5 of 5 GRC Jobs in Scotland

days in office I'm working with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective. The ideal candidate will have worked autonomously across these More ❯

days in office I'm working with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective.The ideal candidate will have worked autonomously across these spaces More ❯

and implementing secure cloud solutions. Strong understanding of application and infrastructure architecture. Background in network and web application security (OSI, TCP/IP, OWASP, PKI, TLS). Knowledge of governance, risk, and compliance practices. Relevant certifications (OSCP, CREST, TIGER, etc.) are beneficial. Benefits Include: Up to £120,000 base salary + performance bonus Healthcare and dental insurance Pension scheme Minimum More ❯

ongoing attestation for Suppliers and Third Parties. Collaborate with Legal to ensure that contractual SLAs/KPIs include security requirements and be involved in remediation where gaps exist. Reporting & Governance Maintain risk registers, control libraries and test plans; provide CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with … ICS risk and understanding of SCADA/PI/EC interfaces. Skilled at stakeholder management and risk communication to senior audiences (clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP More ❯

ongoing attestation for Suppliers and Third Parties. Collaborate with Legal to ensure that contractual SLAs/KPIs include security requirements and be involved in remediation where gaps exist. Reporting & Governance Maintain risk registers, control libraries and test plans; provide CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with … ICS risk and understanding of SCADA/PI/EC interfaces. Skilled at stakeholder management and risk communication to senior audiences (clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP More ❯