GRC Lead - ISO27001

GRC Lead
Location: Birmingham, Leeds, Nottingham, Derby, or Manchester (2 days a week in office)
Salary: £80,000

Are you an experienced IT Compliance and Controls professional seeking your next challenge? Join a dynamic global organization committed to excellence in IT security, compliance, and governance. This is an exciting opportunity to lead IT compliance initiatives, collaborate with stakeholders, and make a tangible impact.

Role Overview
As the IT Compliance & Controls Lead, you will report to the Head of Cyber Security and play a key role in enhancing IT compliance and governance standards across the organization. This client-facing role requires expertise in ISO27001 implementation, supplier assurance, and a proven ability to communicate effectively with stakeholders at all levels.

Key Responsibilities
* Develop and maintain an inventory of regulatory, commercial, and organizational compliance requirements.
* Facilitate the creation and maintenance of technology compliance policies.
* Lead internal and external audits, ensuring continuous improvement of IT controls.
* Manage compliance issue tracking and resolution processes.
* Provide regular reporting on IT compliance risks and control effectiveness to senior management and other stakeholders.
* Benchmark organizational standards against ISO27001 and NIST frameworks.
* Automate and streamline IT governance processes using GRC tools.
* Create and deliver IT compliance training programs to enhance awareness across the organization.
* Collaborate with clients to understand and meet their compliance requirements, ensuring high standards of supplier assurance.
* Drive cultural change to integrate IT security into system and process design.
* Provide strategic input into the organization's Cyber Security roadmap.

Skills and Experience
* Extensive experience in IT compliance, audit management, and control frameworks.
* Proven success in implementing and managing ISO27001 standards.
* Strong client-facing experience, including supplier assurance.
* Excellent communication, governance, risk management, and compliance skills.
* Experience in managing or leading small teams is highly desirable.
* Industry certifications in legal, compliance, information security, or business continuity are advantageous.
* Ability to work effectively in a fast-paced environment and adapt to shifting priorities.

What's on Offer
* Competitive salary of £80,000.
* Hybrid working arrangements (two days onsite per week).
* Opportunity to work with a globally recognized organization.
* Professional growth and development opportunities, including mentoring and structured training programs.
* Comprehensive benefits package, including healthcare, retirement planning, and wellness support.
* A commitment to diversity and inclusion, fostering a culture where all employees can thrive.

The Recruitment Process
The selection process includes:
1. An informal 30-minute discussion with the hiring manager.
2. A two-stage interview process, including a presentation on a relevant information security risk or the benefits of an ISMS.

This role is urgent, with an incumbent leaving in late February, so availability to start promptly is highly desirable