Associate GRC Consultant We are seeking a technically driven and self-starting graduate to come and join our talented team in London. The role is focused on advising on and configuring world class Integrated Risk Management (IRM) and Governance, Risk and Compliance (GRC) solutions. Working closely with our clients to optimise processes and the maturity of GRC through implementing software solutions and the integration of processes, technology and operations. It is this combination of consultancy and software configuration that makes this role so unique, varied and enjoyable. It is fast paced, dynamic and rewarding; and offers future opportunities to work and travel internationally, progress quickly and forge your own career path. CompanyThe IRM Team of Risktec is a London-based consultancy providing industry-leading GRC solutions and advisory. Our clients include many of the UK and Europe s leading blue-chip companies. Our aim is to help our clients to maximise their GRC programme by working smarter, not harder, and by integrating risk management across processes, technology and operations. Job DescriptionYou ll join the team as an Associate GRC Consultant, and we ll have you meeting clients and directly involved within the first few weeks. As a graduate, we don t expect you to know much today, learning s done on the job. Within the first year you ll learn how to configure the GRC platforms we work with and the basics of Risk Management, with the options to specialise in other aspects including Cyber Security, Compliance, Business Continuity Management, Audit and more. Key responsibilities Collecting and understanding business requirements required for successful implementations. Finding elegant solutions to difficult technical problems. Participating in the solution development process and ensuring that customer requests and needs are represented within the product. Configuring GRC platforms (e.g Archer, LogicGate, ServiceNow etc ) to meet customer requirements. Supporting and managing product lifecycles of existing implementations. Learning how to manage projects and budgets. Continuously learning and expanding your knowledge within the GRC space. Direct communication with clients both in person and online. QualificationsRequired Experience and Education Bachelor's degree is mandatory (2:1 or above), ideally in an analytical discipline (e.g., Computer Science, Mathematics, Sciences, IT, Economics). Experience in programming or working with analytical tools such as Excel, Stata or Access is strongly preferred. Desired Skills/Knowledge Strong analytical / problem solving skills. Self-motivated with a strong desire and ability to learn. The ability to work flexibly and adapt to changing scenarios. Committed to achieving results and going the extra mile. Confident presentation skills both in person and remotely. An ability to set priorities and manage multiple concurrent projects. Ability to act independently and exercise good judgment. Excellent communication. Offer Salary: Competitive with a potential for rapid growth. Performance-based annual bonus. Private Health Insurance. Pension Scheme. Bike to Work Scheme. A close knit, knowledgeable and high achieving team, frequent socials, a modern office in London Bridge, an attractive culture, desirable work life balance and the flexibility to work remotely. Information on our team s services can be found on the Risktec website under; consulting/integrated-risk-management-and-grc What is Governance Risk and Compliance (GRC)?What is GRC you may ask. GRC is a collection of capabilities which allow organisations to effectively manage their risks and enable them to meet their objectives. How does a company know if they have the right plans in place if they have a major outage / disaster? If they re working with the right third parties? If they re complying with standards or regulations? If they re reducing the risk to their business to an acceptable level? By having the right GRC programme and tools in place. Which is where we come in.
Apr 26, 2024
Full time
Associate GRC Consultant We are seeking a technically driven and self-starting graduate to come and join our talented team in London. The role is focused on advising on and configuring world class Integrated Risk Management (IRM) and Governance, Risk and Compliance (GRC) solutions. Working closely with our clients to optimise processes and the maturity of GRC through implementing software solutions and the integration of processes, technology and operations. It is this combination of consultancy and software configuration that makes this role so unique, varied and enjoyable. It is fast paced, dynamic and rewarding; and offers future opportunities to work and travel internationally, progress quickly and forge your own career path. CompanyThe IRM Team of Risktec is a London-based consultancy providing industry-leading GRC solutions and advisory. Our clients include many of the UK and Europe s leading blue-chip companies. Our aim is to help our clients to maximise their GRC programme by working smarter, not harder, and by integrating risk management across processes, technology and operations. Job DescriptionYou ll join the team as an Associate GRC Consultant, and we ll have you meeting clients and directly involved within the first few weeks. As a graduate, we don t expect you to know much today, learning s done on the job. Within the first year you ll learn how to configure the GRC platforms we work with and the basics of Risk Management, with the options to specialise in other aspects including Cyber Security, Compliance, Business Continuity Management, Audit and more. Key responsibilities Collecting and understanding business requirements required for successful implementations. Finding elegant solutions to difficult technical problems. Participating in the solution development process and ensuring that customer requests and needs are represented within the product. Configuring GRC platforms (e.g Archer, LogicGate, ServiceNow etc ) to meet customer requirements. Supporting and managing product lifecycles of existing implementations. Learning how to manage projects and budgets. Continuously learning and expanding your knowledge within the GRC space. Direct communication with clients both in person and online. QualificationsRequired Experience and Education Bachelor's degree is mandatory (2:1 or above), ideally in an analytical discipline (e.g., Computer Science, Mathematics, Sciences, IT, Economics). Experience in programming or working with analytical tools such as Excel, Stata or Access is strongly preferred. Desired Skills/Knowledge Strong analytical / problem solving skills. Self-motivated with a strong desire and ability to learn. The ability to work flexibly and adapt to changing scenarios. Committed to achieving results and going the extra mile. Confident presentation skills both in person and remotely. An ability to set priorities and manage multiple concurrent projects. Ability to act independently and exercise good judgment. Excellent communication. Offer Salary: Competitive with a potential for rapid growth. Performance-based annual bonus. Private Health Insurance. Pension Scheme. Bike to Work Scheme. A close knit, knowledgeable and high achieving team, frequent socials, a modern office in London Bridge, an attractive culture, desirable work life balance and the flexibility to work remotely. Information on our team s services can be found on the Risktec website under; consulting/integrated-risk-management-and-grc What is Governance Risk and Compliance (GRC)?What is GRC you may ask. GRC is a collection of capabilities which allow organisations to effectively manage their risks and enable them to meet their objectives. How does a company know if they have the right plans in place if they have a major outage / disaster? If they re working with the right third parties? If they re complying with standards or regulations? If they re reducing the risk to their business to an acceptable level? By having the right GRC programme and tools in place. Which is where we come in.
Job Description: The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that Bank of America continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. The Team The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Chief Information Officers (CIOs)/Chief Technology Officers (CTOs). Required Skills: • number of years' experience in cyber security or a technology-related field. • Experience in vulnerability assessment, security incident response, application security. • Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. • Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. • Experience in analyzing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. • Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. • Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. • Experience with basic SharePoint usage. • Ability to take ownership of an initiative/issue through completion. • Ability to work in a collaborative environment. • Strong project management skills. • Ability to work with minimal supervision. • Ability to own and deliver on complex initiatives in a high paced, evolving environment. Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: • Bachelor's degree in Information Technology, information security or related field • Master's degree preferred • Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls • Strong analytical skills/problem solving/conceptual thinking • Ability to work with technical and non-technical business owners • Assist with internal efficiencies projects and development E very day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here. Good conduct and sound judgment is crucial to our long term success. It's important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind- set are the cornerstones of our Code of Conduct and are at the heart of managing risk well. We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio- economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience. We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements. As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment. Job Band: H5 Shift: Hours Per Week: 35 Weekly Schedule: Referral Bonus Amount: 0
Sep 24, 2022
Full time
Job Description: The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that Bank of America continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. The Team The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Chief Information Officers (CIOs)/Chief Technology Officers (CTOs). Required Skills: • number of years' experience in cyber security or a technology-related field. • Experience in vulnerability assessment, security incident response, application security. • Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. • Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. • Experience in analyzing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. • Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. • Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. • Experience with basic SharePoint usage. • Ability to take ownership of an initiative/issue through completion. • Ability to work in a collaborative environment. • Strong project management skills. • Ability to work with minimal supervision. • Ability to own and deliver on complex initiatives in a high paced, evolving environment. Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: • Bachelor's degree in Information Technology, information security or related field • Master's degree preferred • Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls • Strong analytical skills/problem solving/conceptual thinking • Ability to work with technical and non-technical business owners • Assist with internal efficiencies projects and development E very day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here. Good conduct and sound judgment is crucial to our long term success. It's important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind- set are the cornerstones of our Code of Conduct and are at the heart of managing risk well. We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio- economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience. We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements. As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment. Job Band: H5 Shift: Hours Per Week: 35 Weekly Schedule: Referral Bonus Amount: 0
Information Security Consultant (Secure by Design) Banking Remote / can be based in either Chester or London when necessary 6 months+ £650 - £700 per day The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that the client continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. Required Skills: * 4 to 8 years of experience in cyber security or a technology-related field. * Experience in vulnerability assessment, security incident response, application security. * Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. * Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. * Experience in analysing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. * Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. * Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. * Experience with basic SharePoint usage. * Ability to take ownership of an initiative/issue through completion. * Ability to work in a collaborative environment. * Strong project management skills. * Ability to work with minimal supervision. * Ability to own and deliver on complex initiatives in a high paced, evolving environment. * Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: * Bachelor's degree in Information Technology, information security or related field * Master's degree preferred * Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls * Strong analytical skills/problem solving/conceptual thinking * Ability to work with technical and non-technical business owners * Assist with internal efficiencies projects and development Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
Sep 14, 2021
Contractor
Information Security Consultant (Secure by Design) Banking Remote / can be based in either Chester or London when necessary 6 months+ £650 - £700 per day The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that the client continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. Required Skills: * 4 to 8 years of experience in cyber security or a technology-related field. * Experience in vulnerability assessment, security incident response, application security. * Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. * Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. * Experience in analysing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. * Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. * Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. * Experience with basic SharePoint usage. * Ability to take ownership of an initiative/issue through completion. * Ability to work in a collaborative environment. * Strong project management skills. * Ability to work with minimal supervision. * Ability to own and deliver on complex initiatives in a high paced, evolving environment. * Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: * Bachelor's degree in Information Technology, information security or related field * Master's degree preferred * Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls * Strong analytical skills/problem solving/conceptual thinking * Ability to work with technical and non-technical business owners * Assist with internal efficiencies projects and development Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
Oscar Lim at CK IT is recruiting for a Governance Risk and Compliance (GRC) Consultant to join a growing IT company on a permanent basis. This is a home based opportunity.
As a GRC Consultant, the successful candidate will be part of the dynamic consultancy team within our client's IT security solutions team.
Your responsibilities will be to ensure, as part of a team, the consultancy requirements are delivered through projects and change initiatives being implemented for clients and partners. You will initially perform a supporting role within the team with responsibility across multiple service delivery functions. Your supporting efforts will drive delivery, standardisation and assurance across all project functions with a view to gaining experience and competence in the field of information security consultancy.
The culture that you will be working in will be one of dynamism and strong teamwork, the team is looking for individuals that can listen, absorb, analyse, assess and report information security issues. The team are passionate about the work that they do for their clients in order to ensure that their cyber-resilience is second to none. This is why consultants are highly regarded because they understand the client's security aspirations and what they are trying to protect.
Roles and Responsibilities:
• Effective communication with internal and external stakeholders across our client's portfolio of projects, to ensure Information Security capabilities are articulated and understood in a technical support role.
• Assist the sales team in understanding technical requirements, facilitating consultancy engagements that meet both business needs and its clients.
• Effective introduction of the beneficial security risk outcomes for clients in line with their business and risk appetite, using the range of consulting capabilities.
• Ability to communicate information security threats and their impact to clients at all levels.
• In support of the Senior Information Security Manager, assist with the analysis of requirements and design of clients' information security posture, as well as Legal, Regulatory and Scheme security requirements.
• Support the team in delivery of work streams for clients in compliance standards such as PCI DSS, ISO27001 and incident management disciplines.
• Assist with the execution of 3rd party security reviews to ensure controls are appropriate and in line with the required standards, as well as Legal, Regulatory and Scheme security requirements.
• Provide support and assistance to the wider business with the maintenance of Information Security and Compliance internal projects (e.g. CREST, ISO27001).
• Research and evangelise new ideas and concepts for the business that will enhance and fortify the service offerings for the team.
Candidate requirements:
• Proven ability to make sound pragmatic decisions and judgements under tight timelines.
• Demonstrable experience in IT Governance, Risk & Compliance
• Ideally will have a CISSP, CISA or CISM qualification
• Excellent analytical and communication skills, self-driven and able to work independently as well as part of a team
• Strong stakeholder engagement skills with the ability to connect and communicate at all levels across the organisation.
• Ability and capacity to absorb large volumes of information and articulate a solution in a verbal and written format.
• Experience of risk management principles and associated methodologies.
• Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally
• Proven ability to make sound pragmatic decisions and judgments under tight timelines.
• Previous experience in being part of a team within an Information Security function.
You will be based from home.
The successful candidate will need to provide suitable references and will be required to have background clearance checks, employment will be subject to the results of this screening.
This is an urgent requirement, so for immediate consideration please contact CK IT as soon as possible.
CK IT is an Equal Opportunities employer and welcomes applications from all who meet our selection criteria.
If you do not hear back from us within 5 working days of your application for this role, it means that on this occasion you have not been shortlisted for the next stage of the recruitment campaign. Entitlement to work in the EEA is essential. Please quote reference IT35149 in all correspondence
Feb 21, 2016
Oscar Lim at CK IT is recruiting for a Governance Risk and Compliance (GRC) Consultant to join a growing IT company on a permanent basis. This is a home based opportunity.
As a GRC Consultant, the successful candidate will be part of the dynamic consultancy team within our client's IT security solutions team.
Your responsibilities will be to ensure, as part of a team, the consultancy requirements are delivered through projects and change initiatives being implemented for clients and partners. You will initially perform a supporting role within the team with responsibility across multiple service delivery functions. Your supporting efforts will drive delivery, standardisation and assurance across all project functions with a view to gaining experience and competence in the field of information security consultancy.
The culture that you will be working in will be one of dynamism and strong teamwork, the team is looking for individuals that can listen, absorb, analyse, assess and report information security issues. The team are passionate about the work that they do for their clients in order to ensure that their cyber-resilience is second to none. This is why consultants are highly regarded because they understand the client's security aspirations and what they are trying to protect.
Roles and Responsibilities:
• Effective communication with internal and external stakeholders across our client's portfolio of projects, to ensure Information Security capabilities are articulated and understood in a technical support role.
• Assist the sales team in understanding technical requirements, facilitating consultancy engagements that meet both business needs and its clients.
• Effective introduction of the beneficial security risk outcomes for clients in line with their business and risk appetite, using the range of consulting capabilities.
• Ability to communicate information security threats and their impact to clients at all levels.
• In support of the Senior Information Security Manager, assist with the analysis of requirements and design of clients' information security posture, as well as Legal, Regulatory and Scheme security requirements.
• Support the team in delivery of work streams for clients in compliance standards such as PCI DSS, ISO27001 and incident management disciplines.
• Assist with the execution of 3rd party security reviews to ensure controls are appropriate and in line with the required standards, as well as Legal, Regulatory and Scheme security requirements.
• Provide support and assistance to the wider business with the maintenance of Information Security and Compliance internal projects (e.g. CREST, ISO27001).
• Research and evangelise new ideas and concepts for the business that will enhance and fortify the service offerings for the team.
Candidate requirements:
• Proven ability to make sound pragmatic decisions and judgements under tight timelines.
• Demonstrable experience in IT Governance, Risk & Compliance
• Ideally will have a CISSP, CISA or CISM qualification
• Excellent analytical and communication skills, self-driven and able to work independently as well as part of a team
• Strong stakeholder engagement skills with the ability to connect and communicate at all levels across the organisation.
• Ability and capacity to absorb large volumes of information and articulate a solution in a verbal and written format.
• Experience of risk management principles and associated methodologies.
• Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally
• Proven ability to make sound pragmatic decisions and judgments under tight timelines.
• Previous experience in being part of a team within an Information Security function.
You will be based from home.
The successful candidate will need to provide suitable references and will be required to have background clearance checks, employment will be subject to the results of this screening.
This is an urgent requirement, so for immediate consideration please contact CK IT as soon as possible.
CK IT is an Equal Opportunities employer and welcomes applications from all who meet our selection criteria.
If you do not hear back from us within 5 working days of your application for this role, it means that on this occasion you have not been shortlisted for the next stage of the recruitment campaign. Entitlement to work in the EEA is essential. Please quote reference IT35149 in all correspondence