Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead governance, risk, compliance, and security awareness initiatives in a modernising organisation.
- Company: Dynamic organisation focused on enhancing security resilience and cultural change.
- Benefits: Competitive rate, opportunity for professional growth, and impactful leadership role.
- Why this job: Make a real difference in security posture while driving innovation and awareness.
- Qualifications: Professional certifications and extensive experience in information security or IT governance required.
- Other info: Join a pivotal role with excellent career advancement opportunities.
The predicted salary is between 43200 - 72000 £ per year.
We are seeking an experienced Head of InfoSec GRC & Awareness to lead governance, risk, compliance, and security awareness initiatives across an organisation at a time of significant modernisation. This pivotal role ensures a robust security posture by developing and enforcing policies, standards, and training programmes aligned with business objectives and regulatory requirements.
Duration: 6 months. Rate: Inside IR35, rate to be discussed.
Key Responsibilities- Lead the development and enforcement of enterprise-wide information security policies and standards.
- Drive security governance and cyber maturity through compliance, assurance reviews, and gap analysis.
- Oversee the Information Security Risk Management process.
- Conduct in-depth supplier due diligence / third-party assurance processes.
- Manage audit readiness and support internal/external audit activities.
- Own and deliver the organisation’s security awareness programme, including campaigns and tailored training.
- Depending on the candidate, also develop and implement an Operational Technology (OT) Security Assurance Framework.
- Professional certifications such as CISSP, CISM, ISO27001 Lead Auditor, CLAS, etc.
- Extensive experience in information security or IT governance within large, complex environments.
- Strong knowledge of security frameworks (ISO/IEC 27001, NIST CSF, CIS Controls, Cyber Essentials).
- Proven track record in risk management, policy development, and security awareness initiatives.
- Excellent communication, leadership, and influencing skills.
- Very strong experience of driving 3rd-party due diligence.
- Experience in Technical Assurance, OT Security Assurance and Penetration Testing is a bonus.
This is an excellent opportunity to lead a critical function within a dynamic organisation, ensuring security resilience and cultural change across the enterprise. For further information, please apply and I will be in touch.
Head of Information Security GRC & Awareness in England employer: TRIA
Contact Detail:
TRIA Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Information Security GRC & Awareness in England
✨Tip Number 1
Network like a pro! Reach out to your connections in the InfoSec world and let them know you're on the hunt for a Head of InfoSec GRC & Awareness role. You never know who might have the inside scoop on opportunities or can put in a good word for you.
✨Tip Number 2
Show off your expertise! Prepare a presentation or a portfolio that highlights your experience with security frameworks and risk management. This will not only demonstrate your knowledge but also set you apart from other candidates when you get the chance to meet potential employers.
✨Tip Number 3
Be proactive! Don’t just wait for job postings to come to you. Research companies that align with your values and reach out directly. Express your interest in leading their InfoSec initiatives and how you can help them achieve their security goals.
✨Tip Number 4
Apply through our website! We’ve got a streamlined application process that makes it easy for you to showcase your skills. Plus, it shows you’re serious about joining our team and helps us keep track of your application more efficiently.
We think you need these skills to ace Head of Information Security GRC & Awareness in England
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the job description. Highlight your experience in governance, risk, compliance, and security awareness initiatives. We want to see how your skills align with our needs!
Showcase Your Certifications: If you've got professional certifications like CISSP or ISO27001 Lead Auditor, flaunt them! These are key for us, so make sure they’re front and centre in your application.
Be Specific About Your Experience: When detailing your past roles, focus on specific achievements related to information security policies and standards. We love numbers and results, so if you’ve improved compliance rates or led successful training programmes, let us know!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at TRIA
✨Know Your Stuff
Make sure you’re well-versed in the key responsibilities listed in the job description. Brush up on your knowledge of information security policies, risk management processes, and compliance frameworks like ISO/IEC 27001 and NIST CSF. Being able to discuss these topics confidently will show that you’re the right fit for the role.
✨Showcase Your Experience
Prepare specific examples from your past roles that highlight your experience in governance, risk, and compliance. Think about times when you led initiatives or developed policies that improved security posture. This will help demonstrate your capability to handle the responsibilities of the position.
✨Communicate Clearly
As a leader, strong communication skills are essential. Practice articulating your thoughts clearly and concisely. Be ready to explain complex security concepts in simple terms, especially when discussing your approach to security awareness programmes and training initiatives.
✨Ask Insightful Questions
Prepare thoughtful questions about the organisation’s current security posture and future goals. This shows your genuine interest in the role and helps you gauge if the company aligns with your values and career aspirations. Plus, it gives you a chance to demonstrate your strategic thinking.