Apply now »

Cyber Security GRC Consultant

About the job you’re considering

 

Job Location Salisbury

 

Onsite 5 days per week

 

We are seeking a DV Cleared skilled Security Governance, Risk and Compliance Consultant to support an internal consultancy initiative aimed at aligning contractual security requirements with recognised industry frameworks such as NIST, ISO 27001, and Secure by Design principles. This role plays a key part in ensuring that both client-facing engagements and internal services meet contractual obligations, regulatory standards, and industry best practices.
The successful candidate will be responsible for reviewing existing security controls, identifying gaps and weaknesses, assessing the risks associated with non-compliance, and recommending appropriate mitigation strategies. This position requires a strong understanding of risk management, regulatory compliance, and the ability to translate complex requirements into practical, actionable solutions.



Your role

 

Security Requirements Alignment: Translate contractual and regulatory security requirements into actionable controls aligned with industry frameworks (e.g., ISO 27001, NIST, CIS).

 

Risk Assessment & Gap Analysis: Evaluate existing security controls, identify gaps or weaknesses, and assess risks associated with non-compliance or control failure.

 

Mitigation Strategy Development: Recommend and support the implementation of appropriate mitigation measures to address identified risks and improve security posture.

 

Stakeholder Engagement: Collaborate with internal teams, clients, and third-party vendors to ensure security expectations are clearly understood and met.

 

Security Assurance Reviews: Conduct assurance activities such as control testing, documentation reviews, and evidence validation to confirm compliance with agreed standards.

 

Policy & Process Improvement: Contribute to the development and refinement of security policies, procedures, and governance models to enhance operational resilience.

 

Audit & Compliance Support: Assist with internal audits, providing evidence and insights to demonstrate compliance with contractual and regulatory obligations.

 

Reporting & Documentation: Produce clear, concise reports and dashboards that communicate findings, risks, and recommendations to technical and non-technical audiences.

 

At Capgemini, you can bring your whole self to work. Inclusivity is part of our everyday culture, and we strive to create a representative and welcoming environment for all.

Your skills and experience

 

  • Proven experience in security governance, risk, and compliance within consultancy or project environments, including client-facing consultancy or internal compliance initiatives. 
  • Strong understanding of NIST CSF, NIST SP 800-53, NCSC CAF, ISO/IEC 27001.
  • Ability to interpret contractual language and translate it into actionable control requirements.
  • Experience conducting risk assessments and articulating business and customer impacts.
  • Excellent communication skills, with the ability to translate technical findings into business-relevant insights.
  • Ability to work independently and to meet tight deadlines 
     

Desirable Attributes

  • Certifications such as CISSP, CISA, CRISC, or equivalent.
  • Familiarity with additional frameworks (e.g., ISO 22301, ISO 31000, ISO 28000, ITIL, PASTA, OWASP Top 10, PCI-DSS, GDPR, DEFCON 660/659 etc..).

We are a Disability Confident Employer

Capgemini is proud to be a  Disability Confident Employer (Level 2) under the UK Government’s Disability Confident scheme. As part of our commitment to inclusive recruitment, we will offer an interview to all candidates who:

 

  • Declare they have a disability, and
  • Meet the minimum essential criteria for the role.

 

Please opt in during the application process.

Your security clearance and pre-employment checks

If you are successfully offered this position you will go through a series of preemployment checks including identity nationality single or dual or immigration status employment history going back three continuous years and unspent criminal record check known as Disclosure and Barring Service. 

 

To be successfully appointed to this role, it is a requirement to obtain Developed Vetting (DV) clearance.  

To obtain DV clearance, the successful applicant must have resided continuously within the United Kingdom for the last 10 years, along with other very detailed criteria and requirements.  

Throughout the recruitment process, you will be asked questions about your security clearance eligibility such as, but not limited to, country of residence and nationality. 
 
Some posts are restricted to sole UK Nationals for security reasons; therefore you may be asked about your citizenship in the application process

Make it real – what does it mean for you?

Flexibility to work your way
You will be encouraged to have a positive work-life balance.  Our hybrid-first way of working means we embed hybrid working in all that we do and make flexible working arrangements the day-to-day reality for our people.  All UK employees are eligible to request flexible working arrangements.
 
 
 
Your wellbeing
You’d be joining an accredited Great Place to work for Wellbeing in 2024. Employee wellbeing is vitally important to us as an organisation.  We see a healthy and happy workforce a critical component for us to achieve our organisational ambitions.
To help support wellbeing we have trained ‘Mental Health Champions’ across each of our business areas, and we have invested in wellbeing apps such as Thrive and Peppy.
 
 
 
 
Shape your path
You will be empowered to explore, innovate, and progress. You will benefit from Capgemini’s ‘learning for life’ mindset, meaning you will have countless training and development opportunities from thinktanks to hackathons, and access to 250,000 courses with numerous external certifications from AWS, Microsoft, Harvard ManageMentor, Cybersecurity qualifications and much more.
 
 
 
 
Shared energy
You’ll be bringing your unique skills and perspectives to the team, inspiring and taking inspiration from your teammates as you unlock value in everything you do. You’ll be joining a professional community of experts, who have got your back and will support you, every step of the way.

Why should you consider Capgemini?

Growing clients’ businesses while building a more sustainable, more inclusive future is a tough ask.  When you join Capgemini, you’ll join a thriving company and become part of a collective of free-thinkers, entrepreneurs and industry experts.  We find new ways technology can help us reimagine what’s possible.  It’s why, together, we seek out opportunities that will transform the world’s leading businesses, and it’s how you’ll gain the experiences and connections you need to shape your future.  By learning from each other every day, sharing knowledge, and always pushing yourself to do better, you’ll build the skills you want. You’ll use your skills to help our clients leverage technology to innovate and grow their business. So, it might not always be easy, but making the world a better place rarely is.

About Capgemini

Capgemini is an AI-powered global business and technology transformation partner, delivering tangible business value. We imagine the future of organisations and make it real with AI, technology and people. With our strong heritage of nearly 60 years, we are a responsible and diverse group of over 420,000 team members in more than 50 countries. We deliver end-to-end services and solutions with our deep industry expertise and strong partner ecosystem, leveraging our capabilities across strategy, technology, design, engineering and business operations. The Group reported 2025 global revenues of €22.5 billion. Make it real | www.capgemini.com
Ref. code:  469674
Posted on:  11 Jun 2026
Experience Level:  Experienced Professionals
Contract Type:  Permanent
Location: 

Bristol, GB

Brand:  Capgemini
Professional Community:  Cybersecurity

Apply now »