Governance, Risk & Compliance - Manchester - £65,000
As a Governance, Risk, and Compliance (GRC) Manager at our leading British IT consultancy, you will be responsible for overseeing the organization’s governance frameworks, risk management processes, and compliance with regulatory and industry standards. You will play a pivotal role in ensuring that the company's internal policies align with best practices, relevant legislation, and contractual obligations, and that risks are properly identified, assessed, and managed. Based in Manchester, you will collaborate with key stakeholders across departments to embed a robust risk culture, enhance security, and optimize processes for compliance.
Key Responsibilities:
Governance Framework Development & Implementation
- Design, implement, and continuously improve the governance framework across the organization, ensuring alignment with corporate objectives and IT strategies.
- Ensure policies and procedures are up-to-date, effectively communicated, and adhered to by all employees.
Risk Management
- Lead the risk management program, conducting regular risk assessments, identifying potential risks, and implementing mitigation strategies.
- Maintain the organization’s risk register and ensure effective reporting to senior management and relevant stakeholders.
- Collaborate with departments to integrate risk management into decision-making and project planning.
Compliance Oversight
- Ensure compliance with industry regulations such as GDPR, ISO 27001, and other IT and security-related standards.
- Oversee internal audits and liaise with external auditors to ensure compliance with applicable laws and regulations.
- Track developments in regulatory environments and update internal policies as necessary.
Training and Awareness
- Develop and deliver training programs on governance, risk management, and compliance for employees and senior leadership.
- Promote a culture of compliance and ethical business practices across the organization.
Incident Management & Reporting
- Lead the response to security incidents and ensure proper escalation, investigation, and resolution.
- Report on risk, compliance, and security incidents to senior management and external bodies when necessary.
Stakeholder Management
- Serve as a trusted advisor to the leadership team on risk and compliance issues.
- Work closely with IT, legal, and operational teams to ensure alignment and adherence to governance and compliance requirements.
- Engage with clients and third-party vendors to ensure that their risk and compliance expectations are understood and met.
Continuous Improvement
- Stay up to date on best practices in GRC and integrate new tools, processes, and technologies to improve governance, risk management, and compliance functions.
- Regularly review and update the company’s GRC framework in line with evolving business needs and external requirements.
Key Qualifications & Experience:
- Bachelor's degree in Information Security, IT, Business Administration, or related field.
- Professional certifications such as CISM, CRISC, CISSP, or equivalent are highly desirable.
- Proven experience in GRC management, preferably in the IT consultancy sector.
- Strong knowledge of relevant regulatory standards (e.g., GDPR, ISO 27001, PCI-DSS).
- Experience in risk assessment, internal audits, and managing compliance programs.
- Excellent analytical, problem-solving, and decision-making skills.
- Strong communication and stakeholder management abilities.
Additional Skills:
- Ability to work in a fast-paced, dynamic environment with cross-functional teams.
- Strong leadership and project management skills.
- Attention to detail and ability to handle complex, sensitive information.
Benefits:
- Competitive salary
- Flexible working options
- Opportunities for professional development and certification
- Pension scheme and private health insurance
This role offers a fantastic opportunity to contribute to the company’s ongoing success by driving a robust and forward-thinking GRC strategy while working within a collaborative and innovative team in Manchester.
Governance, Risk & Compliance - Manchester - £65,000