14 of 14 GRC Jobs in the South West

Governance, Risk and Compliance (GRC) Officer The Opportunity: Are you a specialist in corporate governance, risk and compliance? Are you a GRC Officer or Manager looking for an interesting role with huge future potential within the beautiful county of Somerset? If so, then please do read on, please do send us an enquiry so that we can talk to you … sense of responsibility and a desire to drive efficiency and compliance. Job Responsibilities: The primary function of this role is to support the Managing Director in all administrative and governance-related matters, ensuring smooth operations across various corporate functions. This role is responsible for a broad range of administrative, legal, and governance tasks, as well as contributing to strategic projects … years all within a busy engineering environment. Assist in the preparation and submission of confirmation statements and other statutory filings, including those to Companies House. Ensure compliance with corporate governance requirements and best practices. Assist with legal documentation, including reviewing and maintaining contracts and corporate policies. Project-Based Responsibilities may include: GDPR Implementation, Business Continuity Planning, IT Policy Development, Corporate More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

CEH, GIAC Desirable to understand risk driven architecture such as Sherwood/SABSA/SANS Highly desirable to have exposure to DevSecOps functions. For clarification: This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation More ❯

CEH, GIAC Desirable to understand risk driven architecture such as Sherwood/SABSA/SANS Highly desirable to have exposure to DevSecOps functions. For clarification: This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

experts, to ensure our business commitments are delivered with quality and to expectation Assessing new technology solutions Ensuring our non-functional requirements are met regarding performance, scalability, resilience, and GRC requirements (Information security, risk, industry regulation compliance) Helping to encourage collaboration and product ownership across developers and testers Ensuring continual shift of secure, quality and tested code activity left Working More ❯

d love to hear from you. About You We'd love to hear from you if you can demonstrate expertise in at least one of the following areas : Security governance, risk and compliance (GRC), aligned with HMG cybersecurity and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding More ❯

critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water, transport, or smart cities is highly More ❯

critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water, transport, or smart cities is highly More ❯

critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water, transport, or smart cities is highly More ❯

ongoing maintenance and uplift of the cybersecurity posture within the project. This spans systems, subsystems, products and external interfaces, and may include a mixture of operational cybersecurity functions and governance, risk and compliance (GRC) activities. Key responsibilities include: Perform systems security risk management activities, including identifying security threats, analysing the risk exposure and presenting treatment options to mitigate security risk. More ❯

national security. About You We’d love to hear from you if you can demonstrate significant expertise in at least one of the following two areas: Provision of security governance, risk and compliance (GRC) advice for complex systems/scenarios Securing OT (Operational Technologies) with knowledge and understanding of challenges, particularly within military platforms and/or Critical National Infrastructure More ❯

at KPMG; a diverse business requires diverse personalities, characters, and perspectives. There really is a place for you here. Why Join KPMG as a Manager - IGH GRCS? KPMG's Governance, Risk and Compliance Services (GRCS) practice within IGH is an area of the firm with tremendous growth potential. GRCS is an integral part of our Enterprise Risk advisory practice. We … provide services relating to internal audit, internal control, corporate governance, risk management and related assurance projects. Clients are based in the public sector and our services deliver added value to clients using modern control assessment, risk management and audit techniques focusing on strategic, management and operational issues as well as financial management and reporting controls. We also work closely with … and co-sourced contractual basis • Managing and directly delivering individual and/or a programme of internal audit projects which includes planning, review, quality assurance and reporting • Risk management, governance and internal audit advisory services • Risk identification workshops and control reviews • Delivering control and risk training • Managing and reviewing internal control questionnaires • Compliance internal audits • Working with members of other More ❯

day a week on-site) £75,000 + £7,000 car allowance + bonus We’re working with a global business to find an IT Assurance Manager. The GRC function is being rebuilt, and this role is central to embedding IT controls, tracking remediation, and following through on audit findings. They’re looking for someone who understands or has worked … s firewall configs, JML processes, or policy gaps Leading assurance activity across ISO27001, ITGCs, and wider ISMS compliance Retesting fixes and closing the loop with internal controls Building out governance tooling and reporting (TEAMMATE and Power BI in use) Working closely with the GRC team to raise gaps and get updates moving Helping grow the function, there’s budget for More ❯