Hamilton Barnes 🌳
Information Security Consultant

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
GRC / Information Security Consultant
📍 Location – Remote
About the Role
We're looking for an experienced GRC / Information Security Consultant to join a growing cyber security consultancy. This is an exciting opportunity to work with organisations across a variety of sectors, helping them strengthen their information security governance, manage cyber risk, and achieve compliance with recognised security standards.
This is a client-facing consultancy role where you'll work closely with senior stakeholders, delivering pragmatic advice and translating complex technical and regulatory requirements into clear business outcomes.
You'll play a key role in delivering governance, risk and compliance engagements while also contributing to the continual improvement of internal information security practices.
What You'll Be Doing
As a GRC / Information Security Consultant, you'll be responsible for:
- Delivering information security and GRC consultancy engagements for clients.
- Conducting security maturity assessments, risk assessments, gap analyses and audit readiness reviews.
- Supporting organisations with ISO/IEC 27001 implementation, certification readiness and continual improvement of Information Security Management Systems (ISMS).
- Assessing cyber security governance, risk management processes and control effectiveness.
- Developing and reviewing security policies, standards, procedures and risk registers.
- Facilitating workshops, stakeholder interviews and evidence reviews.
- Producing high-quality reports with clear findings, risk ratings and practical recommendations.
- Supporting supplier assurance, third-party risk management, business continuity and data protection activities where required.
- Collaborating with internal teams to deliver successful client engagements.
- Contributing to service development, methodologies and best practice across the consultancy.
- Maintaining knowledge of emerging threats, regulatory developments and industry standards.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
About You
You'll be a confident consultant who enjoys working directly with clients and solving complex security and compliance challenges.
Essential
- 3+ years' experience in Information Security, GRC, IT Risk, Audit, Compliance or Cyber Security.
- Strong knowledge of ISO/IEC 27001 and information security governance.
- Experience delivering ISO 27001 gap analyses, internal audits, implementation or certification support.
- Ability to identify and communicate information security risks and practical remediation actions.
- Excellent written and verbal communication skills.
- Strong stakeholder management and consulting skills.
- Ability to manage multiple projects and priorities.
Desirable
- Consultancy experience within cyber security or GRC.
- Experience implementing or maintaining an ISMS.
- Knowledge of Cyber Essentials, Cyber Essentials Plus, GDPR and supplier assurance.
- Familiarity with frameworks including CAF, NIST CSF, CIS Controls, SOC 2, PCI DSS, ISO 22301 or ISO 27701.
- Experience with GRC platforms or audit management tools.
- Security clearance (SC/DV) or willingness to undergo vetting.
- Experience with ISO 9001.
- Membership of a relevant professional body (e.g. CiSP).


Get help with your application
Your very own career expert that helps elevate your application to the next level.
What We're Looking For
We're looking for someone who is:
- Customer-focused and commercially aware.
- Comfortable engaging with stakeholders at all levels.
- Passionate about helping organisations improve their cyber resilience.
- Self-motivated with the ability to work independently.
- Collaborative and keen to share knowledge with colleagues.
- Committed to continuous professional development.
What We Offer
- The opportunity to work with a diverse range of clients and industries.
- Interesting and varied consultancy engagements.
- A supportive and collaborative team culture.
- Flexible and hybrid working arrangements.
- Ongoing professional development and support for further certifications.
£45,000 - £55,000 base salary
Interested? If you're passionate about information security, governance, risk and compliance, and want to make a real impact by helping organisations strengthen their cyber resilience, we'd love to hear from you.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location