Job Description

Role Overview:

We are looking for an experienced Governance, Risk & Compliance (GRC) Lead to join our growing Cyber team



You will be responsible for establishing and maintaining the cyber governance framework that underpins Genus's global security posture. This role focuses on policy, risk management, assurance, and compliance to ensure the organisation operates within defined risk appetite and meets internal, regulatory, and customer obligations.



You'll report directly to the Global Head of Cyber Security, and will work closely with Legal, Risk & Audit, Procurement, and IT to embed effective governance, manage cyber risk, and maintain alignment with standards such as NIST CSF and ISO 27001.



The role combines strategic oversight with hands-on delivery of control frameworks, audits, and assurance activities, enabling clear visibility of risk and measurable improvement in security maturity.



Ideally you will be able to visit the Stapeley office weekly (1-2 days per week) to work with the rest of the team and meet with key stakeholders there


You Will:

Cyber Governance & Frameworks

----------------------------------

Own the cyber governance framework, including policy management, control design, reporting, and compliance alignment. Maintain and evolve the NIST CSF/ISO 27001-aligned control framework to ensure consistency across regions and functions. Define and maintain the information and cyber security policy suite and associated standards. Partner with Legal, Risk & Audit, HR, and IT to manage cross-functional governance activities. Work closely with the Legal team to align cyber governance with data privacy requirements, ensuring compliance with GDPR and regional data protection laws.

Risk Management & Assurance

--------------------------------

Lead the cyber risk management process, ensuring timely identification, assessment, and reporting of risks. Maintain the cyber risk register and track remediation of audit and assurance findings. Conduct targeted control testing, risk reviews, and compliance assessments to ensure control effectiveness. Support customer and regulatory assurance activities, including questionnaires, audits, and due diligence. Develop dashboards and metrics that measure compliance, risk posture, and cultural maturity. Work with the Technical and SecOps Leads to ensure risk findings are addressed through technical and operational improvements. Support executive and board-level risk reporting and security committee updates.

Compliance & Third-Party Assurance

----------------------------------------

Coordinate internal and external cyber audits, certifications, and regulatory compliance efforts (e.g., Cyber Essentials Plus, ISO 27001). Manage supplier security assessments and third-party due diligence in collaboration with Procurement and Legal. Maintain documentation, evidence, and metrics to support audit readiness and continuous compliance. Track and report compliance status, issues, and metrics to management and governance committees.

People & Team Leadership

-----------------------------

Mentor and guide the global security team, enhancing risk and compliance awareness and proactive behaviours. Support recruitment, training, and professional growth of the security team. Promote continuous improvement and knowledge sharing across the cyber function. Drive the global security awareness and training programme, ensuring targeted content for different audiences (IT, business, executives).

Requirements:
Proven experience managing governance, risk, and compliance within an enterprise cyber security function. Strong knowledge of ISO 27001, NIST CSF, and regulatory standards (e.g., GDPR, DPA, SOX). Experience managing risk registers, audit processes, control testing, and compliance reporting. Familiarity with cloud and IT environments, translating technical risks into business terms. Excellent communication skills, able to engage with both technical and non-technical stakeholders. Relevant certifications (e.g., CISM, CRISC, ISO 27001 Lead Implementer/Auditor) desirable. Experience with data privacy and protection principles and practices.

Business Overview:

Genus

is an agricultural biotechnology pioneer. We are a global FTSE 250 company, headquartered in the UK, and listed on the London Stock Exchange. Genus PLC has a presence in over 70 countries and a global workforce of over 3,000 employees and growing. We are a worldwide leader in porcine and bovine animal genetics, partnering with farmers to transform how we nourish the world - a mission that is important to a sustainable future.

Our vision is clear:

Pioneering animal genetic improvement to sustainably nourish the world.

Our Values

Collaborate as One Team Create Value for Customers Innovate with Purpose Never stop improving

DEI

Genus is a place where you can be yourself and be part of a growing global team. We have a culture of respect, openness and fairness for all. Whatever your background, your role or your area of work, you will have the chance to thrive in an environment that inspires, challenges and supports you to succeed.

Tackling climate change:

Monitor and identify goals for the reduction of our GHG emissions from our own operations. Drive porcine and bovine genetic improvements which support productivity gains and improve feed efficiency, enabling a reduction in the production of greenhouse gas (GHG) emissions per unit of milk or meat produced Identify facility and other opportunities for reductions in GHG emissions, consistent with our goals Partner and advocate for policies that advance positive climate goals and identified United Nations Sustainable Development Goals (SDGs).

Benefits Overview:
Performance related bonus 25 days holidays + Bank Holidays Pension Private Medical cover Health Cash back scheme Employee Assistance Program Employee share plan Flexible Working Policy (Where appropriate/practicable) Enhanced maternity leave 12 weeks at full pay followed by 4 weeks at 50% followed by SMP Comprehensive L&D program including career development programs, access to Genus University and Mango (languages)

Equal Employment Opportunities:

Genus is an equal opportunity employer. In accordance with anti-discrimination law, it is the purpose of this policy to effectuate these principles and mandates. Genus prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law. Genus conforms to the spirit as well as to the letter of all applicable laws and regulations.


Recruitment Fraud Warning:

Genus plc will never ask you to provide fees or payment for computer, software, or other equipment or supplies during the recruitment and/or onboarding process. If you have any questions about your individual application, please contact the Genus Talent Acquisition team at recruiting@genusplc.com.