Governance, Risk and Compliance Manager - MOD DV Cleared

• Location: Hemel Hempstead
• Type: 4-5 days on-site
• IR Status: Inside
• Rate: £450 - £700
• Clearance: Must have active MOD DV
• Contingency: Must be a sole British National
• Length: Initial 6 months

Sanderson Government and Defence are seeking a GRC Manager for an on-going programme of work with a primary technical supplier into the MOD. This is a great opportunity to join a talented Cyber team on an interesting project.

Role Overview

As GRC Manager, you will be the driving force behind the implementation of Information Security Management System (ISMS) for an assigned client. Your expertise will help the client understand their security challenges, manage security risks and enable them to enhance their security posture.

Key Responsibilities

• Conduct security risk and threat assessments (operational and system).
• Deliver services aligned with ISO27001 standards.
• Provide regular reporting on ISMS effectiveness and operational performance.
• Manage security operations in line with organisational policy, standards and industry best practice.
• Engage with internal stakeholders and third-party providers on security, risk and privacy matters.
• Respond to security incidents promptly, ensuring early identification and resolution.
• Oversee threat detection, vulnerability management and remediation activities.
• Represent security considerations in IT and process change assessments.
• Maintain ISMS, Operational Security and Risk Assurance documentation.
• Lead monthly client Security Working Group meetings and stakeholder sessions.
• Ensure audit readiness and support internal/external audits.

Essential Skills

• GRC/Operational Security Manager experience with solid understanding and experience with security policies and standards
• Technical proficiency and knowledge across the spectrum of information security solutions and operations
• Knowledge of IT security solutions and their integration and operation into business systems and processes
• Experience of security maturity and developing roadmaps aligned to the priorities of clients
• Experience of ISO/IEC 27001 Compliance and Certification

If you're interested in any of the above and interested in learning more, apply or reach out to

Reasonable Adjustments:

Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients.

If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.

JBRP1_UKTJ