5 of 5 GRC Jobs in Scotland

working with a global financial organisation who are looking to add to their existing Information Security team with an Information Security Analyst within their GRC team. KEY SKILLS Experience in a number of the following areas: * Undertaking and supporting on Internal and External Audits * Working with Third Parties/Vendors More ❯

primary purpose of the Cyber Risk and Assurance Analyst is to support the delivery of Cyber Risk and Assurance services by the SPEN Cyber Governance, Risk and Assurance team. This role offers the opportunity to work and gain further experience within three primary GRA domains across BAU and Change Delivery … services, IT and OT estates regular reviews and reporting of existing risks to ensure remediation plans are on track producing risk reports for various governance forums and supporting risk owners with definition of risk treatment strategies. The role will support the TPRM team to undertake risk and assurance activities for … principles, frameworks, and best practices such as NCSC CAF, ISO27001 or NIST CSF. Awareness of regulatory requirements, such as NIS Regulation. Experience with Archer GRC solution or other GRC solutions desirable. Personal Skills/Abilities Excellent analytical, problem-solving, and communication skills. Ability to work collaboratively in a cross-functional More ❯

regions and business units to align data privacy strategies with the firm's strategic objectives and evolving regulatory landscape. This role will collaborate with governance, risk, and compliance (GRC) specialists and analytics experts to ensure effective oversight, reporting, and continuous improvement of the firm's data protection position. Reporting directly … and standards, ensuring alignment with local data privacy regulatory obligations and industry best practices across Europe, the UK, North America, and APAC. Establish privacy governance objectives and key privacy risk indicators (KPIs/KRIs) that align with the firm's risk appetite and compliance requirements. Implement systems and processes to … awareness and accountability at all levels of the organization. Foster a privacy-first culture, promoting transparency, ethical data handling, and risk-informed decision-making. Governance, Reporting & Communication: Attend internal and external client risk committees as required, ensuring oversight of the firm's privacy risk exposure. Provide regular reports and updates More ❯

of data processes and systems. This role will be located at our Glasgow office. Purpose of the role To enable effective data governance, risk management, and compliance within the bank, acting as a liaison between business units and the Data & Records Management (DRM) function, translating business needs into actionable strategies … and ensuring efficient implementation of DRM. Accountabilities Partnership with the local business unit to ensure successful implementation of data & records governance frameworks as appropriate to the needs of the business unit. Provision of guidance and support on records classification, retention, storage, retrieval and disposal to business units. Monitoring local data … and senior management on functional and cross-functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the More ❯

and develop a team of three privacy professionals and provide leadership across our broader Trust function. Report to leadership on key Privacy & AI KPIs, governance risks, developments, and compliance initiatives. Privacy & AI Compliance Manage our Privacy & AI governance programs, ensuring our services and data processing activities align with key compliance … across the business, supporting and advising key stakeholders and making pragmatic risk-based decisions. Provide training and guidance to internal teams on privacy, AI governance, and data protection best practices. Engage with leadership and stakeholders to drive privacy and AI governance awareness and adherence. Who you are: 10+ years PQE More ❯