GRC ConsultantAbout us… We’re looking for a GRC Consultant to come and join our brilliant team of Information Security Consultants. This is a fantastic opportunity to join a professional team and to work in a forward thinking and stimulating working environment. RightCue’s aspiration is to develop and grow its team by attracting and recruiting the best, ensuring its readiness for future, where the standards set are consistently high and client and employee rewards are great.About you… Communication and collaboration are central to effective employee performance here at RightCue. Having the right technical skills and qualifications is undoubtedly important, however, how you interact, engage and build trusting sustainable relationships is what will set us apart here at RightCue. This is a client-facing position and client relations will therefore need to have been central to your career path to date. Due to the sensitive nature of our business, you will be expected to maintain the highest level of data security and confidentiality. The position requires flexibility to work across differing time-zones.Job title-GRC ConsultantTotal Experience -2 to 5 yearsLocation-Work from homeValid Passport is mandatory Key responsibilities… Perform data gathering interviews to assist with the preparation of physical, software, information and PII asset registers Understand clients’ business and write bespoke security policies and procedures Performing security reviews of a range of different types of customer environments, i.e., on-premises, colocation/data centre or cloud under guidance of a senior consultant Undertaking client consultancy/projects, such as ISO 27001 implementation, Cyber Security Reviews, Risk Assessments, ISMS Management Ability to perform supplier assessment/cloud service assessments as per RightCue methodology Undertake risk assessments to an external standard with knowledge of multiple platforms and technologies, including cloud solutions Advise on implementing established governance processes and frameworks to bring the best possible value-add solutions to clients Support the implementation of ISO 27001 standard, CSA, CCM and other equivalent standards Implement data protection policies and procedures Support internal audits including GDPR audits Work with the consultants to perform business impact assessments, threat modelling and risk assessments Assist clients with management reports, implementation of controls, certification audits Escalate project delays, scope deviations, and projects risks to Team Leads Resolve any areas of concern raised by the client Ensure written reports and other technical information are prepared in a pertinent, concise and accurate manner for distribution to clients Provide proactive advice to clients on good security practices Technical skills… Excellent knowledge of IT networking, anti-malware technologies, security concepts, encryption, access controls and configuration management Good knowledge of security management systems, data protection, governance & international standards Broad understanding of the management of cybersecurity risk, tools, and techniques Ability to gather data, compile information, and prepare professional reports and presentations Experience in working with suppliers on data security, internal reviews/audits Liaising with businesses to resolve any issues of non-compliance 1+ years’ delivering ISO 27001 work or information security consulting or in-house information security role 2+ years of client-facing experience in cyber security 3+ years of information technology and network security experience Qualifications… You will ideally have or be studying towards one or more of the following or equivalent qualifications: B. Tech in IT, CISA, CISSP, ISO 27001 Lead Auditor/Lead Implementor, CCSK The description provided above is not intended to be an exhaustive list of all job duties, responsibilities, and requirements. Duties, responsibilities, and requirements may change over time and according to business need.What’s in it for you… Being part of a small but perfectly formed team, you will be afforded every opportunity to get involved and to develop excellent business and leadership skills. We value diversity and are committed to providing equal opportunities for all our employees and importantly, we focus on what you achieve and not how long you spend trying to achieve it.18 paid holidays 5 days working as per UK time Comparative Salary Flexibility to manage your own time and diary Growth opportunities – Funded Professional Certifications/Qualifications and Renewals * (Conditions apply) Home office set up support * (Conditions apply) Hybrid working Mediclaim reimbursement * (Conditions apply) Laptop Internet reimbursement*(Conditions apply) Recommend a Friend Scheme Work/Life Balance Annual Health checkupIf you would like to apply for this position, please email your latest CV to Surekha.goswami@ By sending your CV to the above mailbox you consent to us collecting and storing your CV/Application and contact details. We will hold this information securely and process it for recruitment purposes only. Please refer to our Privacy Statement for more details on our compliance with GDPR and Data Protection. The details of which can be found on our website.
Job Title
GRC consultant