13 of 13 GRC Jobs in the Thames Valley

Head of Cybersecurity Governance Risk and Compliance Location: Mainly remote based working in the UK with travel to Oxford, Cowley (OX4 2GQ) occasionally Contract: Permanent Hours: Full time Salary: £70,000 per annum, plus car/car allowance Benefits: 33 days holiday, pension, life assurance, employee assistance programme, wellbeing support, and flexible benefits scheme About the Job As our Head … of Cybersecurity Governance Risk and Compliance youll work closely with business and technology teams, helping to articulate and communicate the InfoSec governance program, identify risks and evaluate and help implement controls and improvements. As part of your key responsibilities youll: Manage the day to day of the function and team Support the management of Information Security governance for the organisation … following skills and experience, but please apply if you think youd be able to perform well in this role! Excellent written and verbal communication skills Previous experience within a GRC function, IT Security/Cyber team, Internal Audit or an IT environment Hands on practical experience of ensuring full compliance with legal & regulatory frameworks including ISO 27001 Risk management Strong More ❯

packaging solutions, paper products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and … risk register, tools, process, reporting and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with More ❯

providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management, and regulatory compliance. Proficiency with security monitoring tools and incident management processes. Excellent analytical, communication, and leadership skills. Desirable Knowledge of GDPR, NIST, or other security frameworks. Experience More ❯

protection frameworks and global privacy regulations (e.g., GDPR,CCPA). Professional certifications such as from the International Compliance Association (ICA), or other relevant credentials preferred. Technical : Experience with compliance GRC, DPIA, ROPA and privacy management technologies and automation tools.Strong project management skills with experience leading cross-functional initiatives. Team : Strong communication and influencing skills, capable of working with senior leaders More ❯

accessible environment for all our employees. If you require accommodations during the application process, let us know, and we'll work to meet your needs. As a Senior AI Governance Consultant within our highly skilled Cyber Security Team, you will be at the forefront of our new and exciting AI governance service. This will involve advising clients on developing and … implementing robust AI governance frameworks, conducting AI risk assessments, and creating policies for the secure and ethical use of AI. While the primary focus is on AI, you will also apply your expertise to broader GRC projects, including information security assessments, ISO 27001 audits, and general information security consulting. The ability to be adaptable and work on a variety of … projects is essential. Essential experience and skills: A strong foundation in traditional GRC, demonstrated by significant experience in auditing and implementing Information Security Management Systems. A recognised ISO 27001 qualification (e.g., Lead Auditor or Lead Implementer) is essential. You must be able to apply this rigorous mindset to new challenges. Demonstrable, hands-on experience applying AI governance principles. This must More ❯

site into London Role Description: As a Senior Information Security Analyst, you will be instrumental in executing the company's Information Security strategies and initiatives, focusing on supporting the Governance, Risk, and Compliance (GRC) function and implementing the NIST Cyber Security Framework (CSF) throughout the organization. You will lead day-to-day GRC activities, including designing security controls, enforcing requirements … activities with the Group Information Security Framework, Cyber Essentials, and PCI DSS attestation. Collaborating with the wider organization to integrate control testing and risk management activities into the existing governance framework. Assisting cross-functional teams and business units in integrating security measures into business operations. Facilitating regular reviews and updates of control and risk management processes to remain effective and … responsive to emerging threats and changes in the organizational landscape. Documenting and visualizing reports for governance forums, providing insights and recommendations to inform decision-making and risk management strategy across the business. Essential Skills: Minimum of 4 years of experience in information security with a solid understanding of Information Security control and governance frameworks. Practical experience of implementing NIST CSF More ❯

Information Security Risk and Governance Lead Location: London or Lausanne Type: Full-time | Hybrid (3 days/week onsite) Company Overview Join a pioneering AI-first biotech company that’s redefining how we discover and develop medicines. This organisation leverages cutting-edge machine learning to unlock new possibilities in drug discovery, aiming to solve some of humanity’s most devastating … world-class team at the intersection of biology, AI, and engineering. Role Overview This role offers a unique opportunity to architect and operationalise a best-in-class information security governance framework. Reporting directly to the Chief Information Security Officer (CISO), you will lead strategic efforts to embed security, trust, and regulatory readiness into a platform that supports world-leading biomedical … research and drug design. You will play a pivotal role in aligning data governance, security operations, and compliance within an environment that spans regulated biopharma workflows, cloud-native infrastructure, and AI/ML experimentation at scale. Key Responsibilities Design and implement a unified compliance framework across AI, cyber, and life sciences regulatory domains. Own and drive the strategic programme for More ❯

and accessible environment for all our employees. If you require accommodations during the application process, let us know, and we'll work to meet your needs. As a Senior GRC Consultant within our highly skilled Cyber Security Team you will be responsible for contributing to our information security consultancy, with opportunities to work on information security assessments within sizeable projects … in teams. Outstanding verbal communication skills. Excellent report writing skills with the ability to explain information security risks to non-technical senior stakeholders. Proven project management experience in executing GRC projects within complex organizations. Ability to handle multiple projects and deadlines, ensuring timely delivery of compliance programs. Desirable qualifications and experience: Experience of AI governance and auditing or implementing an … ISO 42001 AIMS Information security qualifications such as CISSP, CISA, or CISM. Familiarity with GRC cloud-based systems. Experience of PCI DSS or a PCI QSA. Experience auditing SWIFT CSCF. Developing and providing training. Writing policies and technical documents. Managing a team or leading teams. If you are keen to join a growing company and feel you will be a More ❯

I’m currently working with a business that is looking to hire a Group Cyber GRC Manager. This is a fantastic opportunity to take ownership of a global cyber GRC function, shaping strategy and driving maturity across a complex, multinational environment. The Role Define and deliver the strategic roadmap for global Cyber GRC. Lead and develop a high-performing team … data-driven insights and dashboards for senior stakeholders. Champion a strong security culture and continuous improvement mindset. What they are looking for: Proven success leading high-performing security or GRC teams. Expertise in cyber risk management, frameworks, and assurance. Strong stakeholder engagement and communication skills. Experience in large, federated, and complex global organisations would be particularly valuable. Certifications such as More ❯

level technical design. Platform Strategy & Roadmapping: Develop and articulate ServiceNow platform strategies and roadmaps, identifying opportunities for leveraging out-of-the-box capabilities, integrations, and strategic customizations. Technical Advisory & Governance: Act as a subject matter expert and technical advisor to clients and internal teams, providing guidance on platform capabilities, performance optimization, security, and scalability. Establish technical governance to ensure solution … and implement end-to-end ServiceNow solutions across multiple modules. Deep understanding of the ServiceNow platform architecture, data model, and security framework. Expertise in ServiceNow best practices, including platform governance, performance optimization, and security hardening. Proven experience with large-scale ServiceNow implementations and complex integrations. Strong analytical and problem-solving skills with the ability to articulate complex technical concepts to … both technical and non-technical audiences. Experience with Agile development methodologies. Relevant ServiceNow certifications (e.g., Certified Master Architect, Certified Technical Architect, Certified Application Developer, Certified System Administrator). ServiceNow GRC & SecOps More ❯

processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing … Service-Now GRC Applications/Modules with working knowledge of its built-in capabilities including Plug-ins, Workflows, UI elements, tables, dictionaries, integrations and dependencies. Experience of working on Scripting in ServiceNow. Skills Certified ServiceNow IRM/SecOps administrator/consultant (this is mandatory) Must have concluded at least 1 lifecycle of ServiceNow IRM/SecOps implementation. Experience in JavaScript … API, Web Services Working knowledge of Vulnerability Mgmt. process & tools ISO/CISA/CISM/CISSP/CRICS (preferred) PLATFORM/TOOL EXPERTISE ServiceNow GRC & SecOps More ❯

and internal policies across multiple jurisdictions. You will implement compliance programs, monitor adherence, provide risk-based legal advice, and help shape a compliance-focused culture. Key Accountabilities: Compliance and Governance Ensure the organisation adheres to corporate governance standards, codes of conduct and relevant laws across all jurisdictions. Monitor regulatory developments and interpret their relevance and impact on the business, providing … not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and manage internal reporting mechanisms by liaising with internal Global Risk and Compliance (GRC) function. Global Regulatory Compliance Ensure compliance with international legal and regulatory frameworks (e.g. GDPR, FCPA, local employment laws). Liaise with external counsel where jurisdiction-specific advice is needed with More ❯

and serving as a key member of the Senior Leadership Team , the COO will play a pivotal role in driving operational excellence, delivering outstanding client service, and ensuring robust governance and compliance across domestic and international operations. This is a rare opportunity to define the future of a fast-evolving, growth-focused financial institution— delivering scalable, resilient, and client-centric … critical third-party and outsourced service providers, ensuring seamless service delivery and adherence to SLAs. Design and optimise processes for operational efficiency, quality, control, and regulatory compliance. Ensure rigorous governance of all outsourcing arrangements, including performance monitoring, contract compliance, and regulatory obligations. Financial Crime Risk Management As first-line owner of financial crime risk management and controls, the COO will … vendors. Anti-Fraud Controls: Implement and oversee fraud detection and prevention frameworks across all customer channels. Surveillance: Monitor for market abuse and misconduct through robust communications and trade surveillance. Governance & MI: Deliver actionable financial crime metrics, ensure first-line ownership of controls, and provide insight into emerging risks. Policy Implementation & Training: Ensure operational teams are trained and aligned with current More ❯