As Information Security GRC Specialist, you will own and drive Awin’s global Information Security Risk Management capability end-to-end, ensuring the business understands its risks and takes measurable action to reduce them.
Requirements
- Lead enterprise-wide risk identification and assessment across strategic initiatives, technology, and third parties.
- Own and maintain the Information Security Risk Register, ensuring it reflects true risk exposure, progress, and outcomes.
- Define, embed, and maintain the organisation’s risk appetite, ensuring it is actively used in both business and technology decision-making.
- Provide clear, opinionated, and actionable risk insights to senior management and the board.
- Own and continuously improve Awin’s global information security risk management framework, aligned to ISO 27001 and regulatory requirements.
- Embed risk management into business processes so that risks are considered early and proactively, rather than retrospectively.
- As the most senior member of the team, mentor and develop GRC team members, building capability in risk management and assurance.
- Lead horizon scanning across emerging threats, regulatory changes, and industry developments, translating these into practical risk implications and actions for the business.
Benefits
- Flexi-Week and Work-Life Balance
- Remote Working Allowance
- Flexi-Office
- Development
- Appreciation
