Cyber GRC Consultant - Tech Transformation practice

Cyber GRC Consultant

Tech Transformation Practice

London

Consultant - Senior Consultant level

You want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients' most important challenges? We are growing and are looking for people to join our team. You'll be part of an entrepreneurial, high-growth environment of 300,000 employees. Our dynamic organization allows you to work across functional business pillars, contributing your ideas, experiences, diverse thinking, and a strong mindset. Are you ready?

About the role

We are looking for a highly skilled Cyber GRC (Governance, Risk, and Compliance) Consultant to help organizations strengthen their cybersecurity posture, manage cyber risks, and ensure regulatory compliance. The ideal candidate will have deep expertise in cybersecurity frameworks, risk management, regulatory compliance, and security governance.

As a Cyber GRC Consultant, you will collaborate with security, IT, and compliance teams to develop and implement cybersecurity policies, conduct risk assessments, and ensure adherence to global security standards and regulations.

You will:

1. Work on global projects with a truly global team, with the support of over 330,000 technical staff from our parent organization.
2. Contribute to the development of consulting go-to-market offerings and innovative solutions targeted at the C-Suite executive community that help them to understand and mitigate their cyber risks.
3. Support and maybe lead NIST CSF risk assessments.
4. Help design innovative new services to lead the market incorporating AI and ML where it brings value.
5. Support presales, sales, and account management pursuits from a subject matter expert perspective.

You will have already achieved strong career progression to date, and experience working with recognized consulting brands and large commercial sector clients. You will have a passion for cyber security and a genuine interest in staying updated with the latest industry trends and developments.

Your security experience must include:

1. A relevant undergrad or post grad degree (Infosec, Cyber Security, IT Security).
2. 1-5 years+ in the field of cyber security/infosec.

Your diverse Security experience may include one or some of the following:

1. A good understanding of NIST CSF.
2. A post graduate degree in cyber/information security.
3. An understanding of ISO27001, NIS2, SOX, GDPR, DORA.
4. Cyber Due Diligence Assessments.
5. Third-Party & Supply chain Cyber Risk Management.
6. Incident Response Plan review.
7. Supporting bids, RFP responses and proposals.
8. Crisis Management Exercises (CMX).
9. Accreditation such as CISSP, CISM, CISA, GSLC, GSTRT, GCPM.
10. Helped design Target Operating Models (TOMs) and RACI Matrices.
11. Helping the design of Cyber Security Roadmaps.
12. Supporting Post Incident Reviews.
13. Reading and summarising Cyber Threat Intelligence reports.
14. Cyber security compliance programs (GDPR, DORA, ISO27001, NIS2, SOX).
15. Cyber Security Risk Assessments or Maturity Assessments.
16. Design and deliver awareness training.
17. Worked on Identity and Access Management projects.
18. Worked on Privileged access management projects.

Our ideal candidate may have some of the following skills:

• Have a broad business skill set including stakeholder management, problem-solving, and resilience.
• Have experience in gathering, validating, synthesizing, documenting, and communicating data and information for a range of audiences.
• Have excellent interpersonal skills and strong written and verbal communication skills in country's official language(s) (C2 proficiency) and English (C2 proficiency), project-related mobility/willingness to travel.
• Enjoy working with different clients from different industries.
• Have some experience in balancing technical and commercial considerations to develop practical advice or solutions for clients.
• Be able to build strong and effective business relationships at all levels.
• Be able to support and oversee staff with less experience in their tasks.
• Be able to explain complex cyber methodologies using accessible non-technical language (both written and verbal).

Given that this is just a short snapshot of the role, we encourage you to apply even if you don't meet all the requirements listed above. We are looking for team members who strive to make an impact and are eager to learn. If this sounds like you and you feel you have the skills and experience required, then please apply now.

About your team

At the Tech Transformation practice, we help CIOs overcome their biggest challenges such as geopolitical and macroeconomic uncertainty, cybersecurity, digital transformation, and budget constraints; enabling them to leverage technology to deliver value to their business. We have a team of business analysts, enterprise architects, and cybersecurity specialists with business, operational, strategic, analytical, and innovation skills that come together to drive business IT alignment, transform IT governance, IT cost containment, operating efficiency improvements, innovation enablement, and cybersecurity risk, governance, and compliance.

About Infosys Consulting

Be part of a globally renowned management consulting firm on the front-line of industry disruption and at the cutting edge of technology. We work with market-leading brands across sectors. Our culture is inclusive and entrepreneurial. Being a mid-size consultancy within the scale of Infosys gives us the global reach to partner with our clients throughout their transformation journey.

Our core values, IC-LIFE, form a common code that helps us move forward. IC-LIFE stands for Inclusion, Equity and Diversity, Client, Leadership, Integrity, Fairness, and Excellence. To learn more about Infosys Consulting and our values, please visit our careers page.

Within Europe, we are recognized as one of the UK's top firms by the Financial Times and Forbes due to our client innovations, our cultural diversity, and dedicated training and career paths. Infosys is on Germany's top employers list for 2023. Management Consulting Magazine named us on their list of Best Firms to Work for. Furthermore, Infosys has been recognized by the Top Employers Institute, a global certification company, for its exceptional standards in employee conditions across Europe for five years in a row.

We offer industry-leading compensation and benefits, along with top training and development opportunities so that you can grow your career and achieve your personal goals. Curious to learn more? We'd love to hear from you Apply today!