Grc Risk Consultant Jobs

Prevalent GRC Risk Consultant

The Prevalent GRC Risk Consultant will be working as part of a small but dynamic and multi skilled team delivering client facing professional services across a range of service deliverables.

For the GRC Risk Consultant this will revolve around risk remediation, audit and risk advisory activities. There will be requirements to support other business functions and the team in the delivery of Prevalent services.

Whilst the role is 80% home based remote working there will be requirements to conduct onsite visits or attend the offices based in Ottawa and the UK.

Below is an outline of the expectations of the role and responsibilities of a Prevalent GRC Risk Consultant.

GRC Information Security Consultant

• Delivery of our data protection compliance services in line with the regulatory obligations of our clients
• Conducting vendor assessments for compliance with privacy obligations
• Understanding changes to data protection law across the globe and ensuring the delivery of our compliance services are aligned with the client’s specific needs
• Reviewing and improving client data privacy and protection policies
• Supporting clients with creating remediation programs
• Managing key stakeholders and being strategic towards ensuring information security and data privacy is engaged with the organisation for each client
• Implementing robust processes and tools to help clients detect and prevent privacy breaches
• Conducting risk reviews with clients and completing formal reports as an deliverable
• Conducting remote and onsite audits and control validation

Required Experience

• 5+ years compliance experience in Data Protection, Cyber Security or Information Security
• Excellent knowledge across a range of standards, such as Cyber Essentials, ISO 27001 and NIST, GDPR, SIG, H-ISAC, SOC 2,
• Ability to use technology as a way of working
• An interest in problem solving and analysis of complex risks to formulate effective and achievable remediation programs
• Relevant industry certifications such as CISMP, Security +, CISSP, CISM and ISO Auditor
• Experience delivering client-facing services in industry related organisations
• Proven experience in a client-facing information security consultancy, or strong in-house security management experience.
• Experience successfully organising and managing a portfolio of clients to ensure deadlines are achieved

Other Responsibilities

• To pull on suitable experience to handle multiple deadlines simultaneously
• To maintain an enthusiastic and positive attitude
• To work with other departments and colleagues to aid the successful completion of business priorities
• To maintain strong interpersonal skills required to build relationships
• To be fluent in written and verbal English
• Strong communication and presentation skills
• To work effectively
• To have a personable disposition
• To undertake any other duties as reasonably required
• To showcase excellent organisational skills
• To think on your feet and use your initiative