1 to 25 of 75 GRC Jobs in London

Associate Director of Governance Birdcage Walk, London (with hybrid working) The Role We are looking for an Associate Director of Governance to join us on a full-time, permanent basis. You will provide strategic leadership for our governance, compliance, audit and risk functions, ensuring robust decision-making, regulatory compliance and … best practice governance across the organisation. Working closely with Trustees, Governance Boards and senior leaders, you will oversee our constitutional processes, governance frameworks and annual business cycle, while leading the management of corporate risk, internal audit, business continuity and regulatory compliance. As a senior leader, you will shape governance strategy ...

Governance, Risk & Compliance (GRC) Consultant | 6 Month Contract We are supporting a large public sector organisation within the education and research sector as they strengthen their cyber governance, compliance, and operational resilience capabilities across complex technology environments. This role will support a broad range of governance, risk, and compliance initiatives … including certification activities, cyber risk management, policy development, and security governance across enterprise and research platforms. Responsibilities Support cyber governance, risk, and compliance activities across complex enterprise environments Assist with certification and recertification programmes across recognised security and compliance frameworks Conduct gap assessments and provide practical remediation recommendations Support development ...

Cyber Governance Lead 1-month contract Inside IR35 Remote working SC Clearance advantageous but not essential Cyber Governance Lead - We are seeking an experienced Cyber Governance professional to support a programme of cyber governance, assurance, policy and standards development, and ISO certification readiness activities across a complex enterprise environment. … successful contractor will support delivery across cyber risk management, ISMS documentation, governance reporting, policy and standards development, and cyber service catalogue reform activities. This role requires a strong blend of governance, assurance, stakeholder management, and regulatory compliance experience, with the ability to operate independently and engage effectively with senior stakeholders. ...

consultancy projects across a diverse client base. Conduct cyber maturity assessments, risk reviews, and gap analyses to identify areas for improvement. Advise organisations on governance, risk management, compliance, and security best practice. Develop practical security roadmaps and recommendations aligned to business objectives. Support clients with certification and compliance initiatives, including ...

projects that demand innovation, collaboration, and thought leadership . Role – We are seeking an experienced ServiceNow IRM Business Functional Consultant to support a major Governance, Risk, and Compliance (GRC) transformation programme. This is a business-facing role acting as the bridge between Risk, Audit, Compliance, and Technology teams. You will … lead requirements gathering, process design, and functional solution definition across the ServiceNow Integrated Risk Management (IRM) platform, helping organisations strengthen governance, improve compliance, and drive operational efficiency. Key Responsibilities: Requirements Gathering & Business Analysis Facilitate workshops with: Risk Management teams Audit teams Compliance stakeholders Business process owners Analyse and document: Regulatory ...

Assurance Services team works with our largest enterprise customers to operationalize the shared responsibility model as they migrate to the cloud. Are you a Governance, Risk, and Compliance leader who can address the challenges of migrating systems and workloads to the cloud? Are you skilled at helping executives address their ...

pace. Key Responsibilities: Rapidly assess current security posture, risks and gaps across the organisation Define and implement a pragmatic, business aligned security roadmap Lead GRC, security operations and architecture oversight Drive improvements across identity & access management, cloud security and incident response Act as the senior escalation point for security incidents ...

this work, and we are looking for the people who want to build it with us. This role is how we build out our GRC capability across our global client base, including the German speaking accounts where local language is part of doing the work properly. The Work Lex Dinamica … multinationals to government contractors and high growth scale ups, and they come to us for advisory work, DPO support delivered as a service, AI governance, and privacy technology programmes including OneTrust, where we are a certified implementation partner. The GRC Consultant role is how we extend our work into governance ...

languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge of AI security risks and frameworks (e.g. ISO 42001). Security qualifications or certifications. ...

GRC Consultant (LogicGate) 6 months with potential view to extending Outside IR35 Remote working Immediate Requirement Role Overview We are currently supporting a global organisation undergoing significant transformation across its Governance, Risk & Compliance (GRC) landscape and are seeking an experienced GRC Consultant (LogicGate) to support a large-scale enterprise programme. … This role will focus on the evolution, optimisation and long-term strategic health of enterprise GRC processes, working closely with both business and technology stakeholders to deliver scalable, future-state solutions within the LogicGate platform. The successful consultant will operate with a high degree of autonomy and will play ...

this work, and we are looking for the people who want to build it with us. This role is how we build out our GRC capability and bring our clients a broader view of risk, controls and compliance technology. The Work Lex Dinamica is a consulting firm that provides Privacy … multinationals to government contractors and high growth scale ups, and they come to us for advisory work, DPO support delivered as a service, AI governance, and privacy technology programmes including OneTrust, where we are a certified implementation partner. The SaaS GRC Specialist role is how we extend that work into ...

modern, 3-Layer Operating Model. Your primary focus is to govern our outsourced Managed Detection & Response (MDR/SOC) partners, own the internal GRC (Governance, Risk, and Compliance) framework, and ensure data protection standards are met. You will act as the strategic link between external security experts and our internal ...

AgileSource are looking for a skilled Information Security Analyst to help deliver governance, risk, and compliance (GRC) services for a key client engagement. In this role, you’ll collaborate with senior business stakeholders, technical teams, and security leaders to support the organisation in enhancing its cyber security maturity. … security, cyber risk, IT audit, compliance, or related discipl ines.Proven experience carrying out risk assessments and evaluating security cont rols.Solid understanding of governance, risk management, and compliance conc epts.Working knowledge of ISO 27001 and information security management systems (I SMS).Familiarity with frameworks such as NIST CSF and Cyber Essent ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

Proven ability to operate as an SME and influence senior stakeholders Experience designing and implementing security controls in cloud environments Strong understanding of security governance, risk, and compliance Excellent communication and advisory skills Experience working across complex multi-team environments Desirable Experience within UK Central Government or other regulated sectors ...

Experience required: Frameworks: NIST, ISO 27001, COBIT (practical application). Strong Legal Entities experience Strong understanding of risk-to-control mapping. Experience working with GRC tools. Strong experience delivering technology and cyber control improvement or remediation programmes. Proven hands-on background in Technology & cyber risk management, Control design, rewrite, and ...

audit/regulatory engagement. Experience required: Frameworks: NIST, ISO 27001, COBIT (practical application). Strong understanding of risk‐to‐control mapping. Experience working with GRC tools. Strong experience delivering technology and cyber control improvement or remediation programmes. Proven hands‐on background in Technology & cyber risk management, Control design, rewrite, and ...

engage an engineer for proper implementation/li li Ability to translate between engineers and auditors without friction/li li Optional bonus: GRC tooling beyond Sprinto, DPO or DPO adjacent work, payments regulatory exposure, or a proven track record of reducing manual compliance work through automation/li/ ...

Role: Lead commercial and contractual negotiations with customers and stakeholders Provide strategic commercial guidance across complex engagements Support public sector bids, contract management and governance activities Manage risk, compliance and contractual obligations throughout the contract lifecycle Partner with legal, sales and operational teams to deliver successful outcomes ...

your skills across platform administration, automation, integrations, and wider CRM best practices. All activities will be carried out in accordance with the organisation's governance, risk, and compliance frameworks, ensuring appropriate controls, documentation, and processes are followed at all times. Key Experience Previous experience working with Salesforce in an Administrator ...

marketing, with experience spanning both Demand Generation and Marketing Operations A background in B2B SaaS, ideally in industries related to cybersecurity, compliance, GRC, or TPRM Comfort managing paid media budgets across Google Ads and LinkedIn, optimising spend and finding ways to increase profitability and top-line revenue Deep, practical experience ...

execution of multiple large-scale payments transformation programmes.* Partner with business and technology stakeholders to align strategic objectives and delivery priorities.* Manage technology delivery governance, budgets, risk, compliance, and resource planning.* Lead and develop multidisciplinary teams across technology, change, and delivery functions.* Ensure the successful delivery of regulatory, scheme-driven ...

Cyber Governance Lead - London We're looking for an experienced IT & Cyber Governance Lead to own and enhance our technology governance framework within a regulated insurance environment. In this role, you'll be responsible for IT and cyber policies, technology risk management, control frameworks, governance reporting, and audit-ready evidence … and senior stakeholders to ensure technology and cyber risks are effectively managed, controlled, and aligned with regulatory expectations. Key Responsibilities Lead the IT & Cyber Governance framework, ensuring alignment with Lloyd’s, FCA, and PRA requirements. Own and maintain IT and cyber policies, controls, and governance documentation. Manage technology and cyber ...

Information Security GRC Risk Manager North London (Hybrid - 3 days onsite) Permanent | 35 hours per week £(phone number removed) plus benefits About the Role We're seeking an experienced Information Security GRC Risk Manager to take ownership of our client's growing security risk capability. This is a hands … risk practitioner role with senior leadership exposure , not a purely strategic GRC position. You will run and mature an established risk framework , ensuring it is embedded effectively across the business while driving real outcomes. Reporting to the Information Security GRC Lead , you will own the risk function ...

Vulnerability management: Qualys + BMC Helix VR Application security: Semgrep SAST + Snyk SCA + Burp Suite Enterprise + Akamai WAF Operational cyber and GRC: BMC Helix SecOps + Remedyforce GRC Penetration testing: Burp Suite Professional, Metasploit, Nmap, OWASP ZAP Incident response playbook and runbook tooling monday.com — programme operating-model ...