CrawlJobs Logo
NTT DATA Logo NTT DATA · Consulting

Security Consultant GRC

United Kingdom, London · Job Posted March 05, 2026
Apply Position
Job Link Share

Job Description

The Security Consultant (GRC) role involves leveraging expertise in Governance, Risk, and Compliance to assist clients in managing cybersecurity and compliance needs.

Job Responsibility

  • Governance: directs, oversee, designs, implements or operates within the set of multi-disciplinary structures, policies, procedures, processes and controls implemented to manage cyber and information security at an enterprise level
  • Policy and Procedure Management: directs, develops or maintains organisational cyber and information security policies, standards and processes, using recognised standards (e.g. the ISO/ IEC 27000 family, NIST CSF) where appropriate
  • Risk Management: develops cyber and information security risk management strategies and controls, considering business needs, balancing technical, physical, procedural and personnel controls
  • Data Privacy: directs, oversee, designs, implements, contributes to, or operates within the set of multi-disciplinary structures, policies, procedures, processes and controls to manage the protection of personal data, privacy and human rights
  • Internal Controls Oversight: Establish and monitor internal controls to safeguard data and assets, conducting regular reviews and audits
  • Stakeholder Engagement: Serve as a liaison, offering guidance and support to internal teams, external partners, and regulatory authorities
  • Continuous Improvement: Identify opportunities for process enhancements, driving initiatives to bolster governance framework and security posture

Requirements

  • 5+ years' varied experience in information security, data protection, risk management, enterprise IT, legal or (relevant) compliance roles
  • Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53 / CSF, NIS/NIS2, DORA, UK CNI / OT / IIOT compliance
  • Hands-on experience building credibility with external stakeholders, including enterprise clients, critical system vendors, certification auditors and regulatory bodies
  • Proven leadership skills with the ability to guide and mentor teams, as well as influence and collaborate with senior stakeholders in a similar GRC, security, or risk management role
  • A hands-on approach with the ability to balance strategic oversight with direct involvement in security tasks
  • Excellent communication skills, with the ability to present complex information clearly and effectively to non-technical stakeholders
  • The ability to explain complex topics to a diverse range of audiences
  • Strong attention to detail and the ability to deliver high quality work
  • A valid right to work in the UK
  • Eligible to obtain UK SC clearance

Nice to have

CISA, CRISC, CISM or CISSP certification are advantageous

What we offer

  • Tailored benefits that support your physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security Consultant GRC

8 matching positions

Senior GRC Security Consultant

Senior GRC Security Consultant The Opportunity We are currently partnering wit...
Location
Location
United Kingdom
Salary
Salary:
350.00 - 600.00 GBP / Day
myn.co.uk Logo
Myn
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in Governance, Risk, and Compliance (GRC) within an information security context
  • Strong knowledge of industry-standard security frameworks such as ISO 27001, NIST, or NCSC CAF
  • Extensive experience conducting security risk assessments, gap analyses, and risk treatment planning
  • Proficiency in managing audit lifecycles, including evidence collection and remediation tracking
  • Ability to develop and maintain comprehensive security policies, standards, and procedures
  • Strong stakeholder management skills with the ability to communicate technical risk to business audiences
  • Experience in client-facing consultancy or cross-functional internal advisory roles
Job Responsibility
Job Responsibility
  • Taking ownership of assessing organisational security posture against industry-standard frameworks
  • Managing full audit lifecycles
  • Ensuring regulatory compliance across complex environments
  • Conducting comprehensive risk assessments and gap analyses
  • Developing robust security policies
  • Collaborating with cross-functional teams to embed security controls into core business operations
Read More
Arrow Right

SAP Security & GRC Consultant

Deep experience in SAP Application Security, GRC Experience in HANA DB roles, oD...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep experience in SAP Application Security, GRC
  • Experience in HANA DB roles, oDATA Roles and Fiori roles, SAP DWC and SAC roles
  • Good understanding of SAP application security implementation methodologies, role-based access controls, and application threats
  • User Administration using SAP Standard TCode, CUA, CUP, ARM, or IDM
  • Role Management. (Create new user, change role, role simulations)
  • Manage GRC roles with modules (ARA, ARM, UAR EAM, SoDR)
  • Perform L1 L3 support for SAP Application Security, GRC (ARA, ARM, UAR EAM, SoDR)
  • Ability to handle sev1 and major incidents and provide resolution within SLA
  • Ability to identify and communicate issues/risks to the team lead or end user to facilitate timely resolution
  • Work independently on standard SAP authorization tasks
Job Responsibility
Job Responsibility
  • User Administration using SAP Standard TCode, CUA, CUP, ARM, or IDM
  • Role Management (Create new user, change role, role simulations)
  • Manage GRC roles with modules (ARA, ARM, UAR EAM, SoDR)
  • Perform L1 L3 support for SAP Application Security, GRC (ARA, ARM, UAR EAM, SoDR)
  • Ability to handle sev1 and major incidents and provide resolution within SLA
  • Ability to identify and communicate issues/risks to the team lead or end user to facilitate timely resolution
  • Work independently on standard SAP authorization tasks
  • Manage and coordinate SAP outages and weekend outages
  • Support SAP audit and compliance activities
  • Scheduling BG Jobs
  • Fulltime
Read More
Arrow Right

Senior Associate Security Consultant (GRC)

The Senior Associate Security Consultant is responsible for developing expertise...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field
  • Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential
  • Moderate level of demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment
  • Moderate level of experience with security architecture design principles
  • Moderate level of experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others
  • Moderate level of experience with security tools and techniques to cover SANS Top 25, OWASP or others
  • Strong interest in cybersecurity and a desire to learn and grow in the field
  • Knowledge of basic cybersecurity concepts, principles, and best practices
  • Familiarity with common security tools and technologies is a plus
  • Excellent analytical and problem-solving skills
Job Responsibility
Job Responsibility
  • Assists in conducting security assessments, vulnerability scans, and penetration tests to identify weaknesses in client systems
  • Analyzes security data, logs, and reports to detect and investigate security incidents or anomalies
  • Prepares and maintains documentation, including security assessment reports, findings, and recommendations
  • Collaborates with senior consultants to provide advice and support to clients on security best practices and risk mitigation strategies
  • Learns and uses various security tools and technologies for assessments and monitoring
  • Stays updated on the latest cybersecurity threats, vulnerabilities, and industry best practices
  • Assists in evaluating client systems for compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements
  • Communicates effectively with clients to understand their security needs and concerns
  • Participates in training programs and certifications to develop expertise in cybersecurity
  • Fulltime
Read More
Arrow Right

Grc Security Officer

Location
Location
United Kingdom , Warwickshire
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in Issue Management
  • Lead on the provision of cyber security compliance advice to the customer GRC lead through collaborative review of their design approach and delivery projects to minimise the risk of non-compliance with internal and regulatory standards
  • Advise on the implementation of information/cyber security measures across projects by identifying information/cyber security goals and objectives consistent with customer objective
  • Challenge the scope of the project /deployment with regards to business value and best practice
  • Ensure project are aligning with internal policies and industry standards including NIS Directives, NIST800-53, NCSC CAF, ISO27001
  • Knowledge of IEC62443 controls
  • Experience within the Energy sector preferred but other sectors considered
Job Responsibility
Job Responsibility
  • Provide governance and leadership of resources engaged on the project
  • Advise on the development of specific information security policies, procedures, guidelines and processes in consultation with stakeholders
  • Attend project Meetings and Security Working Groups as required
  • Review and monitor planned activities to ensure full compliance with internal and regulatory policy
  • Assist the Service lead in complying with administrative and team tasks in support of the project
Read More
Arrow Right

Grc Consultant

Manage and maintain IT Governance, Risk & Compliance (GRC) programs across the o...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
ambconline.com Logo
AMBC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4 to 5 years of work experience in Information Security, Cybersecurity, IT Risk Management, Compliance, FinTech, SaaS, or BFSI
Job Responsibility
Job Responsibility
  • Manage and maintain IT Governance, Risk & Compliance (GRC) programs across the organization
  • Conduct IT Risk Assessments and maintain enterprise Risk Registers with mitigation plans
  • Support implementation and compliance activities aligned with NIST CSF 2.0 and ISO 27001:2022 frameworks
  • Coordinate Internal and External Audits, including evidence collection, control testing, and audit readiness activities
  • Manage compliance requirements related to GDPR and India’s DPDP Act
  • Perform Third-Party Risk Management (TPRM) activities, including vendor security assessments and risk evaluations
  • Develop, review, and maintain Information Security policies, standards, procedures, and governance documentation
  • Track audit findings, corrective action plans (CAPs), remediation activities, and compliance gaps
  • Prepare compliance reports, risk dashboards, management updates, and stakeholder communications while working closely with Security, IT, Product, and Legal teams to ensure governance and compliance objectives are achieved
  • Fulltime
Read More
Arrow Right

Cyber Security Consultant

The Cyber Security Process Alignment & Supplier Onboarding Consultant operates w...
Location
Location
United Kingdom , Lancashire
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in cyber security governance, GRC, or security process roles
  • Experience working in multi-supplier or SIAM environments
  • Strong understanding of security processes such as: Incident Management, Vulnerability Management, Security Assurance
  • Ability to interpret operational outputs (e.g. SOC reporting) without direct tool ownership
  • Strong stakeholder engagement and coordination skills
  • Experience supporting audit, compliance, and assurance activities
  • Experience working in transition or transformation programmes
Job Responsibility
Job Responsibility
  • Supplier Onboarding & Process Integration
  • Process Alignment (SIAM / OI Model)
  • Compliance & Assurance Enablement
  • Governance & Communication
  • Documentation & Knowledge Transfer
  • Transition Support
  • Service Management & Operational Readiness Enablement
  • Fulltime
Read More
Arrow Right

Senior Product Security Consultant

The Product Security Consultant is a post-sales role that works closely with cus...
Location
Location
United States
Salary
Salary:
89300.00 - 120700.00 USD / Year
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years of technical experience working with security applications: Security Information and Event (SIEM)/ Log Management, Governance Risk Compliance (GRC), Identity Access Management, IDS/IPS, Advanced Persistent Threat, Anti-Virus, Vulnerability Management
  • Experience with scripting languages and databases: Python or Powershell
  • SQL
  • Interacting with APIs
  • Experience communicating highly technical concepts to a non-technical audience
  • Understanding of network technologies and protocols (e.g. DHCP, IP, DNS, HTTP, etc.)
  • Experience deploying and maintaining virtual machines and configuring policies on cloud platforms (e.g. Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP))
  • Administrator-level experience with Microsoft Windows Server, Linux and/or MacOS operating systems
  • Customer Centric Communication: Ability to translate complex technical concepts and security best practices into clear, actionable guidance for customers with varying levels of technical expertise
  • Technical Collaboration & Enablement: Ability to partner sales teams to provide technical expertise and support throughout the customer lifecycle, from pre-sales scoping to post-implementation success
Job Responsibility
Job Responsibility
  • Evaluate information technology architecture within customer environments across a broad range of industries and proportions to deploy Rapid7 products, and advise on security best practices within the scope of these products
  • Document and communicate design & implementation details to customer end users
  • Automate and customize solutions to enable customers to use Rapid7 products most efficiently via API scripting, reporting, and custom dashboard development
  • Support sales teams by providing enablement on available offerings and by providing scoping assistance during the sales cycle
  • Generate, Maintain and deliver R7 internal enablement materials to team members and cross-functional R7 partners, as well as team infrastructure, internal processes, tooling, and collateral
  • Willingness to travel up to 30%
  • Fulltime
Read More
Arrow Right

Grc Consultant

Our client is seeking a seasoned Cybersecurity GRC Consultant to support the nex...
Location
Location
United States , Schaumburg
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in cybersecurity, with strong focus on GRC and compliance
  • Proven experience with NIST framework implementation and audit readiness
  • Background in large enterprise environments
  • Experience conducting gap assessments and building compliance roadmaps
  • Strong knowledge of cloud environments (AWS) and Microsoft security ecosystem
Job Responsibility
Job Responsibility
  • Lead gap analysis efforts to assess current cybersecurity posture against frameworks such as NIST
  • Develop and implement governance, risk, and compliance (GRC) processes
  • Help mature security operations into a compliance-driven program
  • Support international compliance initiatives, including China and other global regions
  • Establish and refine policies, procedures, and control frameworks
  • Partner with stakeholders to align cybersecurity practices with regulatory requirements
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • 401(k) plan
Read More
Arrow Right