Governance, Risk and Compliance (GRC) Manager

As a Governance, Risk & Compliance Manager, you'll manage the approach to Cyber Governance, Cyber Risk and (for the UK only) Cyber Regulatory Compliance as owned by the Global CISO and defined by the National Grid Cyber Security Senior Leadership team; and build long-term, strategic relationships with senior stakeholders. You'll help drive adoption and adherence to policies and standards and ensure the organization's approach to GRC is fit for purpose, current, and effectively managed. Key responsibilities include the following:

• Utilising the NIST CSF v2.0 as a framework to align to, the GRC manager shall (under the direction of the National Grid Cyber Security Senior Leadership team) support the National Grid Cyber Security Senior Leadership team in ensuring:


• Organizational Context (GV. OC): The circumstances - mission, stakeholder expectations, dependencies, and legal, regulatory, and contractual requirements - surrounding the organization's cybersecurity risk management decisions are documented.


• Risk Management Strategy (GV.RM): The organization's priorities, constraints, risk tolerance and appetite statements, and assumptions are documented, communicated, and used to support risk decisions. That the cyber risk strategy (methodology) integrates with and supports the Enterprise Risk Management approaches adopted by National Grid.


• Roles, Responsibilities, and Authorities (GV.RR): Cybersecurity roles, responsibilities, and authorities to foster accountability, performance assessment, and continuous improvement as defined by the National Grid Cyber Security Senior Leadership team are documented and communicated.


• Policy (GV.PO): Organizational cybersecurity policy as directed are established, owned by the Global CISO and approved by the National Grid Cyber Security Senior Leadership team, and communicated.


• Oversight (GV.OV): Results of organization-wide cybersecurity risk management activities and performance are used to inform the National Grid Cyber Security Senior Leadership team. To enable improvement, and adjustment of the risk management strategy as instructed by the National Grid Cyber Security Senior Leadership team.


• Cybersecurity Supply Chain Risk Management (GV.SC): Cyber supply chain risk management processes are managed, monitored, and improved by organizational stakeholders. Cyber Security Schedules are centrally maintained based on input from the National Grid Cyber Security Senior Leadership team and cyber risk outcomes.
  
  Master's Degree in a relevant discipline, or an equivalent combination of education, training, and experience, or a BS/BA degree or higher in a technical discipline


• 10+ years of relevant experience.


• 5+ years of people management experience with relevant industry and professional certifications.


• Excellent communication and interpersonal abilities, including articulating complex ideas and influencing in a matrix environment.


• Develop trusted relationships with key stakeholders to deliver desired business outcomes.
  
  At National Grid, we keep people connected and society moving. But it's so much more than that. National Grid supplies us with the environment to make it happen. As we generate momentum in the energy transition for all, we don't plan on leaving any of our customers in the dark. So, join us as a Governance, Risk & Compliance Manager, and find your superpower., At National Grid, we work towards the highest standards in everything we do, including how we support, value and develop our people. Our aim is to encourage and support employees to thrive and be the best they can be. We celebrate the difference people can bring into our organisation, and welcome and encourage applicants with diverse experiences and backgrounds, and offer flexible and tailored support, at home and in the office.
  
  A competitive salary between £71,000 - 89,000 - dependent on capability


As well as your base salary, you will receive a company car or allowance, a bonus of up to 20% of your salary for stretch performance and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%. You will also have access to a number of flexible benefits such as a share incentive plan, a salary sacrifice technology scheme, support via the employee assistance line and matched charity giving to name a few.