1 to 25 of 28 GRC Jobs in the North of England

Company description: Water Utility Company based in Yorkshire region of England. Job description: Security Governance Risk & Compliance Analyst Hello! Thanks for stopping by. Let us tell you about all the great reasons to join us here at Yorkshire Water: We offer a competitive salary, depending on experience (£36,538 45,673) Annual incentive related bonus (£1000 maximum bonus opportunity for … the performance year) Attractive pension scheme (up to 12% company contribution) Development opportunities in line with the Security Governance Risk & Compliance Analyst progression plan 25 days annual leave plus bank holidays plus an extra wellness day Life assurance cover of 4 times pensionable salary A great benefits package choose from health cash plan scheme, critical illness insurance, dental insurance, life … days in the office a week Bradford) Work type: 12-month fixed term contract. 37 hours per week, Monday Friday. We have an exciting opportunity for a Security Governance Risk &Compliance Analyst to join the IT team at Yorkshire Water and be a part of helping Yorkshire Water to provide the best service to our customers. Could this be you More ❯

against climate change: we want you to be part of our journey. The role: The Information Security Assurance Manager is a hands-on, multi-disciplinary role combining project assurance, governance, risk management, and compliance. You will work across business units, projects, and suppliers to ensure security is embedded in everything we dofrom design to delivery. You will also support the More ❯

security leader with a blend of strategic vision and operational expertise. You should bring: Proven experience defining and executing cyber security strategy at a senior level Strong knowledge of governance, risk, compliance, and regulatory frameworks Leadership experience managing cyber security operations teams Excellent stakeholder management skills, including board-level engagement The ability to represent the organisation externally with authority and More ❯

technical audiences Experience working in a consultancy environment, with a strong understanding of client engagement and delivery dynamics Desirable Experience Identity management and authentication/authorization patterns Involvement in governance, risk, compliance, operational security, and secure user management Penetration testing certifications (e.g. OSCP, CREST, TIGER or equivalent) Active participation in knowledge sharing and community engagement Benefits Competitive salary and comprehensive More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time … Eligibility: Open only to UK citizens/residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance standards. Key Responsibilities Monitor and manage IT security risks, maintaining risk registers … with UK regulations (GDPR, NIS, Data Protection Act) and international standards (ISO 27001). Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor/third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time … Eligibility: Open only to UK citizens/residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance standards. Key Responsibilities Monitor and manage IT security risks, maintaining risk registers … with UK regulations (GDPR, NIS, Data Protection Act) and international standards (ISO 27001). Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor/third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time … Eligibility: Open only to UK citizens/residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance standards. Key Responsibilities Monitor and manage IT security risks, maintaining risk registers … with UK regulations (GDPR, NIS, Data Protection Act) and international standards (ISO 27001). Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor/third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data More ❯

Exposure to multiple programming languages and data storage technologies Experience managing performance reviews, setting objectives, and giving feedback Active participation in technology communities and knowledge-sharing initiatives Understanding of governance, risk, and compliance in technical delivery Benefits Competitive salary and comprehensive benefits package Flexible working arrangements Opportunities to work on impactful, large-scale digital transformation projects Supportive environment focused on More ❯

lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯

lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯

and technical leadership role, ideal for a seasoned security professional with a background in enterprise-scale or local government IT environments. £700pd gross umbrella. Key Responsibilities Strategic Planning and Governance Develop, review, and maintain the IT Security Strategy aligned to organisational objectives and statutory duties. Lead the creation and enforcement of cybersecurity governance frameworks. Align security objectives with enterprise architecture … e.g. Acceptable Use, Incident Response, Remote Access). Ensure compliance with NCSC, ISO 27001, NIST, Cyber Essentials, and GDPR frameworks. Clarify security roles and responsibilities across departments. Support Information Governance and Data Protection teams on policy alignment and compliance. Technical Review and Oversight Lead or oversee reviews of system architectures, applications, cloud services (IaaS, PaaS, SaaS), and network security. Assess … and board audiences. Maintain security risk registers and oversee remediation activity. Stakeholder Engagement and Leadership Act as senior security advisor to leadership, IT programmes, and project boards. Influence project governance to embed security by design. Represent the organisation in regional and national cyber forums (e.g. WARP, NCSC, iNetwork). Training, Awareness, and Culture Lead and support cyber awareness campaigns and More ❯

risk and enterprise risk registers Familiarity with frameworks like NIST, ISO 27001 or NCSC CAF Confident presenting to technical and exec audiences Skilled with reporting tools (Excel, Power BI, GRC platforms) Organised, proactive, and a clear communicator Whats on offer 30 days holiday plus bank holidays, flexible leave options, and family-friendly policies Up to 15% bonusand a generous employer More ❯

design and delivery of enterprise-wide cyber strategies and transformation programmes Advising senior stakeholders, including board-level executives, on managing cyber risk and enabling digital growth Shaping operating models, governance frameworks, and risk-based roadmaps for resilience and compliance Managing diverse delivery teams across complex client environments Building long-term client relationships and acting as a trusted advisor Contributing to … cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence at C-suite and board level Track record of leading large-scale More ❯

to Apply Please apply in strict confidence by sending your CV to Kate Morgan at CV Screen . Alternate Job Titles Compliance Analyst Risk Officer Information Security Compliance Specialist Governance, Risk and Compliance (GRC) Analyst CV Screen Ltd acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job More ❯

Analyse usage data, feedback and performance metrics to continually refine strategy and drive measurable improvements in data utility, product performance and cost optimisation. Drive governance, data quality standards, risk management and compliance alignment across data touchpoints. Act as a subject matter expert on onboarding and KYC data flows, influencing decision-making and promoting best practice across teams. Ensure strong stakeholder More ❯

Analyse usage data, feedback and performance metrics to continually refine strategy and drive measurable improvements in data utility, product performance and cost optimisation. Drive governance, data quality standards, risk management and compliance alignment across data touchpoints. Act as a subject matter expert on onboarding and KYC data flows, influencing decision-making and promoting best practice across teams. Ensure strong stakeholder More ❯

organisation's portfolio of change initiatives. Reporting to the Head of Change Delivery, you'll lead the development and implementation of PMO strategies, standards, and processes to ensure effective governance and delivery of IT and business change projects.You'll facilitate governance sessions, support project managers and the Head of Change Delivery on a day-to-day basis. You will ensure … and hands-on role, offering the opportunity to influence how change is delivered across the organisation. What you'll need to succeed Proven experience in PMO lead activities and project governance Strong understanding … of project management methodologies and tools Ability to communicate effectively with technical and non-technical stakeholders Experience managing small projects and supporting complex portfolios Familiarity with IT governance, risk management, and compliance standards A collaborative mindset aligned with the organisation's values of teamwork, integrity, and inclusivity What you'll get in return You'll join a high-performing, inclusive More ❯

identify and assess risks related to software and infrastructure lifecycle or currency issues. Continuously review and recommend improvements or “ever-greening” of systems and solutions. Collaborate on the use and governance of Secrets Management solutions , ensuring alignment with enterprise risk appetite and compliance standards. Required Skills and Experience Proven experience as a Solution Architect or Systems Engineer within large-scale … ability to simplify complex information and present it in a clear and compelling manner. Experience engaging with Enterprise, Security, Data, and Infrastructure architecture stakeholders. Familiarity with Architectural Governance, Risk Management, and Compliance processes . Prior experience within a Cyber Defence or Security Operations environment is highly desirable. More ❯

identify and assess risks related to software and infrastructure lifecycle or currency issues. Continuously review and recommend improvements or “ever-greening” of systems and solutions. Collaborate on the use and governance of Secrets Management solutions , ensuring alignment with enterprise risk appetite and compliance standards. Required Skills and Experience Proven experience as a Solution Architect or Systems Engineer within large-scale … ability to simplify complex information and present it in a clear and compelling manner. Experience engaging with Enterprise, Security, Data, and Infrastructure architecture stakeholders. Familiarity with Architectural Governance, Risk Management, and Compliance processes . Prior experience within a Cyber Defence or Security Operations environment is highly desirable. More ❯

GRC Analyst - Payments/PCI-DSS/AoC Manchester - office based £55k pa A successful technology company are seeking a GRC Analyst to join their growing Security team and be responsible for risk management, compliance monitoring and governance support as well as 3rd party vendor risk management. As an experienced Payments GRC Analyst you will ensure compliance with all relevant … 2018. You will be able to demonstrate Attestation of Compliance (AoC) experience alongside experience of ensuring compliance with ISO27001 and relevant organisational standards. This role will require excellent technical GRC and PCI-DSS knowledge, good organisational skills and the ability to communicate critical security information and requirements to both internal and external stakeholders. PCI-DSS and Attestation of Compliance experience … is a must have for this position. Please send a CV detailing the required experience for consideration. GRC Analyst - Payments/PCI-DSS/AoC Manchester - office based £55k pa More ❯

controls; assess the end-to-end cyber control environment, benchmark maturity against standards, and report gaps and risks. Review cloud and SaaS services for secure configuration, resilience, and vendor governance, using independent assurance to validate management's remediation. Apply data analytics for population testing and anomaly detection, develop repeatable scripts to increase coverage, report issues with clear severity, and track … requests, and walkthroughs to minimize duplication. Partner with IT and Finance to implement pragmatic remediation and enhance control design, while continuously improving audit methodology, workpapers, templates, analytics libraries, and GRC workflows. This list is not exhaustive and may be added to or amended from time to time. What we're looking for: Bachelor's degree in IT, Computer Science, Information More ❯

implement Oracle controls for a wide range of clients across multiple industries. This includes applying knowledge of Oracle Cloud emerging technology such as AI Agents and leveraging Oracle Risk Management & Compliance GRC modules to drive improvements throughout the control lifecycle from assessing risks to implementing, monitoring and assessing controls. As a Senior Consultant focussing on technology controls in out Controls … across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying your risk and controls experience to support clients in meeting specific requirements e.g. SOX, UK corporate reform; Guiding, managing and leading team members within an More ❯

implement Oracle controls for a wide range of clients across multiple industries. This includes applying knowledge of Oracle Cloud emerging technology such as AI Agents and leveraging Oracle Risk Management & Compliance GRC modules to drive improvements throughout the control lifecycle from assessing risks to implementing, monitoring and assessing controls. As a Manager focussing on Oracle controls in our Controls Advisory … across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying your risk and controls experience to support clients in meeting specific requirements e.g. SOX, UK corporate reform; Guiding, managing and leading team members within an More ❯

of the possible through technology Established experience partnering with other collaborators such as Enterprise, Security, Data and Infrastructure architects Hold proficient experiences leading activities associated with Architectural Governance, Risk Management and Compliance processes Previous experience in a Cyber Defense or Security Operations environment is highly desirable As a Solution Architect, you will: Work with Product Owners, Platform Leads, Enterprise Architects More ❯

SAP Security Senior Consultant - SAP GRC, Access Request Management (ARM), Access Risk Analysis (ARA), Emergency Access Management (EAM) - £70K - £85K + excellent benefits - Hybrid working Location: Hybrid Work Arrangements (1 - 3 days a month in the office, Bradford) Our client, a leading organisation in their region, are recruiting for a SAP Security Senior Consultant to continually develop the SAP Security … landscape. You will play a key role in the Design and Build of SAP Security and GRC solutions. Implement and contribute to the strategy for SAP security based on enterprise security requirements. Understand the documented business requirements for the following SAP GRC modules Access Request Management (ARM) Access Risk Analysis (ARA) Emergency Access Management (EAM) Ensure compliance with Segregation of … Access Controls compliance throughout the SAP role build for the SAP landscape Support User Provisioning & User Access Review workflows in ARM Support the maintenance and support of SAP Security & GRC modules Provide technical support for the implementation of SAP-based technology like Centralized User Administration, Identity Management (IDM), Single Sign-On, and SAP GRC. Ensure compliance with audit requirements Share More ❯