Home › Companies › Fsp › Senior Cyber Risk & Compliance Consultant (GRA)
Senior Cyber Risk & Compliance Consultant (GRA)
Fsp · Glasgow or Reading, Berkshire, ., United Kingdom · Hybrid · Active · BambooHR
Job facts
| Field | Value |
|---|---|
| Company | Fsp |
| Title | Senior Cyber Risk & Compliance Consultant (GRA) |
| Normalized title | - |
| Department / team | Governance, Risk & Assurance |
| Location | Glasgow or Reading, Berkshire |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | BambooHR |
| Posted / first seen | 2026-06-11 / 2026-06-13 |
| Changed / last seen | 2026-06-13 / 2026-06-22 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Fsp. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through BambooHR. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Glasgow or Reading. | Open |
| Department jobs | Active postings in Governance, Risk & Assurance. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Fsp |
| Source | 629e2141-8dbe-4b8e-a67e-51df5f4cea11 |
| ATS provider | BambooHR |
Description
Role Overview
We have an exciting opportunity for a Senior Cyber Risk & Compliance Consultant to join our growing Governance, Risk and Assurance (GR A ) team. Within this role, you will utilise your GR A and cyber security expertise to advise clients on ISO27001 and other information security consulting engagements and support in the delivery of complex security programmes.
Responsibilities
Lead cyber governance, risk and compliance engagements, with primary focus on achieving certification or standards alignment to ISO27001 . This will include gap assessments, strategy and planning, impleme n tation support, audit preparation and pre and post certification support.
Engage with clients to understand their wider threat landscape and business context, conducting risk and compliance assessments against other recognised frameworks and standards ( e.g. NIST, SOC 2 , DefStan ).
Design, review and advise on the implementation and adoption of information security policies, standards, procedures and frameworks.
Lead cyber and third-party risk assessments, evaluate supplier security posture, and provide risk-based recommendations for supplier selection and oversight.
Identify control gaps, document findings, and track remediation activities to support assurance and audit outcomes.
Produce clear, concise risk and compliance reports for executive and C-suite stakeholders, including prioritised mitigation strategies and improvement roadmaps.
Contribute to thought leadership and continuous improvement by staying current with industry developments and sharing knowledge across the cyber security community.
Demonstrate strong communication, stakeholder management and mentoring skills, upholding the highest standards of integrity and professionalism.
About you
E xtensive experience of designing, leading and delivering cyber governance, risk and assurance outcomes, with a proven track record of successfully leading GRC and security assurance initiatives.
P ossess strong knowledge of recognised cyber security frameworks and standards, including ISO/IEC 27001, NIS Directives, NIST, and UK Government Functional Standards, with demonstrable experience aligning security controls to MOD requirements such as DEFSTAN 05-138, JSP 440, JSP 604 and Defence Cyber Resilience policies.
E xperienced in applying UK Government security and assurance frameworks, including GovAssure, the Cyber Assessment Framework (CAF), Defence Cyber Certification (DCC) and Government Standard (GovS) 007.
C onfident communicator , able to clearly articulate cyber risk and the value of security investment to senior leaders, while mentoring and guiding teams to deliver high-quality outcomes.
Hold a recognised ISO/IEC 27001 Lead Implementer or Lead Auditor certification, alongside other relevant academic or professional qualifications (e.g. MSc in Cyber Security or related specialism, CISM, CISSP, PCIRM).
Hold, or be working towards, Principal or Chartered Cyber Security Professional (ChCSP) status.
E ligible to work in the UK and able to obtain and maintain UK security clearance s.
What we look for in our people
Strong alignment with FSP values and ethos
Commitment to teamwork, quality and mutual success
Proactivity with an ability to operate with pace and energy
Strong communication and interpersonal skills
Excellent planning and organisational skills
Dedication to excellence and quality
Why work for FSP?
At FSP, we are committed to providing:
A collaborative and supportive environment in which you can grow and develop your career
The tools and opportunity to do work you can be proud of
A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience
Hybrid working – we empower you to make smart choices about when and where to work to achieve great results
Industry leading coaching and mentoring
Plus the excellent benefits package we offer at FSP
About FSP
Founded in 2012, FSP Consulting Services (FSP) are a leading digital transformation specialist, combining real world experience in business strategy, change and adoption and digital solution delivery.
As a long-standing Microsoft Solutions Partner, our portfolio of modern workplace , cloud, data, and cyber security offerings, alongside trusted managed services delivery, is driving change for high-profile clients in both the public and private sector.
Our work is founded on the commitment to deliver positive impact for both organisations and their people.
Behind this commitment is a dedicated employee-first strategy, built around our organisation’s core values: human, inclusive, performance driven, and ambitious.
We are proud to have been recognised by Best Companies™ as a 3-star ‘World Class’ workplace (their highest level of accreditation) in 2024, 2023 and 2022 . We have also been awarded a No.1 Best Company to Work For in the UK, in the Technology sector and in the South-East (Regional League Table) in 2023.
We have also been recognised three times as No.1 Best Workplace™ in the UK by Great Place to Work®.
FSP is an equal opportunity employer. We consider all applicants for employment regardless of age, disability, sexual orientation, gender identity, family or parental status, race, colour, nationality, ethnic or national origin, religion or belief.
Find out more about our awards here: https://fsp.co/awards/
Equal and Fair Opportunity
FSP is an equal opportunity employer and welcomes applications from all suitably qualified candidates. We assess applicants based on their skills, experience, and potential, without regard to age, disability, sexual orientation, gender identity, family or parental status, race, colour, nationality, ethnic or national origin, religion or belief, or any other protected characteristic.
Please note that visa sponsorship is available for some roles, subject to eligibility and business requirements.
Research indicates that individuals from underrepresented groups may be less likely to apply where they feel they do not meet every requirement, or where there is uncertainty about who a role is intended for. If you are interested in a role with us but are concerned that you may not meet all the criteria, we encourage you to apply. You may be a strong candidate for this role or for other opportunities within FSP.
We are committed to providing a fair and inclusive recruitment process. If you require any reasonable adjustments to participate fully in an interview or meeting (whether virtual or in person), please let us know.
Full job record
| Job ID | 2e37bded693bffbc7e99a19f9e1ed18c9d7bcde7 |
| Org ID | f5e90cc6-0526-44b8-92bb-1ae1e013854d |
| Source ID | 629e2141-8dbe-4b8e-a67e-51df5f4cea11 |
| Board ID | 629e2141-8dbe-4b8e-a67e-51df5f4cea11 |
| Provider | bamboohr |
| Provider Job Key | 303 |
| Title | Senior Cyber Risk & Compliance Consultant (GRA) |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Glasgow or Reading, Berkshire, ., United Kingdom |
| Department | Governance, Risk & Assurance |
| Team | — |
| Employment Type | full_time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | — |
| Region | Berkshire |
| City | Glasgow or Reading |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://fsp.bamboohr.com/careers/303 |
| Apply URL | https://fsp.bamboohr.com/careers/303 |
| First Seen At | 2026-06-13 10:48:26Z |
| Last Seen At | 2026-06-22 11:10:52Z |
| Last Checked At | 2026-06-22 11:10:52Z |
| Last Changed At | 2026-06-13 10:48:26Z |
| Inactive At | — |
| Source Posted At | 2026-06-11 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=bamboohr/board=fsp/date=2026-06-22/2026-06-22T11-10-50-220Z-3a010cad4773e4975095678d26f277f901f93b59409b424a0c5c6b01ff7dba5c.json |
Event Fields
{
"content_hash": "e4cf2331258029fb2ff6b2477c1a2ce5c6eeed42f5fd0f8eda2159e1907b21d4",
"source_hash": "5f6de0d84734d353dcc9c701a7771f4573588ebffae368bf31177e8b6db23a32",
"last_changed_at": "2026-06-13T10:48:26.227Z",
"active_status": "active"
}Parsed Structured
{
"dedupe": null,
"language": "en",
"location": {
"raw": "Glasgow or Reading, Berkshire, ., United Kingdom",
"city": "Glasgow or Reading",
"region": "Berkshire",
"country": null,
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-22T11:10:52.857Z",
"launch_scope": {
"reason": "bamboohr_production_catalog",
"included": true,
"location": {
"raw": "Glasgow or Reading, Berkshire, ., United Kingdom",
"city": "Glasgow or Reading",
"region": "Berkshire",
"country": null,
"is_remote": false,
"confidence": 0.8
},
"countries": []
},
"remote_policy": "hybrid",
"salary_period": null,
"workplace_type": "hybrid",
"salary_currency": null
}Extensions
{}Native Structured
{
"list_job": {
"id": "303",
"isRemote": null,
"location": {
"city": "Glasgow or Reading",
"state": "Berkshire"
},
"atsLocation": {
"city": null,
"state": null,
"country": null,
"province": null
},
"departmentId": "18831",
"locationType": "2",
"jobOpeningName": "Senior Cyber Risk & Compliance Consultant (GRA)",
"departmentLabel": "Governance, Risk & Assurance",
"employmentStatusLabel": "Full-Time"
},
"detail_errors": [],
"detail_job_opening": {
"location": {
"city": "Glasgow or Reading",
"state": "Berkshire",
"postalCode": ".",
"addressCountry": "United Kingdom"
},
"datePosted": "2026-06-11",
"atsLocation": {
"city": null,
"state": null,
"country": null,
"countryId": null
},
"description": "<p><span style=\"font-weight: bold\"><span><span>Role Overview</span></span></span><span> </span></p>\n<p><span><span>We have an exciting opportunity for a </span><span>Senior Cyber Risk & Compliance Consultant</span><span> to join our growing Governance, Risk and </span><span>Assurance</span><span> (GR</span><span>A</span><span>) team. Within this role, you will utilise your GR</span><span>A</span><span> and cyber security </span></span><span><span>expertise</span><span> to advise clients on </span><span>ISO27001 and other </span><span>information security</span><span> </span><span>consulting engagements and support in the delivery of complex security programmes.</span></span><span> </span></p>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Responsibilities</span></span></span><span> </span></p>\n<ul>\n<li><span><span>Lead cyber governance, </span><span>risk</span><span> and compliance engagements,</span><span> with primary focus on achieving certification or standards alignment to ISO27001</span><span>. </span><span>This will include gap assessments, </span><span>strategy and planning, </span><span>impleme</span><span>n</span><span>tation</span><span> support, audit</span><span> preparation and pre and post certification support.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Engage with clients to understand their</span><span> wider</span><span> threat landscape and business context, conducting risk and compliance assessments against </span><span>other </span><span>recognised frameworks</span><span> and standards</span><span> (</span><span>e.g.</span><span> </span><span> </span><span>NIST, SOC 2</span><span>, </span><span>DefStan</span><span>).</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Design, </span><span>review</span><span> and advise on the implementation and adoption of information security policies, standards, </span><span>procedures</span><span> and frameworks.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Lead cyber and third-party risk assessments, evaluate supplier security posture, and provide risk-based recommendations for supplier </span><span>selection</span><span> and oversight.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Identify</span><span> control gaps, document findings, and track remediation activities to support assurance and audit outcomes.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Produce clear, concise risk and compliance reports for executive and C-suite stakeholders, including prioritised mitigation strategies and improvement roadmaps.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Contribute to thought leadership and continuous improvement by staying current with industry developments and sharing knowledge across the cyber security community.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Demonstrate strong communication, stakeholder management and mentoring skills, upholding the highest standards of integrity and professionalism.</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>About you</span></span></span><span> </span></p>\n<ul>\n<li><span><span>E</span><span>xtensive<span> </span></span><span>experience of</span><span><span> </span>designing, leading and delivering cyber governance, risk and assurance outcomes, with a proven track record of successfully leading GRC and security assurance initiatives.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>P</span><span>ossess strong knowledge of recognised cyber security frameworks and standards, including ISO/IEC 27001, NIS Directives, NIST, and UK Government Functional Standards, with demonstrable experience aligning security controls to MOD requirements such as DEFSTAN 05-138, JSP 440, JSP 604 and Defence Cyber Resilience policies.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>E</span><span>xperienced in applying UK Government security and assurance frameworks, including GovAssure, the Cyber Assessment Framework (CAF), Defence Cyber Certification (DCC) and Government Standard (GovS) 007.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>C</span><span>onfident<span> </span></span><span>communicator</span><span>, able to clearly articulate cyber risk and the value of security investment to senior leaders, while mentoring and guiding teams to deliver high-quality outcomes.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Hold a recognised ISO/IEC 27001 Lead Implementer or Lead Auditor certification, alongside other relevant academic or professional qualifications (e.g. MSc in Cyber Security or related specialism, CISM, CISSP, PCIRM). </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Hold, or be working towards, Principal or Chartered Cyber Security Professional (ChCSP) status.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>E</span><span>ligible to work in the UK and able to obtain and maintain UK security clearance</span></span><span><span>s.</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>What we look for in our people</span></span></span><span> </span></p>\n<ul>\n<li><span><span>Strong alignment with FSP values and ethos</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Commitment to teamwork, quality and mutual success</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Proactivity with an ability to operate with pace and energy</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Strong communication and interpersonal skills</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Excellent planning and organisational skills</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Dedication to excellence and quality</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Why work for FSP?</span></span></span><span> </span></p>\n<p><span><span>At FSP, we are committed to providing:</span></span><span> </span></p>\n<ul>\n<li><span><span>A collaborative and supportive environment in which you can grow and develop your career </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>The tools and opportunity to do work you can be proud of</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Hybrid working – we empower you to make smart choices about when and where to work to achieve great results</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Industry leading coaching and mentoring </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Plus the excellent benefits package we offer at FSP</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>About FSP</span></span></span><span> </span></p>\n<p><span><span>Founded in 2012, FSP Consulting Services (FSP) are a leading digital transformation specialist, combining real world experience in business strategy, change and adoption and digital solution delivery.</span></span><span> </span></p>\n<p><span><span>As a </span><span>long-standing</span><span> Microsoft Solutions Partner, our portfolio of modern workplace</span><span>, </span><span>cloud, data, and cyber security offerings, alongside trusted managed services delivery, is driving change for high-profile clients in both the public and private sector. </span></span><span> </span></p>\n<p><br><br></p>\n<p><span><span>Our work is founded on the commitment to deliver positive impact for both organisations and their people.</span></span><span> </span></p>\n<p><span><span>Behind this commitment is a dedicated employee-first strategy, built around our organisation’s core values: human, inclusive, performance driven, and ambitious.</span></span><span> </span></p>\n<p><br><br></p>\n<p><span><span>We are proud to have been recognised by Best Companies™ as a 3-star ‘World </span><span>Class’</span><span> workplace (their highest level of accreditation) in</span><span> 2024,</span><span> 2023 and 2022</span><span>. We have also been awarded a </span><span>No.1</span><span> Best Company to Work For in the </span><span>UK, in the </span><span>Technology sector and in the South-East (Regional League Table)</span><span> in 2023.</span></span><span> </span></p>\n<p><span><span>We have also been recognised three times as No.1 Best Workplace™ in the UK by Great Place to Work®.</span></span><span> </span></p>\n<p><span><span>FSP is an equal opportunity employer. We consider all applicants for employment regardless of age, disability, sexual orientation, gender identity, family or parental status, race, colour, nationality, ethnic or national origin, </span><span>religion</span><span> or belief.</span></span><span> </span></p>\n<p><br><br></p>\n<p><span><span>Find out more about our awards here: </span></span><span><span><a href=\"https://fsp.co/awards/\" target=\"_blank\" rel=\"noopener noreferrer\">https://fsp.co/awards/</a></span></span><span><span> </span></span><span> </span></p>\n<p><br><br></p>\n<p><span style=\"font-size: 12pt\"><span style=\"color: rgb(9, 1, 54); font-weight: bold\">Equal and Fair Opportunity</span><span style=\"color: rgb(9, 1, 54)\"> </span></span><br></p>\n<p><span><span>FSP is an equal opportunity employer and welcomes applications from all suitably qualified candidates. We assess applicants based on their skills, experience, and potential, without </span><span>regard to age, disability, sexual orientation, gender identity, family or parental status, race, colour, nationality, ethnic or national origin, religion or belief, or any other protected characteristic.</span></span><span> </span></p>\n<p><br><br></p>\n<p><span><span>Please note that visa sponsorship is available for some roles, subject to eligibility and business requirements.</span></span><span> </span></p>\n<p><br><br></p>\n<p><span><span>Research </span><span>indicates</span><span> that individuals from underrepresented groups may be less likely to apply where they feel they do not meet every requirement, or where there is uncertainty about who a role is intended for. If you are interested in a role with us but are concerned that you may not meet all the criteria, we encourage you to apply. You may be a strong candidate for this role or for other opportunities within FSP.</span></span><span> </span></p>\n<p><br><br></p>\n<p><span><span>We are committed to providing a fair and inclusive recruitment process. If you require any reasonable adjustments to </span><span>participate</span><span> fully in an interview or meeting (whether virtual or in person), please let us know.</span></span><span> </span></p>",
"compensation": null,
"departmentId": "18831",
"locationType": "2",
"seekPromoted": false,
"jobCategoryId": null,
"jobOpeningName": "Senior Cyber Risk & Compliance Consultant (GRA)",
"departmentLabel": "Governance, Risk & Assurance",
"jobOpeningStatus": "Open",
"minimumExperience": "Mid-level",
"jobOpeningShareUrl": "https://fsp.bamboohr.com/careers/303",
"employmentStatusLabel": "Full-Time"
}
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/2e37bded693bffbc7e99a19f9e1ed18c9d7bcde7?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/f5e90cc6-0526-44b8-92bb-1ae1e013854dJSONGET https://api.bluedoor.sh/job-postings/v1/sources/629e2141-8dbe-4b8e-a67e-51df5f4cea11JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/2e37bded693bffbc7e99a19f9e1ed18c9d7bcde7/eventsJSON