Information Security Governance, Risk and Compliance Specialist

<div> <p class="font-claude-response-body break-words whitespace-normal"><strong>Location:</strong> London, UK</p> <p class="font-claude-response-body break-words whitespace-normal"><strong>Weekly office requirement:</strong> Hybrid – 2 days per week</p> <p class="font-claude-response-body break-words whitespace-normal"><strong>Employment type:</strong> Permanent</p> <p class="font-claude-response-body break-words whitespace-normal"><strong>Seniority level:</strong> Mid-Senior</p> <p class="font-claude-response-body break-words whitespace-normal"> </p> <p class="font-claude-response-body break-words whitespace-normal">At GWI we're always looking for extraordinary people who thrive on making an extraordinary impact. Right now we're looking for an <strong>Information Security GRC Specialist</strong> to play a key role in our <strong>Legal</strong> team in London. If that's you, and making a difference gets you out of bed in the morning, keep reading. It could be the start of something, well, extraordinary.</p> </div> <h2 class="text-text-100 mt-3 -mb-1 text-[1.375rem] font-bold">Sounds great, what will I be doing? 🤔</h2> <p class="font-claude-response-body break-words whitespace-normal">As our Information Security GRC Specialist you'll play a pivotal role in shaping the future of security compliance at GWI. Reporting into our General Counsel and working closely with our Information Security, Product, and Technology teams, you'll own our compliance posture across security frameworks, vendor risk, and client-facing security requirements — while building a security-conscious culture across the business.</p> <p class="font-claude-response-body break-words whitespace-normal">A few things you'll be responsible for:</p> <p class="font-claude-response-body break-words whitespace-normal">👉 Own and maintain GWI's ISO 27001 certification and compliance across relevant security frameworks, keeping our posture sharp as the threat landscape evolves.</p> <p class="font-claude-response-body break-words whitespace-normal">👉 Develop, implement, and maintain information security policies and procedures aligned with industry best practices.</p> <p class="font-claude-response-body break-words whitespace-normal">👉 Lead vendor risk management and client security assessments — including responding to client security questionnaires and onboarding requirements.</p> <p class="font-claude-response-body break-words whitespace-normal">👉 Build and maintain GWI's security trust portal, showcasing our credentials to clients and stakeholders using tools such as Drata or Vanta.&lt