×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security IT Consultant

Governance, Risk & Compliance Lead

Job in Nantwich, Cheshire, CW5, England, UK
Listing for: Genus
Part Time position
Listed on 2026-01-14
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security, IT Consultant
Job Description & How to Apply Below

Role Overview

We are looking for an experienced Governance Risk & Compliance (GRC) Lead to join our growing Cyber team

You will be responsible for establishing and maintaining the cyber governance framework that underpins Genuss global security posture. This role focuses on policy risk management assurance and compliance to ensure the organisation operates within defined risk appetite and meets internal regulatory and customer obligations.

You’ll report directly to the Global Head of Cyber Security and will work closely with Legal Risk & Audit Procurement and IT to embed effective governance manage cyber risk and maintain alignment with standards such as NIST CSF and ISO 27001.

The role combines strategic oversight with hands‑on delivery of control frameworks audits and assurance activities enabling clear visibility of risk and measurable improvement in security maturity.

Ideally you will be able to visit the Stapeley office weekly (1‑2 days per week) to work with the rest of the team and meet with key stakeholders there

You Will Cyber Governance & Frameworks
  • Own the cyber governance framework including policy management control design reporting and compliance alignment.
  • Maintain and evolve the NIST CSF / ISO 27001‑aligned control framework to ensure consistency across regions and functions.
  • Define and maintain the information and cyber security policy suite and associated standards.
  • Partner with Legal Risk & Audit HR and IT to manage cross‑functional governance activities.
  • Work closely with the Legal team to align cyber governance with data privacy requirements ensuring compliance with GDPR and regional data protection laws.
Risk Management & Assurance
  • Lead the cyber risk management process ensuring timely identification assessment and reporting of risks.
  • Maintain the cyber risk register and track remediation of audit and assurance findings.
  • Conduct targeted control testing risk reviews and compliance assessments to ensure control effectiveness.
  • Support customer and regulatory assurance activities including questionnaires audits and due diligence.
  • Develop dashboards and metrics that measure compliance risk posture and cultural maturity.
  • Work with the Technical and Sec Ops Leads to ensure risk findings are addressed through technical and operational improvements.
  • Support executive and board‑level risk reporting and security committee updates.
Compliance & Third‑Party Assurance
  • Coordinate internal and external cyber audits certifications and regulatory compliance efforts (e.g. Cyber Essentials Plus ISO 27001).
  • Manage supplier security assessments and third‑party due diligence in collaboration with Procurement and Legal.
  • Maintain documentation evidence and metrics to support audit readiness and continuous compliance.
  • Track and report compliance status issues and metrics to management and governance committees.
People & Team Leadership
  • Mentor and guide the global security team enhancing risk and compliance awareness and proactive behaviours.
  • Support recruitment training and professional growth of the security team.
  • Promote continuous improvement and knowledge sharing across the cyber function.
  • Drive the global security awareness and training programme ensuring targeted content for different audiences (IT business executives).
Requirements
  • Proven experience managing governance risk and compliance within an enterprise cyber security function.
  • Strong knowledge of ISO 27001 NIST CSF and regulatory standards (e.g. GDPR DPA SOX).
  • Experience managing risk registers audit processes control testing and compliance reporting.
  • Familiarity with cloud and IT environments translating technical risks into business terms.
  • Excellent communication skills able to engage with both technical and non‑technical stakeholders.
  • Relevant certifications (e.g. CISM CRISC ISO 27001 Lead Implementer / Auditor) desirable.
  • Experience with data privacy and protection principles and practices.
Business Overview

Genus is an agricultural biotechnology pioneer. We are a global FTSE 250 company headquartered in the UK and listed on the London Stock Exchange. Genus PLC has a presence in over 70 countries and a global workforce of over 3000 employees and growing. We are…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search