Head of Cyber Governance, Risk & Compliance (GRC)

Location - West London

We are seeking a Cyber Head of GRC / Governance, Risk & Compliance to join a large, complex and highly regulated organisation operating in a safety-critical environment.

Reporting to the Chief Information Security Officer, this role sits within the senior cyber leadership team and is responsible for establishing, leading and continuously improving the organisation’s Cyber GRC capability. You will work closely with executive leadership, regulators and operational teams to ensure cyber risk is effectively governed, understood and managed across the enterprise and its supply chain.

Key responsibilities:

• Define and deliver the Cyber GRC strategy aligned to business and security objectives
• Lead cyber risk management, assurance and compliance activities across the organisation
• Own cyber policies, governance forums, reporting and performance metrics
• Act as the senior interface with regulators, auditors and external assurance bodies
• Provide clear, risk-based insight to Board and Executive stakeholders
• Build, lead and develop a high-performing Cyber GRC team

About you:

• Senior leadership experience within Cyber Governance, Risk & Compliance
• Background operating in complex, highly regulated environments
• Strong knowledge of frameworks such as NIST, ISO 27001, NIS/NIS2 and CIS Controls
• Proven ability to translate technical cyber risk into business-focused recommendations
• Relevant professional certifications (e.g. CISSP, CISM, CRISC) are desirable

This role offers the opportunity to influence cyber security at enterprise scale and work closely with senior leaders on matters of strategic risk and regulatory assurance. Please apply to hear more about this opportunity.