GRC Specialist

Posted 09 January 2024
Salary 70000-80000
Discipline Cyber Security
Contact NameJamie Stewart
Remote working Hybrid/Flexible

Job description

GRC Specialist (12-month fixed term)
Location: London
Key Skills: PCI DSS, ISO 27001:2022

Stott and May are working with an innovative global events agency, who transform ordinary occasions into extraordinary experiences by delivering personalized services. They are leveraging their profound expertise and incorporating cutting-edge events technology.

What you will do
As an Information Security Governance Specialist, you will charge towards PCI 4.0 compliance, where you'll take the helm in ensuring adherence to the latest Payment Card Industry Data Security Standard (PCI DSS) version 4.0. Your role involves conducting impactful gap assessments, crafting dynamic remediation plans, and implementing vigilant monitoring for continuous compliance.

Simultaneously, showcase your expertise in SOX compliance by overseeing the implementation of controls, collaborating seamlessly with financial, IT, and audit teams. Be the driving force in upholding financial reporting integrity and ensuring unwavering compliance with the Sarbanes-Oxley Act.

As a key player in their dynamic team, you will be driving risk assessments, pioneering policy development, and championing process improvements. Collaborate with external auditors and certification bodies to successfully achieve ISO 27001:2022 compliance. This is your opportunity to shape the future of their regulatory and compliance landscape while advancing your career to new heights.

What you will have
• Professional certifications such as CISSP, CISM, or CISA are highly desirable.
• Project management certifications (e.g., PMP, PRINCE2) and experience managing complex projects or programs.
• Proven experience in information security governance and compliance roles, including PCI, SOX, and ISO 27001.
• Strong understanding of relevant regulatory requirements and industry standards.
• Excellent communication, leadership, and interpersonal skills.
• Experience working with cross-functional teams and managing security initiatives.
• Strong analytical and problem-solving skills.
• Knowledge of risk management, incident response, and compliance frameworks