benefits package:
- Personalised Career Development: We create a development plan customised to your goals and aspirations, with a range of learning and development opportunities within a culture that encourages growth.
- Flexible working: Flexible work arrangements to support your work-life balance. We can’t promise to always be able to meet every request, however, are keen to discuss your individual preferences to make it work where we can.
- A Fantastic Benefits Package: This includes generous annual leave allowance, enhanced family friendly benefits, pension scheme, access to private health, well-being, and insurance schemes.
Diversity and Inclusion
At Sword we are dedicated to fostering a diverse and inclusive workplace and are proud to be an equal opportunities employer, ensuring that all applicants receive fair and equal consideration for employment, regardless of whether they meet every requirement. If you don’t tick all the boxes but feel you have some of the relevant skills and experience we’re looking for, please do consider applying and highlight your transferable skills and experience. We embrace diversity in all its forms, valuing individuals regardless of age, disability, gender identity or reassignment, marital or civil partner status, pregnancy or maternity status, race, colour, nationality, ethnic or national origin, religion or belief, sex, or sexual orientation. Your perspective and potential are important to us.
Accessibility
If we can do anything to help make the hiring process more accessible, please let our talent acquisition team know when you apply so we can support any adjustments.
GRC Lead employer: Sword Group
Sword is an exceptional employer that prioritises the well-being and professional growth of its employees, offering personalised career development plans and a flexible working environment to enhance work-life balance. With a strong commitment to diversity and inclusion, Sword fosters a collaborative culture where every team member is encouraged to contribute to success, all while providing a comprehensive benefits package that supports both personal and professional needs.
StudySmarter Expert Advice🤫
We think this is how you could land GRC Lead
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, join online forums, or even hit up LinkedIn. The more you engage with others, the better your chances of landing that GRC Lead role.
✨Show Off Your Skills
When you get the chance to chat with potential employers, don’t hold back! Share specific examples of how you've tackled security governance and risk management in the past. We want to see your expertise shine!
✨Tailor Your Approach
Every company is different, so make sure you tailor your conversations to fit Sword's values and culture. Highlight how your experience aligns with their mission to drive transformational change in the energy and finance sectors.
✨Apply Through Our Website
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take the initiative to connect directly with us.
We think you need these skills to ace GRC Lead
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience with Information Security Policies and Frameworks. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant achievements!
Showcase Your Knowledge:Demonstrate your understanding of regulatory frameworks like the UK CAF and Cyber Security and Resilience Bill in your application. We love seeing candidates who are well-versed in the latest industry standards and can engage confidently with senior leadership.
Be Clear and Concise:When writing your application, keep it clear and to the point. Use bullet points where possible to make it easy for us to see your qualifications and experience at a glance. Remember, we’re looking for clarity in communication just as much as expertise!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about our company culture and values!
How to prepare for a job interview at Sword Group
✨Know Your Frameworks
Make sure you’re well-versed in the relevant regulatory frameworks like UK CAF and NIS2. Brush up on how these frameworks apply to the role of GRC Lead, as you’ll need to demonstrate your understanding during the interview.
✨Engage with Confidence
Practice articulating your thoughts clearly and confidently, especially when discussing risk management and security governance. You might be asked to explain complex concepts to senior leadership, so being able to communicate effectively is key.
✨Showcase Your Experience
Prepare specific examples from your past roles where you’ve successfully set Information Security Policies or engaged with Enterprise Risk Committees. Use the STAR method (Situation, Task, Action, Result) to structure your responses.
✨Ask Insightful Questions
At the end of the interview, don’t shy away from asking questions that show your interest in the company’s culture and values. Inquire about their approach to diversity and inclusion or how they support career development, as this aligns with their core values.
