Policy & Governance Lead

Policy & Governance Lead / GRC Analyst

Active SC Clearance – required to work on‑site support sensitive aerospace programmes.

Aerospace and Defence Experience– demonstrable background delivering architecture within MOD, Defence Digital, or UK aerospace environments.

This role will be based in Reading with hybrid/custom working options where appropriate.

Area

Policy & Governance, GRC/Assurance

Purpose of the Role

Define, maintain, govern, and assure compliance with the organisation’s ISMS policy framework, standards, and procedures, while supporting audit readiness and control assurance.

Key Responsibilities

• Own and maintain all policies, standards, procedures, and guidelines aligned to ISO 27001.
• Manage updates, reviews, version control, and stakeholder approvals.
• Operate the evidence room, ensuring evidence is correctly catalogued, tagged, and mapped.
• Track control implementation and maturity across the organisation.
• Produce audit packs, control records, and compliance dashboards.
• Support GRC functions such as control assessments, policy exception reviews, and risk treatment monitoring.

Skills & Experience

• Experience in GRC, policy governance, or compliance.
• Strong knowledge of ISO 27001 Annex A controls and documentation requirements.
• Excellent analytical and writing skills.

Please apply or get in contact on 01935403203 / Joseph.rice@morson-edge.com