Senior GRC Consultant

Location: Leeds (Hybrid) / London also considered

Salary: £40 - £50K (DOE)

We have an exciting opportunity to join our GRC team as a Senior GRC Consultant at a time of rapid growth and innovation at Cognisys.

Cognisys is a leading cybersecurity company specialising in Penetration Testing, GRC Consulting, and Managed Security services. We pride ourselves on our customer service, forward-thinking approach, and commitment to excellence. Our small but mighty team works with some of the best-known companies in the world, covering over 30 countries worldwide!

About the Role

At Cognisys, our Governance, Risk, and Compliance (GRC) team is central to our mission of ensuring our clients’ data is protected to the highest standards of security and compliance.

Due to our continued expansion, we are excited to announce an opportunity to further build our GRC team with an experienced and driven individual. Your contribution will be essential to the future growth of this team.

Key Responsibilities

We are seeking a passionate, detail-oriented Senior GRC Consultant to join our team. In this pivotal role, you will ensure that our clients establish robust governance frameworks, manage risks effectively, and maintain compliance with regulatory standards. 

You will also conduct thorough security audits to evaluate and improve the effectiveness of risk management, control and governance processes.

• Independently deliver a wide range of GRC consultancy projects across client environments, including ISO 27001 implementation and maintenance, SOC 2 readiness assessments, GDPR compliance, and broader information security frameworks.
• Conduct comprehensive internal audits, gap analysis, and maturity assessments aligned with industry standards.
• Perform thorough risk assessments and develop actionable risk treatment plans tailored to client needs and business context.
• Design, write, and maintain information security policies, procedures, and documentation for clients across multiple sectors.
• Lead governance and compliance initiatives, including client-facing reporting, audit readiness support, and continual service improvement.
• Build trusted relationships with clients through consistent, expert guidance and support across security and compliance engagements.
• Mentor and develop junior consultants, supporting their delivery quality and professional growth.

Requirements

• Minimum five years of experience in a GRC consultancy or lead security role with significant client-facing responsibilities.
• Proven ability to independently deliver information security engagements across ISO 27001, SOC 2, GDPR, NIST, or similar frameworks.
• In-depth knowledge of information security principles, compliance standards, and regulatory requirements.
• A recognised certification in information security, audit, or compliance (e.g. ISO 27001 Lead Implementer/Auditor, CISSP, CISM).
• Track record of managing multiple projects simultaneously and delivering high-quality work to deadlines.
• Excellent communication skills, including the ability to convey complex security and compliance matters to technical and non-technical audiences.
• Strong analytical and problem-solving abilities with attention to detail.
• Commitment to mentoring and developing junior team members.

If you think you can deliver but don't match the criteria above, please don't be put off. We are very open-minded and focus on ability and attitude above skills.

What We Offer

• A dynamic and supportive work environment where customer care and innovation drive everything we do.
• A dedicated budget for your professional development
• EMI Employee Share Schemes provide the opportunity to share in the company's success.
• Access to an Employee Wellness Hub supported by Kara Connect for health and well-being resources.
• Frequent team social events and celebrations.
• 22 days holiday rising to 25, plus a birthday holiday.
• Refer a friend bonus scheme, up to £2,000!

Why Join Us?

At Cognisys, you will be part of a collaborative and innovative team that values your input and shares support. You'll have the opportunity to work on challenging projects that make a real impact on our clients. We'd love to hear from you if you want to challenge, lead and innovate!

We're not just about the work; we're about the people. Join a team where innovation is celebrated and your contributions are valued. We foster a collaborative environment where fresh ideas thrive and professional growth is encouraged.

Applications

Please feel free to reach out to Dom, our Head of Talent Acquisition, if you would like any further information, to discuss accessibility requirements, or if you require this information provided in an alternative format – hiring@cognisys.co.uk

We welcome applications from candidates from diverse backgrounds and can make various reasonable adjustments to accommodate individual needs.

NO RECRUITMENT AGENCIES, PLEASE