1 to 25 of 290 GRC Jobs in the UK

Health support. Switched On - scheme providing discount on hundreds of retailers' products. Discounted gym membership. Employee Assistance Programme. Job Purpose The Senior Governance Risk and Compliance (GRC) Analyst will support the Cyber Security GRC Manager in developing IT governance, risk management, and compliance strategies across UK Power Networks information applications … and 3rd Party: Engage, interact and ensure 3rd party supplies are meeting cyber security expectations. Gather evidence and assurance, risk assess and create reports and governance metrics for measuring the ongoing risk and impact that 3rd party suppliers present to UKPN. Nature and Scope The Information Systems Department works across … and operational control capabilities that are important to safeguarding UKPN information assets, business services and operations. Knowledge: We ask that you understand governance, risk management, and compliance principles, in addition to a knowledge of relevant laws, regulations, and industry standards. We are looking for a detailed knowledge and practical expertise More ❯

Senior Information Security GRC Analyst Senior Information Security GRC Analyst Locations: London, United Kingdom; Manassas, United States Posted on: 4 Days Ago ABOUT US We're the world's leading provider of secure financial messaging services, headquartered in Belgium. We are the way the world moves value - across borders, through … in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. Are you passionate about security Governance, Risk and Compliance (GRC)? Do you thrive in a dynamic environment where your experience and your security expertise can shape the future of our organization … We are looking for a GRC Specialist like you to join our growing Information Security Governance team. In this role, you will: Develop and implement robust GRC frameworks to ensure compliance with increasingly stringent industry regulations and standards. Lead the reporting and presentation of our GRC activities to internal and More ❯

scope of your responsibilities. It can encompass a wide spectrum of tasks, from crafting robust security architectures to offering guidance on GRC (governance, risk management, and compliance) activities. Your responsibilities may also involve: Offering your security expertise in support of significant system procurements and Agile programs, ensuring the secure delivery More ❯

GRC Lead – Cybersecurity (Financial Services) London | Competitive Package We're partnering with a leading global financial services firm to appoint a Governance, Risk, and Compliance (GRC) Lead into their high-performing Information Security function. This is an exciting opportunity to join a fast-paced, globally recognised institution with a mature … cyber programme and significant investment in its security posture. As a trusted search partner, we’re looking for an experienced and strategic GRC professional who can bring deep subject matter expertise across third-party risk, regulatory compliance, audit readiness, and awareness training. You’ll play a pivotal role in helping … Opportunity Sitting within a dynamic global InfoSec team, you’ll be responsible for: Leading third-party risk assessments and driving continuous improvement of vendor governance processes. Owning client due diligence responses, ensuring the business meets external compliance and assurance requirements. Developing and delivering enterprise-wide awareness training, phishing simulations, and More ❯

GRC Lead – Cybersecurity (Financial Services) London | Competitive Package We're partnering with a leading global financial services firm to appoint a Governance, Risk, and Compliance (GRC) Lead into their high-performing Information Security function. This is an exciting opportunity to join a fast-paced, globally recognised institution with a mature … cyber programme and significant investment in its security posture. As a trusted search partner, we’re looking for an experienced and strategic GRC professional who can bring deep subject matter expertise across third-party risk, regulatory compliance, audit readiness, and awareness training. You’ll play a pivotal role in helping … Opportunity Sitting within a dynamic global InfoSec team, you’ll be responsible for: Leading third-party risk assessments and driving continuous improvement of vendor governance processes. Owning client due diligence responses, ensuring the business meets external compliance and assurance requirements. Developing and delivering enterprise-wide awareness training, phishing simulations, and More ❯

TRM Leader, outside Client Technology: collaborates with other EY organizations working on risk management, such as Global Risk Management (GRM) for strategic direction on governance, risk, compliance and Infosec (IS) for security management. more specifically, partners closely with the Technology Assurance Risk and Policy (TARP) team, part of Infosec, to More ❯

years' varied experience in information security, data protection, and security architecture roles, with a focus on cloud security, and compliance. Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53/CSF, NIS/NIS2, DORA, UK CNI/OT/IIOT compliance. Hands More ❯

or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Extensive experience of information security management and/or More ❯

or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Extensive experience of information security management and/or More ❯

provides operational excellence whilst identifying new areas of growth as part of our day to day objectives. Job Description for IT & Cyber Policy and Governance Lead Business Area: Information Security Job Title: IT & Cyber Governance and Policy Lead Scope and Coverage: Global Outline Purpose of Role This role will: Implement … and develop and own IT and cyber governance processes and forums in alignment with the IT and Information security operations and risk framework. Maintain and improve the IT and information security policy framework including the suite of policies and standards and associated processes. Help drive a robust security posture for … a large, complex organisation, trading globally within a constantly evolving IT and information security threat environment. Impact of Role Implement governance framework to enable enforcement and management of IT and cyber policies across all JD entities. Help drive good security hygiene and the use of appropriate controls into the business More ❯

experience in security architecture and expertise in areas like: Information security, data protection, and security architecture, especially cloud security and compliance. Knowledge of security governance, risk, and compliance frameworks such as ISO 27001, NIST, NIS/NIS2, DORA, UK CNI/OT/IIOT. Experience engaging with external stakeholders through More ❯

About the Role We are seeking a strategic and hands-on Head of InfoSec to lead our cybersecurity initiatives with a strong emphasis on governance, risk management, and compliance (GRC) . This role is critical in shaping and enforcing security policies, driving enterprise-wide risk management, and ensuring ongoing compliance … candidate is not only a technical expert but also a business-savvy leader who can align security strategy with organizational goals. Key Responsibilities & Duties Governance, Risk & Compliance: Develop, implement, and maintain the company's information security governance framework. Lead the strategy and execution for security compliance initiatives including SOC … 10+ years of experience in cybersecurity, with 5+ years in a senior leadership role (CISO, VP of Security, or equivalent). Deep knowledge of governance frameworks and compliance standards (e.g., SOC 2, ISO 27001, HIPAA, NIST, GDPR). Proven experience managing or leading successful SOC 2 audits and other regulatory More ❯

third-party vendors and partners. Establish and enforce third-party security standards and monitor compliance. Manage security reviews during vendor onboarding and contract renewals. Governance, Risk, and Compliance Ensure compliance with relevant regulations (e.g., PCI DSS, GDPR, SOC 2, ISO 27001) and internal policies. Maintain up-to-date knowledge of More ❯

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status More ❯

will act as a security subject matter expert, assisting with cloud security configurations and incident remediation. Responsibilities Support various security functions, including OT Security, Governance Risk and Compliance, and Security Assurance. Document and present security metrics at monthly reviews. Provide technical and non-technical security support to the wider security More ❯

a Risk and Compliance Analyst to join our growing Risk and Compliance team and play a pivotal role in supporting the organisation's risk management and compliance efforts. This position involves ensuring the organisation identifies, manages, and mitigates risks while maintaining compliance with regulatory requirements and internal policies. You will … with evolving governance and risk standards. As part of this role, you will play a key role in the implementation of a Governance, Risk, and Compliance (GRC) tool, which will centralise and streamline our risk management and compliance processes. You will collaborate with cross-functional teams to define requirements, configure … and integration of compliance practices across the organisation. Training & Support : Assist in the creation and delivery of training programs to enhance understanding of compliance, risk, and governance requirements. Incident Resolution : Act as a point of contact for compliance and risk-related queries, providing timely support and resolving issues effectively. Reporting More ❯

a Risk and Compliance Analyst to join our growing Risk and Compliance team and play a pivotal role in supporting the organisation's risk management and compliance efforts. This position involves ensuring the organisation identifies, manages, and mitigates risks while maintaining compliance with regulatory requirements and internal policies. You will … with evolving governance and risk standards. As part of this role, you will play a key role in the implementation of a Governance, Risk, and Compliance (GRC) tool, which will centralise and streamline our risk management and compliance processes. You will collaborate with cross-functional teams to define requirements, configure … and integration of compliance practices across the organisation. Training & Support : Assist in the creation and delivery of training programs to enhance understanding of compliance, risk, and governance requirements. Incident Resolution : Act as a point of contact for compliance and risk-related queries, providing timely support and resolving issues effectively. Reporting More ❯

a Risk and Compliance Analyst to join our growing Risk and Compliance team and play a pivotal role in supporting the organisation's risk management and compliance efforts. This position involves ensuring the organisation identifies, manages, and mitigates risks while maintaining compliance with regulatory requirements and internal policies. You will … with evolving governance and risk standards. As part of this role, you will play a key role in the implementation of a Governance, Risk, and Compliance (GRC) tool, which will centralise and streamline our risk management and compliance processes. You will collaborate with cross-functional teams to define requirements, configure … and integration of compliance practices across the organisation. Training & Support : Assist in the creation and delivery of training programs to enhance understanding of compliance, risk, and governance requirements. Incident Resolution : Act as a point of contact for compliance and risk-related queries, providing timely support and resolving issues effectively. Reporting More ❯

for common security risks and misconfigurations. Monitor and analyze security logs and alerts, fine-tuning detections and response playbooks. Risk & Compliance Support Work with GRC and compliance teams to implement security controls aligned with ISO 27001, NIST, SOC 2, and GDPR. Support security reviews for third-party vendors, M&A More ❯

security of thousands of users globally, including the world's largest freight forwarders. We are dedicated to delivering efficiency, transparency, and confidence through our Governance, Risk, and Compliance (GRC) framework. The Opportunity: We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Analyst with expertise in managing acquisitions, integrating … operations. The role requires a keen understanding of regulatory compliance, risk management, and a strategic mindset to ensure smooth and efficient integration processes. The GRC Analyst will play a critical role in enhancing our overall GRC posture and maintaining regulatory compliance for WiseTech Global. Key Responsibilities: Acquisition Assessment: Collaborate with … cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities. Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy. Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk More ❯

About Empowered Empowered is a leading provider of Governance, Risk, and Compliance (GRC) solutions, helping organizations streamline risk management, regulatory compliance, and audit processes with our Empowered GRC Platform, Connected Risk. Our mission is to empower businesses with an integrated, data-driven approach to risk and compliance. Role Overview We … are seeking a Product Manager (GRC) to drive the development and enhancement of our Empowered GRC Platform. This role will focus on product strategy, roadmap execution, and customer-driven innovation, ensuring our solutions align with market needs, regulatory requirements, and emerging trends in risk management and compliance. As a key … member of the Product Management team, you will collaborate with engineering, sales, marketing, and customer success to define and execute the vision for our GRC solutions. Key Responsibilities Product Strategy & Roadmap Develop and maintain the Empowered GRC Platform roadmap, balancing customer needs, regulatory trends, and competitive differentiation. Identify emerging GRC More ❯

and respond to security threats and incidents using advanced security tools. What Excites Us Experience as a Senior Information Security Analyst in cybersecurity and GRC, ideally in a high-growth tech environment. Strong knowledge of cloud (AWS), application, infrastructure, and network security. Familiarity with payment security standards (PCI DSS) and More ❯

Information Security GRC Specialist - Milton Keynes Vacancy Name: Information Security GRC Specialist Employment Type: Full-Time Location: Milton Keynes Job Role: At MIB our people are passionate about making roads safer by getting uninsured and hit-and-run drivers off our roads. Working in partnership with the Police, Insurers and … We're looking for a professional and inspiring Risk Management Leader to come and join our team. As a member of the Information Security - Governance Risk and Compliance team (InfoSec GRC), you'll maintain the confidentiality, availability and integrity of MIB's information and information systems. This will primarily be … support the needs of the organisation. This will be delivered by: Supporting the ongoing alignment of Information Security strategy to business objectives Maintaining robust governance processes in the delivery of MIB's Information security responsibilities Operating an effective information security risk management capability that assesses and reduces risk to an More ❯

aligned to UK Government principles) and regulatory requirements (including GovAssure and NCSC Cyber Assurance Framework). What you'll be doing: Develop and execute GRC strategies that align with business objectives and inform appropriate supporting business processes Drive pragmatic and creative solutions to GRC challenges, applying agile methodologies to adapt … to new regulations, compliance requirements and business change Advise on and foster continuous improvement and effectiveness of GRC processes, driving improved management information to better allow appropriate prioritisation and risk based decisions Lead initiatives that build a culture of accountability and responsibility across engagements Enhance governance processes and advise on … on all matters relating to cyber security, information assurance, cyber risk, data privacy including regulatory and compliance considerations Lead the development and enhancement of governance, risk and compliance aligned to policy, standards and industry good practice Ensure that continuous assessment, identification, analysis and reporting of useful metrics to enable informed More ❯

focused role, ideally within a Critical National Infrastructure (CNI) or highly regulated environment. Strong knowledge of IAM principles, technologies, and best practices. Familiarity with governance, risk, and compliance standards. Excellent analytical, problem-solving, and communication skills. If interested, please send your CV to Sjohn@cpsgroupuk.com More ❯