1 to 25 of 84 GRC Jobs in the UK excluding London

week onsite £60,000 - £75,000 DOE + 20% Bonus + Bens We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with … organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance ...

Birmingham- Hybrid - 2/3 days a week onsite £550 - £650 Inside IR35 We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align … organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance ...

Excellent communication skills with the ability to simplify complex findings for senior management. Strong attention to detail and a proactive, positive, innovative mindset. Desirable GRC or security certifications (e.g., CISSP, CISM, CRISC, CISA, GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience ...

recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario … and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head ...

teams. Prepare detailed reports and present findings to senior leadership to guide investment decisions. Support the integration of acquired organizations into standardized security and governance frameworks. Business Continuity & Resilience Utilize advanced GRC skills to develop, implement, and maintain business continuity plans (BCP) and disaster recovery frameworks (DRP). Conduct business … and crisis simulations with cross-functional teams. Act as a key member of the crisis management team during incidents affecting operations. Risk Assessment & Security Governance Perform enterprise-wide security risk assessments to identify threats, vulnerabilities, and control gaps. Develop and implement risk mitigation strategies aligned with corporate risk appetite. Monitor ...

Information Governance Analyst Chester | Hybrid working £45,000-£55,000 A customer-focused service provider is looking to appoint an Information Governance Analyst with strong Purview experience to join their Cyber Security function based near Chester. This role offers a hybrid working model, with two days per week onsite. … organisation, supporting secure data handling, regulatory compliance, and best practice information management. Working closely with stakeholders across the business, you'll help embed robust governance processes and controls, with a particular focus on classification, retention, and protection of data. Hands-on experience with Microsoft Purview is essential. The role involves ...

Opportunity National enterprise scale business is seeking a highly capable Governance, Risk & Compliance (GRC) Lead to drive the evolution of their security and risk landscape during a period of significant transformation and investment. This is a rare chance to step into a senior, influential position—shaping the GRC strategy, building … and high-profile environment. The Role Working as the Right-hand to the Head of Information Security, you will: Leadership & Ownership Lead the entire GRC portfolio and shape a function that is still maturing. Manage a small but growing team, across multiple sites Governance & ISMS Own the ISMS and drive ...

established UK business during a key phase of growth and investment, to recruit a GRC Analyst. This is a role centred around governance, risk management, and compliance, working closely with stakeholders across the business to strengthen frameworks, ensure controls are effective, and support ongoing audit and regulatory requirements. … looking to build a career in GRC, gaining exposure to risk, audit, and compliance within a growing organisation that is investing in its security and governance capability. Apply today with your most up-to-date CV! BH35513 ...

and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they indicate … cybersecurity or IT risk roles. This could include experience as a Cyber Risk Analyst, IT Risk Analyst, Security Analyst, Vulnerability Management Specialist, or GRC (Governance, Risk & Compliance) Analyst. Candidates with slightly more or less experience will be considered based on skill fit, but a baseline understanding from a few years ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

take the next step in responsibility and exposure. You'll be working on projects across secure government environments, supporting areas such as security assurance, governance, risk, and compliance , with exposure to frameworks including ISO27001, NIST and JSP standards . Requirements SC Clearance (required to start) Experience working within Defence ...

Advert: Technology Governance Manager - £60,000 + Benefits Location: Warwick/Hybrid 2days p/w We are looking for an experienced Technology Governance Manager to lead and mature the governance, risk, and compliance framework across our Technology function. This role plays a critical part in ensuring that technology change … cybersecurity, and risk management are delivered effectively, enabling robust service delivery and supporting business performance. You will be responsible for defining and operating governance processes that are practical, value adding, and aligned with key regulatory and accreditation standards including ISO 27001 and Cyber Essentials Plus. This role requires a proactive ...

Head of Cyber Governance, Risk and Compliance London | Hybrid | Full-time | Personal Contract Competitive pension scheme – Enhanced maternity/paternity pay – Life assurance – HolidayPlus – Cycle2work Scheme & more REQ5121 As a strategic leader in Governance, Risk and Compliance, you will guide SGN’s cyber security and regulatory approach, ensuring our operations … Every role, whether in the office or on the front line, plays a key part in this mission. Here’s how you will contribute... Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001/2, and ...

network security, DevOps and security monitoring Understanding of secure software development lifecycle (SSDLC) practices Strong knowledge of information security risk management techniques Experience of governance, risk and compliance, ideally in financial services Knowledge of frameworks such as ISO27001, NIST, PCI DSS Awareness of the threat landscape and modern security controls ...

regulated sectors (financial services, healthcare, government, critical infrastructure). * Prior participation in or leadership of real-world cyber incident response activities. * Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...

clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk, compliance and standards alignment • Penetration testing • Security architecture for cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider ...