Haystack
← Back to Jobs
full time
Technology

Cyber Security GRC Consultant

AdeccoAmport, Andover🇬🇧United KingdomPosted 17 Jul 2026

Quick Overview

Work Type
On Site
Schedule
Full Time
Level
Mid Senior

Job Description

Cyber Security GRC Consultant (DV Clearance required) Salisbury (Onsite, 5 days/week) Competitive Salary + Benefits We are looking for an experienced DV Cleared Cyber Security GRC Consultant to support a major security and compliance programme within a highly secure environment. This is a key role focused on ensuring security controls, governance frameworks, and compliance obligations are effectively aligned with recognised industry standards and contractual requirements. You'll work closely with technical and business stakeholders to identify risks, assess existing controls, and drive security improvements across complex programmes. You will be responsible for the assessment, governance, assurance, and continuous improvement of security controls, helping organisations maintain robust cyber security practices while meeting regulatory and business requirements.

Key Responsibilities:

Translate contractual and regulatory security requirements into practical security controls aligned with recognised frameworks.<br />Conduct security risk assessments, control reviews, and gap analysis activities.<br />Identify security weaknesses and recommend appropriate mitigation strategies.<br />Deliver security assurance activities including evidence reviews, compliance validation, and control testing.<br />Support the development and enhancement of security policies, standards, and governance processes.<br />Collaborate with stakeholders, suppliers, and project teams to ensure security requirements are understood and met.<br />Assist with audits, compliance activities, and reporting to technical and non-technical audiences.We're Looking For: Proven experience within Cyber Security Governance, Risk &amp; Compliance (GRC) environments.<br />Strong knowledge of NIST CSF, NIST 800-53, ISO 27001, and NCSC CAF.<br />Experience conducting risk assessments and security control reviews.<br />Ability to interpret regulatory or contractual requirements and translate them into actionable security controls.<br />Excellent stakeholder management and communication skills.<br />Ability to work independently and manage multiple priorities in a fast-paced environment.Desirable: CISSP, CISA, CRISC, ISO 27001 certifications, alongside exposure to frameworks such as ISO 22301, ISO 31000, GDPR, PCI-DSS, OWASP, and other security assurance standards. Security Clearance: Candidates should hold current DV Clearance. If you're passionate about cyber security governance, risk management, and helping organisations strengthen their security posture, we'd love to hear from you

Skills

OWASP
GDPR
Stakeholder Management

Similar jobs