Job summary

Information Security GRC Specialist
Edinburgh WFM Hybrid
Permanent Position
£55000 to £63000
Immediate start available

Key skills required for this role

Cyber Information Security Governance Risk and Compliance

Important

Cyber Information Security Governance Risk and Compliance

Job description

Information Security GRC Specialist
Edinburgh WFM Hybrid
Permanent Position
£55000 to £63000
Immediate start available

We're going through an exciting period of growth and, we're looking for an Information Security Governance Risk and Compliance Specialist to join us. You will become a key part of the Information Security function and wider business as we navigate an interesting and ever changing GRC landscape.

This is your role:
The successful candidate will be able to "hit the ground running" and help our team: Support the adherence to and delivery of leading Information Security and Privacy Standards including but not exclusively, ISO27001, ISO22301, IEC62443-3, SOCII, Australian Energy Cyber Security Framework, NIST, NIS and NERC reliability standards
Manage and mature Security risk baselines with support from the Head of Cyber Security
Manage and mature third party and Supply Chain Security, whether that is requirements from our customers, or the technologies we use ourselves in house, with guidance and support from the Head of Cyber Security
Mature the policies suite we use internally to adhere to the leading information security and privacy standards listed above
Help us automate our way out of manual processes
Be a champion for all things infosec governance, risk and compliance across the business.
Assist with Disaster Recovery and Business Continuity efforts.

Who you are:
The successful candidate will be passionate about Information Security, Risk Management, DevSecOps, the principle of "shifting left" and be open to building collaborative and supportive relationships in line with the our core values. Alongside this we expect to see: A proven ability to drive GRC change in a dynamic, fast-paced environment.
Experience of taking a company through a standards framework and accreditation process e.g. SOCII, ISO27001 and others
A strong ability to find technological answers to Governance, Risk and Compliance questions
An ability to work with stakeholders in an environment that values autonomy
Ability to work and understand frameworks across borders
A passion for security and risk in cutting edge software and more traditional industrial control systems
A pragmatic approach
A reasonable understanding of the risks of Cloud environments and reasonable understanding of "traditional" AWS environments.

What's on offer:
We offer a competitive salary, 25 days annual leave plus public holidays, pension scheme, private healthcare cover, an annual discretionary (performance based) bonus scheme, flexible remote working, home office equipment, a health and wellbeing payment scheme, an employee share option plan, a referral bonus scheme and other flexible benefits.

For more information please contact Kieran Duggan at Matchtech on 01489898 162 or apply now by submitting your CV