1 to 25 of 53 GRC Jobs in the South East

Security Consultant – GRC (Governance, Risk & Compliance) Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE) Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.This is … a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries. Key … Responsibilities Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out. Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security. Translate complex security and compliance requirements into actionable business solutions. Build trusted relationships with clients at both technical and senior management levels. Skills More ❯

WELCOME TO PCI PAL PCI Pal is a leading provider of SaaS solutions that empower companies to take payments securely, adhere to strict industry governance, and remove their business from the significant risks posed by non-compliance and data loss. We are integrated and resold by some of the world's leading business communications vendors, as well as major payment … service providers. We are currently looking for a GRC & Audit Lead to join our UK team. THE OPPORTUNITY: PCI Pal's Information Security team requires a dynamic and proactive individual to lead all Governance, Risk and Compliance (GRC), audit requirements for our team and the company. We are an agile and innovative team and are responsible for ensuring that the … confidentiality, integrity and availability (CIA) of our internal, external environments, and client solutions are always maintained. The Lead GRC & Audit function will be focused on ownership of all Information Security GRC, Audit and project initiatives, including proactive cross-functional collaboration with other variety of business stakeholders. The role will ultimately encompass all facets from ensuring that GRC and audit requirements More ❯

Are you a governance leader who thrives at the intersection of information security, compliance, and organisational resilience? We're looking for an experienced Senior Security Governance Manager to drive our Information Governance, Cyber Security, and Quality frameworks to new heights. This is a high-impact role where you'll shape the strategic direction of security governance across the business, ensuring … compliance with UK, NHS, and international regulations - while empowering teams to work securely and confidently in a complex digital environment. What You'll Be Responsible For Information Governance Develop and execute the organisation's Information Governance (IG) strategy in line with UK, NHS, and international data protection frameworks. Maintain governance policies and key artefacts such as DPIAs, Data Processing Agreements … and support independent audit processes. Monitor compliance across business units and lead corrective actions where required. Cyber Security Lead the implementation and maintenance of Cyber Security policies, ensuring robust governance across all business areas. Manage the ISO 27001 certification lifecycle - including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. More ❯

packaging solutions, paper products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and … risk register, tools, process, reporting and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

willing to work at customer premises, sometimes requiring some degree of travel. Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

willing to work at customer premises, sometimes requiring some degree of travel. Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

Security Consultant (Governance, Risk, Compliance) Reading, UK (Hybrid with some travel) £30.00–£40.00 per hour (Inside IR35) 6-month contract. Potential to extend up to 2 years We are seeking an experienced Cyber Security Consultant (GRC) to join a leading global technology organization as part of their expanding Cyber Security practice. The successful candidate will deliver a range of Governance … Risk, and Compliance (GRC) consulting engagements for large enterprise clients, supporting the full project lifecycle from scoping to delivery and reporting. You’ll work closely with senior stakeholders, from technical teams through to directors, providing expert advisory support to strengthen cyber security frameworks and ensure compliance with global standards. Key Responsibilities Deliver end-to-end Cyber GRC consulting projects for … emerging technology risk management. Collaborate with internal and client teams to enhance cyber resilience and compliance maturity. About You Minimum of 4+ years’ experience in IT Security, Information Security Governance, Technology Risk Management, or Cyber Compliance. Strong consulting background with demonstrable client-facing experience. Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or CISMP. A solid understanding of Cloud More ❯

GRC Manager Woking based with Hybrid working Competitive salary, up to 25% bonus and excellent benefits package We’re looking for an experienced and proactive Governance, Risk & Compliance (GRC) Manager to join our dynamic team based in Woking. In this key role, you’ll help strengthen our risk management framework, enhance compliance processes, and ensure robust governance across our operations. … You’ll work collaboratively with senior stakeholders to drive continuous improvement, embed a strong risk culture, and support strategic decision-making across the business. If you’re passionate about governance excellence, thrive in a fast-paced environment, and want to make real impact at Europe’s leading frozen food company. Responsibilities: Overseeing cyber security governance efforts, ensuring alignment with frameworks … and implement security policies, procedures, and standards that support risk mitigation and compliance efforts in line with industry standards. Play an active, hands-on role in security initiatives and GRC activities, including incident management, vulnerability assessments, and compliance reviews. Provide reporting to leadership committees and the Board. About you: We need someone who can communicate at all levels and with More ❯

achieved through clear strategic partnerships and technical expertise. Responsibilities will cover both technical (working with vendors, quality assurance, requirements analysis, technical L3 work) and non-technical (line management, mentoring, governance, roadmap, risk, and compliance). Someone who isn't afraid to get their sleeves rolled up and get into the detail will be a key trait. No two days will More ❯

and flexibility to support the demands of a FTSE 100 business.Supporting Head of Information Security Architecture and Assurance as well as working closely with key stakeholders including Head of Governance, Risk and Compliance, Digital Security, IT and business teams you will focus on core areas such as risk management and security due-diligence reviews ensuring compliance with legal, regulatory and More ❯

Information Security Manager to join their IT team. You will report into the Director of Information Security making a team of 2.Your role will have a key focus on Governance, Risk Management and Compliance.They are a remote first business, they are in the office one day a month and your travel can be paid for by the company. They also More ❯

evolving industry. If you're ready to be part of a team that's shaping the future of public safety and compliance technology, we want to hear from you. GRC Manager – Governance, Risk and Compliance London – hybrid – 3 days per week in office Full time Reporting to Director of Strategic Operations Summary We're looking for a proactive and detail … oriented GRC Manager to develop, implement, and maintain our governance, risk, and compliance framework. You'll play a key role in ensuring the Polaris operates responsibly, meets regulatory requirements, and effectively manages operational and information security risks. This role sits at the intersection of InfoSec and Strategic Operations. An ideal role for someone who enjoys implementing business-appropriate structure & process … to both internal leadership and external customers regarding our contractual, security and legislative obligations Ensure ongoing compliance with legal, contractual, and regulatory requirements, including GDPR and domain-specific obligations Governance Create and own a process mapping approach and system for core business processes Act as the central coordinator for data protection and GDPR compliance. Standardise policies, processes, and reporting for More ❯

GRC Cyber Security Analyst Our client, who is a Times Top 100 employer, is urgently looking for an experienced GRC Cyber Security Analyst to join their team on a permanent basis. Please note, the role is remote, with travel required to an office once a month on average. You will work on security consultancy and risk activities with external and … posture and compliance. You will also support a security transformation programme, by delivering initiatives. Our client is looking for someone who can shape change and has an experience in GRC, security architecture, consultancy and identity management. You will be rewarded with an excellent salary, as well as a brilliant benefits package including remote working, annual leave, pension scheme, discounts off … tech (laptops, phones, televisions), training & progression any many, many more perks! GRC Cyber Security Analyst – Key Skills: Excellent understanding and experience around Governance, Risk and Compliance (GRC) within a Cyber Security setting Experience and knowledge around the ISO27000 family – know the differences between each and able to implement each Cyber Essentials Plus Certification The following are all nice to have More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC initiatives Requirements … 5+ years' experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk and … control governance across a global environment. Please DM me or apply if you're interested. More ❯

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid/Southeast Region - on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You’ll collaborate with multi-disciplinary More ❯

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid/Southeast Region - on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi-disciplinary More ❯

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid/Southeast Region - on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi-disciplinary More ❯

skills, experience + tasks will include: ServiceNow Architect with TSOM (Telecoms Service Operations Management) implementation projects. Design + implementation of ServiceNow modules including: TSOM, ITSM, ITOM, ITAM, HRSD, CSM, GRC, SecOps + custom applications. Designing + implementing CMDB and Discovery. Proven expertise in ServiceNow integrations involving: REST, SOAP, APIs, and MID Servers. ServiceNow scripting (JavaScript, Glide, Flow Designer) and ServiceNow More ❯

strategic senior leader to oversee our Cyber Engineering, Identity & Access Management (IAM), and Data Loss Prevention (DLP) functions. This role will be responsible for driving the design, delivery, and governance of enterprise-wide security engineering solutions, while ensuring secure, scalable, and resilient identity and data protection services. The ideal candidate will combine deep technical expertise with strong leadership skills to … automation, orchestration, and advanced analytics to improve detection, response, and resiliency. Identity & Access Management Own enterprise-wide IAM strategy, including workforce and customer identity, privileged access management (PAM), identity governance and administration (IGA), and multi-factor authentication (MFA). Lead initiatives to modernize and integrate IAM platforms to support cloud adoption, Zero Trust, and frictionless user experiences. Partner with business … to prevent unauthorized data exfiltration, insider threats, and regulatory breaches. Implement monitoring, classification, and enforcement mechanisms that balance data protection with business enablement. Partner with business, compliance, and data governance teams to align DLP strategy with General Data Protection Regulation, Financial Conduct Authority, Prudential Regulation Authority, Sarbanes-Oxley, and other global data protection requirements. Provide executive and Board-level reporting More ❯

GRC Consultant - MOD DV Location: Farnborough or Cambridgeshire Type: Hybrid (3 days on-site) IR Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent More ❯

good understanding of security frameworks and regulatory requirements. In addition, this role requires you to have experience of Information Security. The role will report directly to the Head of Governance, Risk and Compliance, with whom you will work to deliver the goals of the company to have a fit-for-purpose security standards framework. This is a role that requires … Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS-R). Review and update standards regularly in response to emerging threats and regulatory changes. Governance & Compliance: Oversee the exception management framework, including reporting, approvals and reviews prior to expiry. Monitor compliance with security policies and standards across digital and business teams. Act as the primary … regulations, technologies and industry best practices to ensure standards remain current and effective. What you should bring to the role: Essential Experience: Experience in information security or a related governance role. Experience applying security frameworks and regulatory requirements (CIS, GDPR, NIS-R). Experience collaborating across multiple business areas and functional teams. Proven ability to work independently, with strong stakeholder More ❯

ability to manage third-party vendors, define SOWs, and oversee service delivery Ability to analyse access-related risks and respond effectively during security incidents Experience in developing and enforcing governance, risk, and compliance (GRC) frameworks Nice to Have Skills: Familiarity with multi-factor authentication (MFA), role-based access control (RBAC), and orphan account mitigation Knowledge of cybersecurity audits, regulatory regimes … with at least 3 years focused on IAM leadership roles Hands-on experience managing IAM systems in complex, multi-site environments Demonstrated success in developing strategic security roadmaps and governance frameworks Other Requirements: Willingness to collaborate across departments, including IT, HR, Data Privacy, and Compliance Ability to work in a fast-paced environment, balancing multiple priorities Experience working with external More ❯

ability to manage third-party vendors, define SOWs, and oversee service delivery Ability to analyse access-related risks and respond effectively during security incidents Experience in developing and enforcing governance, risk, and compliance (GRC) frameworks Nice to Have Skills: Familiarity with multi-factor authentication (MFA), role-based access control (RBAC), and orphan account mitigation Knowledge of cybersecurity audits, regulatory regimes … with at least 3 years focused on IAM leadership roles Hands-on experience managing IAM systems in complex, multi-site environments Demonstrated success in developing strategic security roadmaps and governance frameworks Other Requirements: Willingness to collaborate across departments, including IT, HR, Data Privacy, and Compliance Ability to work in a fast-paced environment, balancing multiple priorities Experience working with external More ❯

Working Our client are seeking an experienced Information Security Analyst to provide immediate support to the Information Security team. This role is a hybrid of technical security analysis and governance, risk, and compliance (GRC)activities. The successful candidate will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident … This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical and non-technical stakeholders. Key Responsibilities Security Governance & Risk Technical Security Oversight Supplier and Third-Party Security Assurance Advisory and Awareness Desirable Relevant certifications such as CISSP, CISM, CRISC, CEH, CompTIA Security+, or equivalent experience. Experience working in More ❯