At a Glance
- Tasks: Lead and grow the Compliance as a Service practice with strategic ownership.
- Company: Top-10 European Managed Service Provider with a focus on innovation.
- Benefits: Autonomy, heavy investment in professional development, and elite certifications.
- Other info: Join a rapidly growing firm with excellent career advancement opportunities.
- Why this job: Shape the future of GRC while advising high-level clients and driving innovation.
- Qualifications: Senior GRC experience and strong knowledge of Cyber Essentials and ISO 27001.
The predicted salary is between 80000 - 90000 £ per year.
Location: London Hybrid (3 Days Onsite, 2 Remote)
Job Type: Full-time, Permanent
The Opportunity
Are you a senior GRC expert ready to step out of a corporate cost-center and run your own practice? A top-10 European Managed Service Provider (MSP) is hiring an entrepreneurial Head of GRC to take full strategic and commercial ownership of its fast-growing Compliance as a Service (CaaS) business line. This role perfectly balances internal corporate governance with high-level client advisory and Virtual CISO (vCISO) delivery.
Key Responsibilities
- Practice Growth: Scale and productize the CaaS roadmap, driving revenue, pricing strategies, and service design.
- vCISO Delivery: Act as the trusted boardroom advisor to mid-market clients across cyber security, risk, and resilience.
- Core Frameworks: Lead client assessments and certifications across Cyber Essentials/CE+, ISO 27001, and UK GDPR.
- Innovation: Build next-generation AI Governance and operational resilience (BC/DR) frameworks.
- Internal Audit: Maintain the firm’s elite internal ISO certifications and audit readiness.
What We Need
- Senior GRC, InfoSec, or IT Audit experience, ideally within an MSP or tech consultancy.
- Strong practical knowledge of Cyber Essentials, UK GDPR, and ISO 27001.
- Exceptional executive presence—confident presenting risk and strategies to C-suite/board levels.
- Commercial acumen to partner with sales teams and expand client adoption.
- Desirable: CISSP, CISM, CRISC, or ISO 27001 Lead Auditor credentials.
Why Join Us?
- Autonomy: Run this practice like your own business unit with full SLT backing.
- Investment: Heavy funding for your ongoing professional development and elite certifications.
- Scale: Join an ambitious firm growing rapidly through organic expansion and acquisitions.
Apply today to lead the future of Compliance as a Service.
Head of GRC in London employer: THAMES 360
Join a top-10 European Managed Service Provider in London, where you will have the autonomy to lead your own Governance, Risk & Compliance practice with full support from senior leadership. Our vibrant work culture fosters innovation and collaboration, while we invest heavily in your professional development and elite certifications, ensuring you grow alongside our rapidly expanding business. Experience the unique advantage of working in a hybrid environment that balances onsite engagement with remote flexibility, making it an excellent place for meaningful and rewarding employment.
