×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant Data Security Information Security

Cyber Security GRC & Controls Specialist

Job in Bristol, Bristol County, BS1, England, UK
Listing for: Cyber Security training courses
Part Time position
Listed on 2026-01-09
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Data Security, Information Security
Salary/Wage Range or Industry Benchmark: 300 - 400 GBP Daily GBP 300.00 400.00 DAY
Job Description & How to Apply Below

Cyber Security GRC & Controls Specialist - Paying between £300 to £400 Per Day, Inside IR35, Based in Bristol, Hybrid Working (On site 3 days per week), To Start ASAP

Your new company

You will be working with a leading organisation that is based in Bristol.

Your new role

We are seeking a specialist to design and develop a new enterprise-wide cybersecurity controls framework that unifies and standardises processes across a large, complex organisation. This overarching framework will act as the central governance, risk, and compliance (GRC) structure, under which other frameworks including CAF, PCI, ISO-will align and integrate. This is a business process focused, non-technical role requiring strong experience in large organisations, excellent process design capability, and the ability to harmonise terminology, roles, and responsibilities across teams.

The role also incorporates CAF expertise to ensure the new framework aligns with regulatory and assurance expectations.

Key Responsibilities
  • Design and build an enterprise-wide cybersecurity controls framework, covering areas such as Identity & Access Management, Pen Testing, and System Security
  • Standardise and unify processes, roles, and terminology across business units
  • Integrate existing governance frameworks (CAF, PCI, ISO) into a cohesive GRC structure
  • Maintain and evolve the CAF methodology and facilitate CAF self assessments
  • Use data, KPIs, and KRIs to measure control health and improve decision-making
  • Identify process gaps, refine control expectations, and support remediation planning
  • Provide governance oversight and visibility of control maturity and risk posture
What you'll need to succeed
  • Strong experience operating within large, complex enterprises
  • Background in cybersecurity governance, risk, and compliance, with strong business process analysis and design capability
  • Demonstrated experience implementing, auditing, or advising on the NCSC Cyber Assessment Framework (CAF)
  • Experience with capability maturity models (e.g., CMMI)
  • Strong stakeholder engagement and communication skills
  • Ability to work with metrics, reporting, and data-driven assurance processes
  • Certifications such as CISA, CRISC, CISM, CGRC would be beneficial
What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.

#LI-DNI #4758484 - Tom Matherick

#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search