1 to 25 of 108 GRC Jobs in England

GRC Analyst – 6-month contract – London/Remote – Inside IR35 My Customer is looking for a GRC Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role, you will be … responsible for identifying, assessing, and tracking security risks across assets, systems, and third parties, ensuring compliance with internal standards, policies, and regulatory frameworks. Key Skills from the GRC Analyst: Strong background in Security Risk and Governance with hands-on experience in Archer (experience with other GRC tools is also valuable). Solid understanding of risk assessment methodologies, security frameworks (NIST …/ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the GRC Analyst: Maintain and improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and More ❯

seamless data flow and integration between corporate systems (for example, linking finance and procurement systems or HR and payroll systems) to create a single source of truth. Implement data governance practices so that management reports and analytics are accurate and timely. Governance, Risk & Compliance: Implement strong IT governance and security practices for all corporate tech systems. Proactively use technology to … Expertise: Hands-on knowledge of implementing and supporting enterprise software such as ERP systems (e.g., Oracle Financials, SAP, or Netsuite), HRIS/Payroll systems (e.g., Workday, PeopleSoft, ADP), and GRC (Governance, Risk & Compliance) tools. Understanding of system architecture, integrations (middleware, APIs), and data management. Enterprise Applications: Proficiency with enterprise resource planning (ERP) systems, financial reporting software, and HR management systems. More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate More ❯

times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate More ❯

times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate More ❯

times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate More ❯

possess the following? Relevant experience in cybersecurity risk management or equivalent in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of More ❯

possess the following? Relevant experience in cybersecurity risk management or equivalent in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of More ❯

possess the following? Relevant experience in cybersecurity risk management or equivalent in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of More ❯

possess the following? Relevant experience in cybersecurity risk management or equivalent in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of More ❯

AI Governance and Risk Lead - London, UK About the Role Here at EDF, we’re looking for a AI Governance and Risk Lead to join our team! The Opportunity As the AI Governance and Risk Lead, you will support the implementation of EDF UK’s AI Digital Playbook and ensure that AI systems are developed and deployed in line with … ethical, regulatory, and internal governance standards. You’ll work closely with the AI and Automation Governance and Delivery Manager and the AI Manager to embed robust governance practices across the AI lifecycle, supporting federated teams and ensuring compliance with evolving UK and EU AI regulations. This role is critical to ensuring that EDF’s AI and Automation Centre of Excellence … what it means to succeed. That’s why we support you to pursue a career that’s unique to you. Because success is personal. What you’ll be doing Governance & Compliance Act as an advisor to the AI & Automation Governance and Delivery Manager in the development and refinement of AI governance policies and risk management frameworks. Contribute to the design More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

the tender process. This is a hybrid working role, with a requirement to be in our Warwick a few times per month. What you'll do: Assist on all Governance, Risk and Compliance activities across Network Services Business Unit. Provide specialist security expertise for multiple internal projects across the Network Services business area. Provide guidance in secure software development throughout More ❯

the tender process. This is a hybrid working role, with a requirement to be in our Warwick a few times per month. What you'll do: Assist on all Governance, Risk and Compliance activities across Network Services Business Unit. Provide specialist security expertise for multiple internal projects across the Network Services business area. Provide guidance in secure software development throughout More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

Overview "Head of Cyber Governance, Risk and Compliance" - London Hybrid Full-time Personal Contract REQ5121 As a strategic leader in Governance, Risk and Compliance, you will guide SGN's cyber security and regulatory approach, ensuring our operations remain secure, resilient and fully compliant. We deliver safety, warmth, and comfort to homes and businesses. Every role, whether in the office or … on the front line, plays a key part in this mission. Here's how you will contribute Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001/2, and NIST-2. Oversee delivery plans, resource allocation, and stakeholder engagement for GRC initiatives. Training & Awareness Develop and More ❯

Head of Cyber Governance, Risk and Compliance London | Hybrid | Full-time | Personal Contract Competitive pension scheme – Enhanced maternity/paternity pay – Life assurance – HolidayPlus – Cycle2work Scheme & more REQ5121 As a strategic leader in Governance, Risk and Compliance, you will guide SGN’s cyber security and regulatory approach, ensuring our operations remain secure, resilient and fully compliant. We deliver safety, warmth … comfort to homes and businesses. Every role, whether in the office or on the front line, plays a key part in this mission. Here’s how you will contribute... Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001/2, and NIST-2. Oversee delivery plans … resource allocation, and stakeholder engagement for GRC initiatives. Training & Awareness Develop and maintain SGN’s Information Security training and awareness materials. Integrate lessons learned from incidents and address feedback from training delivery. Information Security Policy & ISMS Maintain a robust portfolio of security policies, standards, and procedures to support ISO27001, NIST, and NIS eCAF compliance. Ensure policies are current, reviewed regularly More ❯

Through our end-to-end range of cyber and cloud capabilities, CyberCX empowers our customers to securely accelerate opportunities in the digital economy. Our services include: consulting and advisory, governance, risk and compliance, incident response, penetration testing and assurance, network and infrastructure solutions, cloud security and solutions, identity and access management, managed security services and cyber security training. More ❯

cost effective and innovative shared solutions. Leads the development of strategic and collaborative technology partnerships where these provide value for money, reduce risk and enhance service quality. Key Deliverable: Governance, Risk and Compliance Ensures that technology and systems are fit for purpose and robust enough to head-off existing and emerging digital risks, working with schools to control access, install More ❯

ICS environments? This is an exciting opportunity to join a leading global renewables business as they strengthen their Cyber and Information Security capability. Reporting to the Head of InfoSec Governance, Risk & Compliance (via the OT Security Risk & Compliance Manager), the OT Security Risk & Compliance Lead will play a pivotal role in shaping, managing and influencing security risk management activities across More ❯

Senior GRC Analyst This is a hybrid role and can be based from either our Peterborough, Manchester, Stoke, Tunbridge Wells or Chesterfield office. Role Purpose: Reporting to the Head of Information Security to provide BAU operational technical security support. The Senior GRC Analyst will be responsible for compliance governance to security standards, delivering required GRC processes and analysis day to … also help provide ongoing assurance that digital systems and data are safe and secure. Key Accountabilities & Responsibilities: Be an SME for PCI DSS and contribute to and ensure compliance governance to security standards. Contribute to business and technology audits. Engagement with 3rd party partners as a SME and to ensure due diligence process adherence. Management IT Security GRC activities and … end-to-end delivery of information security practices and processes. SME, advice, oversight and governance of security policies, processes, procedures and standards. Contribute to the delivery of the security roadmap and a continuous improvement model for security. Ensure Information Security controls are operating effectively. Ensure where gaps are identified that these have remediation plans agreed and delivered. Ensure annual Security More ❯

Senior Information Security Analyst We are looking for a Senior Information Security Analyst with a strong operational background with a focus on Cyber Security and a working knowledge of GRC to be part of a central team supporting a mixture of security operations ensuring compliance with business needs. This will focus around vulnerability and threat management, making sure security controls More ❯

Senior Information Security Analyst We are looking for a Senior Information Security Analyst with a strong operational background with a focus on Cyber Security and a working knowledge of GRC to be part of a central team supporting a mixture of security operations ensuring compliance with business needs. This will focus around vulnerability and threat management, making sure security controls More ❯

Security Risk Analyst 6-month contract London/Remote Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role, you … risks across assets, systems, and third parties, ensuring compliance with internal standards, policies, and regulatory frameworks. Key Skills from the Security Risk Analyst: Strong background in Security Risk and Governance with hands-on experience in Archer (experience with other GRC tools is also valuable). Solid understanding of risk assessment methodologies, security frameworks (NIST, ISO (phone number removed , and compliance More ❯