Senior Information Security Consultant

My Dublin based client is recruiting for an Information Security GRC Consultant to join team on a permanent basis. The role requires only 1 day per week on site. The Information Security GRC Consultant will work in a standalone role within the security function, acting as the primary point of contact for information security matters related to service delivery. The role combines strategic advisory responsibility with hands-on analytical involvement, providing expert guidance on security risk, control effectiveness, and regulatory compliance across internal services and third-party providers.

Responsibilities

• Act as a trusted security advisor to senior stakeholders, partners, and assurance functions.
• Lead and coordinate information security risk assessments, working with risk owners to define proportionate mitigation or acceptance.
• Assess the design and effectiveness of security controls across services and suppliers.
• Support compliance with organisational standards, regulatory obligations, and industry frameworks (ISO 2700x, COBIT, DORA, NIS2).
• Develop and maintain security policies, standards, and control documentation.
• Contribute to contractual security requirements and ongoing assurance for suppliers, cloud, and outsourcing providers.
• Drive security improvement initiatives, including automation, reporting, and insight using Power BI, Power Automate, and AI-enabled tools.

Skills & Experience

• Degree in Computer Science, Natural Sciences, or equivalent experience.
• 5 -7 years’ experience in information security, IT risk, or security consulting roles.
• Strong knowledge of security governance, ISMS, risk frameworks, and regulatory standards.
• Experience with supplier security, outsourcing, and cloud/SaaS environments.
• Ability to operate independently, influence senior stakeholders, and communicate complex security topics clearly in English.