1 to 25 of 180 GRC Jobs in the UK

Job Advert: Solution Architect – Governance, Risk & Compliance (GRC) Location: [UK or US ] Department: Technology/Professional Services Employment Type: Full-time About Us My client is a fast-growing leader in the Governance, Risk & Compliance (GRC) domain, helping organizations strengthen resilience, stay compliant, and make informed risk-based decisions. Their solutions support enterprises across industries to manage complex regulatory environments … mitigate risk, and drive operational efficiency. Seeking a highly skilled Solution Architect with deep expertise in GRC solutions to join our team. This is an opportunity to shape the architecture of enterprise-grade solutions that have a real impact on global organizations. The Role As a Solution Architect (GRC) , you will: Act as the technical authority for the design and … delivery of GRC solutions, ensuring alignment with client business needs, regulatory requirements, and industry best practices. Partner with stakeholders (CISOs, Risk Officers, Compliance Managers, CIOs) to translate complex requirements into scalable solution architectures. Guide pre-sales engagements, providing technical leadership and thought partnership during customer discussions. Own solution blueprints and oversee implementation, ensuring delivery excellence, security, and sustainability. Stay ahead More ❯

seamless data flow and integration between corporate systems (for example, linking finance and procurement systems or HR and payroll systems) to create a single source of truth. Implement data governance practices so that management reports and analytics are accurate and timely. Governance, Risk & Compliance: Implement strong IT governance and security practices for all corporate tech systems. Proactively use technology to … Technical Expertise: Hands-on knowledge of implementing and supporting enterprise software such as ERP systems (e.g., Oracle Financials, SAP, or Netsuite), HRIS/Payroll systems (e.g., PeopleSoft, ADP), and GRC (Governance, Risk & Compliance) tools. Understanding of system architecture, integrations (middleware, APIs), and data management. Technical Skills Enterprise Applications: Proficiency with enterprise resource planning (ERP) systems, financial reporting software, and HR More ❯

a financially regulated enterprise environment or similar. The Senior Security Analyst is a specialist lead SME role with the primary focus on AWS Cloud Security Assurance, as well as Governance, Risk and supporting Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite. You will be working with More ❯

GRC Analyst – Cybersecurity Consultancy 📍 Location: Somerset (Hybrid – occasional travel to client sites or HQ) 💰 Salary: £45,000 – £50,000 + Benefits 🔒 Clearance: Must hold or be eligible for DV clearance Overview We’re representing a highly accredited UK cybersecurity consultancy that is seeking a GRC Analyst to join its growing governance, risk, and compliance team. This role offers the opportunity … strengthen their security posture, ensure compliance with regulatory and contractual obligations, and contribute to the ongoing development of robust risk and assurance frameworks. Ideal for someone with experience in GRC, assurance, or information security , this position provides exposure to high-impact projects within a collaborative, forward-thinking environment. Key Responsibilities Governance & Compliance: Support and maintain compliance frameworks, including ISO … reviewing, and improving security policies, procedures, and control documentation. Supplier & Third-Party Risk: Support assurance activities with suppliers, partners, and service providers to maintain a consistent security baseline. Information Governance: Contribute to compliance with data protection regulations such as GDPR and the Data Protection Act 2018. Awareness & Training: Promote security best practice through awareness initiatives and collaboration with internal and More ❯

GRC Analyst – Cybersecurity Consultancy 📍 Location: Somerset (Hybrid – occasional travel to client sites or HQ) 💰 Salary: £45,000 – £50,000 + Benefits 🔒 Clearance: Must hold or be eligible for DV clearance Overview We’re representing a highly accredited UK cybersecurity consultancy that is seeking a GRC Analyst to join its growing governance, risk, and compliance team. This role offers the opportunity … strengthen their security posture, ensure compliance with regulatory and contractual obligations, and contribute to the ongoing development of robust risk and assurance frameworks. Ideal for someone with experience in GRC, assurance, or information security , this position provides exposure to high-impact projects within a collaborative, forward-thinking environment. Key Responsibilities Governance & Compliance: Support and maintain compliance frameworks, including ISO … reviewing, and improving security policies, procedures, and control documentation. Supplier & Third-Party Risk: Support assurance activities with suppliers, partners, and service providers to maintain a consistent security baseline. Information Governance: Contribute to compliance with data protection regulations such as GDPR and the Data Protection Act 2018. Awareness & Training: Promote security best practice through awareness initiatives and collaboration with internal and More ❯

packaging solutions, paper products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and … risk register, tools, process, reporting and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

of innovation, collaboration, recognition and inclusivity and offer a wide range of benefits to support staff wellbeing. Your Future Starts Here PURPOSE OF JOB: We are seeking an experienced Governance, Risk & Compliance (GRC) Consultant to join our growing cyber security team. You will deliver high-quality GRC services to a diverse client base, help build in-house capability for core … offerings, and support the integration of GRC with our Assurance and DFIM service lines. With 3+ years’ experience in information security, data protection, risk management, enterprise IT, legal, or compliance roles, you will have a proven track record of delivering GRC consultancy across sectors. You will demonstrate strong knowledge of frameworks such as ISO, ISF, NIST CSF, NIS/NIS2 … certifications. This role offers the opportunity to work on high-impact projects within a forward-thinking, supportive environment that values expertise, innovation, and growth. KEY RESPONSIBILITIES: Deliver high-quality GRC services, including: ISO 27001 NIST Gap Analysis CAF Assessments PCI DSS CSMA, ISF, and CIS Assessments Develop and maintain in-house methodologies, templates, and delivery playbooks for core GRC services. More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

the tender process. This is a hybrid working role, with a requirement to be in our Warwick a few times per month. What you'll do: Assist on all Governance, Risk and Compliance activities across Network Services Business Unit. Provide specialist security expertise for multiple internal projects across the Network Services business area. Provide guidance in secure software development throughout More ❯

Company description: Water Utility Company based in Yorkshire region of England. Job description: Security Governance Risk & Compliance Analyst Hello! Thanks for stopping by. Let us tell you about all the great reasons to join us here at Yorkshire Water: We offer a competitive salary, depending on experience (£36,538 45,673) Annual incentive related bonus (£1000 maximum bonus opportunity for … the performance year) Attractive pension scheme (up to 12% company contribution) Development opportunities in line with the Security Governance Risk & Compliance Analyst progression plan 25 days annual leave plus bank holidays plus an extra wellness day Life assurance cover of 4 times pensionable salary A great benefits package choose from health cash plan scheme, critical illness insurance, dental insurance, life … days in the office a week Bradford) Work type: 12-month fixed term contract. 37 hours per week, Monday Friday. We have an exciting opportunity for a Security Governance Risk &Compliance Analyst to join the IT team at Yorkshire Water and be a part of helping Yorkshire Water to provide the best service to our customers. Could this be you More ❯

A prestigious financial services organisation in the heart of the City of London is seeking a Senior IT GRC Analyst to join its dynamic team. In this collaborative role, you will support the development and enhancement of IT Governance, Risk, and Compliance (GRC) frameworks, working closely with senior stakeholders, internal IT teams, and third-party partners to manage IT risk … and ensure regulatory compliance across the business. Key Responsibilities: Governance: Contributing to the implementation and continuous development of IT GRC frameworks. Assisting in the review and maintenance of IT GRC documentation. Assist in the implementation and communication of IT risk and control management frameworks. Conduct governance reviews in line with agreed schedules and document outcomes. Maintain documentation for IT risk … and control management processes. Support the preparation and delivery of formal IT GRC reporting. Risk: Identifying, assessing, and documenting IT risks. Supporting IT risk management activities, including the execution of technical IT risk assessments. Supporting risk owners to define remediation plans and monitor progress on remediation activities. Manage day-to-day operational and technical IT risks. Support IT risk owners More ❯

+ Benefits About Shivom Consultancy Limited Shivom is a fast-growing consultancy delivering technology, transformation, and assurance services across the UK public and private sectors. We're expanding our governance, risk, and compliance practice and seeking an ISO Management Systems Auditor who values integrity, continuous improvement, and strong client relationships. About the Role As an ISO Auditor, you will plan More ❯

basis. Please note, the role is hybrid, with 2-4 days per week on-site. You will assist the Cyber & Information Security Specialist in ensuring our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the Information Security Technology Manager to safeguard the company using the latest and most advanced security … tools. This multifaceted role combines security governance and assurance with hands-on technical skills, utilising state-of-the-art security products to proactively protect the firm and its valuable assets. Your organisational skills and responsiveness will be crucial, as you will need to maintain a keen eye for detail and adapt to a flexible work schedule with shifting priorities. A … life assurance, season ticket loan, cycle to work scheme, discounted gym membership and many, many more perks! Information Security Assurance & Cyber Specialist – Key Skills: Highly experienced in information security governance, risk management, and compliance. Demonstrated experience with developing and implementing information security policies, procedures, and standards. Experience with SOC 2, ISO 27001, NIST 800-53 and GDPR compliance frameworks is More ❯

optimise revenue retention and growth. Change & Transformation: Drive fundamental change initiatives and lead on associated transformation projects. Embedding modern ways of including AI, automation, and data-led process improvements Governance & Risk: Ensure compliance with all financial regulations, tax obligations, and statutory requirements. Implement strong internal controls, risk management frameworks, and scalable financial processes. Manage relationships with external stakeholders, including auditors More ❯

to internal and external stakeholders, providing insight and updates on key projects and initiatives. Represent Operations at senior leadership meetings and client-facing engagements, articulating processes, metrics, and outcomes. Governance, Risk & Compliance Ensure all operational activities comply with regulatory requirements, internal policies, and industry best practices. Implement and maintain robust internal controls to safeguard company assets and ensure operational integrity. More ❯

A leading financial services organisation based in the heart of the City of London is seeking an IT GRC Analyst to join its growing team. This is an excellent opportunity for a professional with at least 3 years of experience in IT Governance, Risk, and Compliance (GRC) to take the next step in their career, contributing to the ongoing development … and improvement of IT risk and control frameworks within a highly regulated, technology-driven environment. Working alongside experienced GRC specialists, IT teams, and business stakeholders, you’ll play a key role in maintaining robust IT governance, managing operational and technical risks, and ensuring compliance with internal and external requirements. Key Responsibilities Governance Contribute to the development, implementation and enhancement of … IT GRC frameworks and processes. Maintain IT governance documentation, ensuring accuracy and alignment with policy requirements. Support governance reviews and assist in the preparation of IT GRC reporting for management and stakeholders. Help communicate IT risk and control frameworks across the organisation. Risk Identify, assess, and document IT risks across systems and services. Support IT risk management activities, including technical More ❯

ICS environments? This is an exciting opportunity to join a leading global renewables business as they strengthen their Cyber and Information Security capability. Reporting to the Head of InfoSec Governance, Risk & Compliance (via the OT Security Risk & Compliance Manager), the OT Security Risk & Compliance Lead will play a pivotal role in shaping, managing and influencing security risk management activities across More ❯

ability to explain security complexities to diverse audiences Track record of managing, mentoring, or coaching technical professionals Desirable Experience: Identity management and authentication/authorisation technologies Broader involvement in governance, risk, compliance, and operational security Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent) Experience leading teams of security engineers or junior architects You’ll Enjoy: Highly competitive salary up More ❯

and security related fields. Your experience does not have to be purely cyber security consulting. We believe individuals with practical skillsets from in-house roles, broader technology management or GRC, for example, would be well placed in our team. We know great candidates bring a mix of skills and experiences, you don’t need to have done everything listed in More ❯

Operations to lead and mature our global IT infrastructure and SecOps capabilities. This role is responsible for the strategy, operations, and execution of all infrastructure services, enterprise security operations, GRC and IT service delivery. The ideal candidate is a technically proficient leader who can operate at both strategic and tactical levels - capable of leading teams, driving transformation, and diving deep More ❯

against climate change: we want you to be part of our journey. The role: The Information Security Assurance Manager is a hands-on, multi-disciplinary role combining project assurance, governance, risk management, and compliance. You will work across business units, projects, and suppliers to ensure security is embedded in everything we dofrom design to delivery. You will also support the More ❯

Job Description We are seeking a Senior Security GRC Manager to join our Group Technology team in Milton Keynes . You will play a pivotal role in shaping and advancing our security governance, risk, and compliance practices across the Group Technology function. You will have a hands-on role to monitor, report on and lead initiatives to strengthen our security … regulatory alignment. This is an exciting opportunity to make a tangible impact, working with a diverse range of stakeholders and supporting the strategic direction of the business. Key Responsibilities: Governance & Compliance : Lead the development, implementation, and continuous improvement of security and technology control frameworks; maintain and update security policies and standards; support governance forums, including Information Security, Business Continuity, and … a culture of continuous improvement, adopting new tools and practices to enhance security; promote security awareness and best practices across the organisation; maintain up-to-date knowledge of technology GRC trends and best practices. Leadership: Deputise for the Head of Security GRC as required; mentor and support colleagues within the team. Experience & Skills Required: Relevant security and compliance certifications such More ❯

growth in the UK and Europe, now is the perfect time to join us on this high speed journey. Introducing the Information Security Team at Trainline As Head of Governance, Risk & Compliance (GRC), you'll play a pivotal role in shaping and leading this transformation of our security function. Reporting directly to our CISO, you'll take ownership of how … governance, risk, and compliance come together to protect, enable, and future prove the business. This is about building a cohesive GRC strategy that balances control with creativity, fits Trainline's business context, and drives long term cultural change. In this critical role, you will collaborate closely with cross functional teams including Legal, Engineering, and Procurement to embed risk management into … s growth ambitions with robust yet pragmatic risk management. As the Head of Information Security Risk and Compliance at Trainline, you will Redesign and embed a pragmatic, risk first GRC framework that integrates governance, risk, and compliance across the business. Assess current maturity and deliver a transformation roadmap that unifies fragmented processes into a single, clear model aligned to Trainline More ❯