8 of 8 GRC Jobs in the City of London

Policy and Standards and associated processes Supporting the definition of metrics for measuring compliance to security policies and standards, working in collaboration with the Risk, Governance, and Assurance teams to ensure they align to the risks the business faces and providing regular reports on compliance metrics Tracking effectiveness … through your actions and collaboration. You will be responsible for executing the day-to-day administrative duties that form the foundation of our risk management and compliance programs. MANDATORY 3 Ability to translate complex, technical problems into easy-to-understand language Good understanding of and passion for cyber security best ...

market/competitive dynamics, and ensuring that we build a product that addresses real pain points for our users (e.g., cybersecurity/risk teams, GRC teams, supply chain teams). Key Responsibilities: Define and maintain a compelling product vision and roadmap aligned with business goals, customer needs and market dynamics … degree in business, engineering, computer science, or equivalent; advanced degree is a plus. Desired/Nice to Have: Experience in cybersecurity, risk management, GRC (governance, risk & compliance) or supply-chain risk management. Familiarity with third-party/vendor risk management platforms and frameworks (e.g., NIST, ISO 27001, SOC2, supply-chain ...

Consulting engagements. Act a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards) and leading industry-based practices (e.g. NIST CSF, ISO 2700x) Managing the coordination and communication … and experience in implementing the regulations Experience working with regulated financial services entities 3+ years' variedexperience in information security, risk management Strongunderstanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53/CSF, NIS2 and DORA Hands-onexperience building credibility with external stakeholders Provenability ...

Basic Salary + Hybrid Working Overview We are seeking an experienced Lead Cyber Security Solution Architect to lead a team of Governance, Risk, and Control (GRC) specialists. This team is responsible for conducting Secure-by-Design assessments on technology projects, ensuring compliance with IT security policies and requirements. Role and … Proven ability to manage complex tasks with broad scope and ambiguity. Strong background in cybersecurity assurance, policies, and standards. Expertise across IT security domains: Governance, IAM, Risk Management, Security Testing, Incident Management, Vulnerability Management. Experience in senior stakeholder engagement and management reporting. Ability to coach and mentor team members. Deep ...

building the infrastructure that makes autonomous AI safe for enterprise deployment. Not governance theatre. Not compliance checkboxes. Actual technical systems that can monitor, quantify, and govern AI agents operating with autonomy in production environments. If you've been following the trajectory from static models to agentic systems—and the corresponding … firms navigating the shift from analytical AI to agentic systems. The market timing is critical: enterprises are deploying agents at scale, regulators are demanding governance frameworks, and existing Third-Party Risk Management (TPRM) platforms have near-zero AI-risk depth. We have an estimated 18-24 month competitive window before ...

large enterprise. This framework will integrate key areas such as Identity and Access Management, Penetration Testing, and System Security, serving as a robust governance, risk, and compliance (GRC) structure. Other frameworks, including CAF, PCI, and ISO, will nest under this new framework, enhancing the organisation's overall security posture. … sectors at an enterprise scale are also encouraged to apply. Business Analysis Expertise: A focus on business analysis and process design within the cybersecurity GRC domain is crucial, rather than deep technical expertise. Additional Details: In this role, you will also help gather requirements for security tooling and coordinate improvements ...

leading professional services organisation is looking for an Information Security Officer with strong governance, risk, and compliance experience. This is a standalone role with real ownership — ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST … Support ISO 22301/business continuity Coordinate internal/external audits and evidence gathering Manage vendor risk and customer due-diligence requests Provide independent governance oversight (separate from IT Ops) About You Strong experience with ISO 27001 (Annex 8), CE+, and risk management Background in audits, incident response, and governance ...

Client A fast-growing is a SaaS platform at the forefront of Governance, Risk & Compliance (GRC). They enable organisations to confidently navigate increasingly complex risk, compliance, cybersecurity and supply-chain challenges. Trusted by 400+ customers globally, used across Financial Services, Retail, Government, Legal and Enterprise sectors. Culturally this ...