Security Consultant - GRC Governance, Risk, Compliance

Security Consultant - GRC (Governance, Risk & Compliance)Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE)Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that's expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.This is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients - including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT.You'll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries.Key Responsibilities

• Deliver Cyber GRC consulting engagements end-to-end - from scoping and planning through to delivery and close-out.
• Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security.
• Translate complex security and compliance requirements into actionable business solutions.
• Build trusted relationships with clients at both technical and senior management levels.

Skills & Experience Required

• 4+ years' experience in a professional consulting role, ideally within enterprise IT security, governance, or risk management.
• Proven delivery experience using frameworks such as ISO27001, NIST CSF, CIS, COBIT, or equivalent.
• Strong client-facing skills, with the ability to communicate technical concepts to non-technical audiences.
• Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or CISMP.
• Excellent communication skills and fluency in English.

Desirable

• Degree in a related discipline (e.g. Information Security, IT, Risk Management).
• Exposure across multiple industry sectors.
• Additional certifications such as CCSP, CCSE, or CCAK, or knowledge of DORA / NIS2.
• Fluency in another European language (French, German, etc.) would be advantageous.

This is a fantastic opportunity to work with a leading global organisation on large-scale, complex cyber security programmes. You'll collaborate with some of the best in the business and gain exposure to major international clients - ideal for someone who enjoys client-facing work and wants to deepen their expertise in GRC consulting.Interested? Please apply now with your updated CV and reach out to Tom Johnson at Certain Advantage - Ref: 79546