Governance Risk Compliance Specialist

A unique and exciting opportunity has become available for a Governance Risk and Compliance Specialist within the Information Security function to join the Cabot Group on a permanent basis. This is a UK based hybrid role, with travel to a UK office required once or twice a month. You will be responsible for… As a Governance, Risk, & Compliance Specialist you will provide expertise in the areas of Information Security policy development and maintenance, security training, phishing simulations, risk management and assessment, and security compliance frameworks to support global GRC initiatives across the enterprise. You will have experience identifying cybersecurity best practices and recommending improvements to information systems and business processes to align with them, in addition to managing complex GRC initiatives and driving them to successful completion. Some of the key responsibilities include: Develop and support information security governance policies, standards, and processes in collaboration with business and technical teams, and align them with business goals Prepare and deliver information security training, education, and awareness activities appropriate for target audiences Evaluate effectiveness of information security controls and recommending remediation or control re-design guidance where necessary Fine tune and drive adoption of an information security risk assessment framework and related processes; maintain Information Security risk registers and perform annual assessments Maintain knowledge of FTC Safeguards, PCI DSS, ISO 27001, and NIST CSF and ensure organizational compliance Partner with business leaders to gain a deeper understanding of their needs and provide solutions that meet their goals and objectives while aligning with security best practices and policy Maintain working knowledge of data privacy laws and regulations Mentor junior members of the GRC Team and support their professional development We are looking for someone with: Proficiency in using GRC tools and software to streamline and automate risk and compliance processes (i.e., AuditBoard) Skilled in audit management and experience liaising with third party auditors Able to work in a complex, global environment, actively and effectively managing relationships with other business units and stakeholders Skilled in communicating technical requirements with non-technical stakeholders Excellent oral and written communication skills Excellent problem solving and analytical skills Strong time management skills, including effective responsibility prioritization Strong analytical and problem-solving skills to identify and assess security risks and develop appropriate mitigation strategies Familiarity with relevant industry regulations and compliance requirements such as GDPR, CCPA, SOX, etc. Familiarity with various cybersecurity frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls, etc. What happens next? If this sounds like you and you’d like to join our rapidly expanding company that offers excellent career progression, then apply now, a member of our Talent Acquisition team will then be in touch with you! Working for Cabot: You’ll be working for an award winning; Investors in People Gold accredited organisation. We are passionate about the ethical treatment of our customers and employees. Our mission is to create pathways to economic freedom. Our vision is to make credit accessible by partnering with our consumers to restore their financial health. Diversity and inclusion are very important to us at Cabot, and we value a multitude of diverse talent within our business. We want everyone to be themselves at work and encourage a culture that includes everyone. Our policies ensure that every candidate and employee are treated fairly and with equal opportunities. **At Cabot we are highly regulated by our clients, as such, any successful candidates will have to undergo a basic credit check and criminal background check. Please note that we are unable to proceed to interview stage if a CCJ, IVA or Bankruptcy appears on a credit file, or if you do not have full right to work in the UK – we are unfortunately unable to offer sponsorship.