Senior InformationSecurity GRC Analyst Senior InformationSecurity GRC Analyst Locations: London, United Kingdom; Manassas, United States Posted on: 4 Days Ago ABOUT US We're the world's leading provider of secure financial messaging services, headquartered in Belgium. We are the way the world moves value - across borders, through cities and overseas. No other organisation … relevant. Swift now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. Are you passionate about securityGovernance, Risk and Compliance (GRC)? Do you thrive in a dynamic environment where your experience and your security expertise can shape the future of our organization? We … are looking for a GRC Specialist like you to join our growing InformationSecurityGovernance team. In this role, you will: Develop and implement robust GRC frameworks to ensure compliance with increasingly stringent industry regulations and standards. Lead the reporting and presentation of our GRC activities to internal and external stakeholders, ensuring transparency and accountability. Collaborate with More ❯
Are you currently working for an IT provider but ready to step into the world of dedicated Cyber Security? We have an exciting opportunity for an InformationSecurity Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance … Team's service offerings forward. Work with a innovative, industry-leading Cyber Security team Play a key role in the development of internal and client security programs Contribute to significant projects that support clients' compliance and risk management goals If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities: Ensure … protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team with scoping engagements and delivering valuable More ❯
InformationSecurity GRC Manager Contract role (Outside IR35) Location: London (Remote) iO Associates have collaborated with our consultancy division to help in their search for an InformationSecurity GRC Manager. You will work towards refining the entire GRC programme - frameworks, audits, risk assessments, stakeholder communication - across a regulated environment. You'll also work with vendors and … internal teams to ensure compliance and strong governance. Key Responsibilities: Build and refine informationsecuritygovernance and risk frameworks Lead audits (internal/external) and drive compliance (ISO 27001, GDPR, NIST) Own vendor risk, supplier assurance, and contract governance Communicate risks and policies across the business Support KPI development and risk strategy planning Requirements: Degree in … Computer Science/IT or relevant industry certifications such as CISA, CRISC, CISMP, ISO 27001 Lead Auditor/Implementer Working knowledge with legal/security needs in housing association sector and its regulatory environment Solid grasp of ISO 27001, NIST, GDPR, and PCI-DSS Proven experience in GRC leadership Skilled in risk analysis, audit reporting, and policy writing Excellent More ❯
based asset managers and other wealth related businesses. Due to this Titan Wealth is expanding rapidly through strategic acquisitions, offering a unique combination of start-up energy and the security of private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated InformationSecurityGovernance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our informationsecuritygovernance and risk management framework. This role is essential in ensuring the organisation proactively manages informationsecurity risk across its employees, technologies, vendors, and operations and adheres to the regulatory and security standards pertinent to financial … services while providing visibility to key stakeholders. Job Responsibilities Support the development, maintenance, and enforcement of informationsecurity policies, procedures, and standards Conduct risk assessments on technology systems, third-party vendors, and new services. Drive, monitor and track remediation efforts related to incidents, assurance internal audits, external audits, and security assessments Strong stakeholder management skills, working closely More ❯
InformationSecurity Manager | Full-time Onsite | Victoria, London | 3 Stage Process | £70,000 - £80,000 bonus We are working with a growing security intelligence business with operations in the UK, Ukraine and UAE. They work across national security, NGOs, government and charity organisations offering intelligence and security risk support in hostile environments. Due to expansion … and increased strategic focus, they are looking for an experienced InformationSecurity Manager to take ownership of their ISO 27001-aligned ISMS, build out governance frameworks and lead security strategy across a global footprint. The role is based out of their Victoria office in London, with an expectation of being onsite 5 days per week initially. … The interview process consists of 3 stages, including technical and stakeholder engagement rounds. Skills & Experience: Proven experience managing and implementing ISO 27001-compliant systems Strong background in informationsecuritygovernance and risk management Experience with Cyber Essentials/Cyber Essentials Plus accreditation processes Knowledge of UK GDPR (though this will be managed by somebody else) and broader More ❯
InformationSecurity Manager | Full-time Onsite | Victoria, London | 3 Stage Process | £70,000 - £80,000 bonus We are working with a growing security intelligence business with operations in the UK, Ukraine and UAE. They work across national security, NGOs, government and charity organisations offering intelligence and security risk support in hostile environments. Due to expansion … and increased strategic focus, they are looking for an experienced InformationSecurity Manager to take ownership of their ISO 27001-aligned ISMS, build out governance frameworks and lead security strategy across a global footprint. The role is based out of their Victoria office in London, with an expectation of being onsite 5 days per week initially. … The interview process consists of 3 stages, including technical and stakeholder engagement rounds. Skills & Experience: Proven experience managing and implementing ISO 27001-compliant systems Strong background in informationsecuritygovernance and risk management Experience with Cyber Essentials/Cyber Essentials Plus accreditation processes Knowledge of UK GDPR (though this will be managed by somebody else) and broader More ❯
InformationSecurity Manager | Full-time Onsite | Victoria, London | 3 Stage Process | £70,000 - £80,000 bonus We are working with a growing security intelligence business with operations in the UK, Ukraine and UAE. They work across national security, NGOs, government and charity organisations offering intelligence and security risk support in hostile environments. Due to expansion … and increased strategic focus, they are looking for an experienced InformationSecurity Manager to take ownership of their ISO 27001-aligned ISMS, build out governance frameworks and lead security strategy across a global footprint. The role is based out of their Victoria office in London, with an expectation of being onsite 5 days per week initially. … The interview process consists of 3 stages, including technical and stakeholder engagement rounds. Skills & Experience: Proven experience managing and implementing ISO 27001-compliant systems Strong background in informationsecuritygovernance and risk management Experience with Cyber Essentials/Cyber Essentials Plus accreditation processes Knowledge of UK GDPR (though this will be managed by somebody else) and broader More ❯
InformationSecurity Manager - Corporation InformationSecurity Manager - Corporation Please note we only accept online application via our website Role Overview We're looking for a pragmatic, risk focussed InformationSecurity Manager to work within Nest and maintain our ISO 27001 certified corporation InformationSecurity Management System (ISMS). We sit in the … second line of defence and advise the business on security risks, incidents, audits, assurance and the implementation and monitoring of security controls that protects Nest. You'll have a solid background in informationsecurity management systems, technology and love communicating technical concepts to non-technical people. Please note the minimum criteria for this role is: Practical … experience of operating certified ISMS using ISO 27001/2, NIST CSF and other security standards in the design and management of informationsecurity controls. Practical experience working with third party suppliers to audit and evidence compliance with security policies, standards etc. Understanding and experience of various InformationSecurity domains including Security Architecture More ❯
IT GRC Specialist is required by prestigious financial services organisation in the heart of the City. In this collaborative role, you will support the development and enhancement of IT Governance, Risk, and Compliance frameworks, working closely with senior stakeholders, internal IT teams, and third-party partners to manage IT risk and ensure regulatory compliance across the business. Key Responsibilities … Governance: Contributing to the implementation and continuous development of IT GRC frameworks. Assisting in the review and maintenance of IT GRC documentation. Assist in the implementation and communication of IT risk and control management frameworks. Conduct governance reviews in line with agreed schedules and document outcomes. Maintain documentation for IT risk and control management processes. Support the preparation … and attestations to support second-line permanent control checks. Coordinate IT control attestations across Group IT and with third-party service providers. Key Skills and Experience: Significant experience in InformationSecurityGovernance, Risk, and Compliance (GRC), with a focus on IT risk and control management. Strong analytical skills with the ability to perform technical IT securityMore ❯
IT GRC Specialist is required by prestigious financial services organisation in the heart of the City. In this collaborative role, you will support the development and enhancement of IT Governance, Risk, and Compliance frameworks, working closely with senior stakeholders, internal IT teams, and third-party partners to manage IT risk and ensure regulatory compliance across the business. Key Responsibilities … Governance: Contributing to the implementation and continuous development of IT GRC frameworks. Assisting in the review and maintenance of IT GRC documentation. Assist in the implementation and communication of IT risk and control management frameworks. Conduct governance reviews in line with agreed schedules and document outcomes. Maintain documentation for IT risk and control management processes. Support the preparation … and attestations to support second-line permanent control checks. Coordinate IT control attestations across Group IT and with third-party service providers. Key Skills and Experience: Significant experience in InformationSecurityGovernance, Risk, and Compliance (GRC), with a focus on IT risk and control management. Strong analytical skills with the ability to perform technical IT securityMore ❯
IT GRC Specialist is required by prestigious financial services organisation in the heart of the City. In this collaborative role, you will support the development and enhancement of IT Governance, Risk, and Compliance frameworks, working closely with senior stakeholders, internal IT teams, and third-party partners to manage IT risk and ensure regulatory compliance across the business. Key Responsibilities … Governance: Contributing to the implementation and continuous development of IT GRC frameworks. Assisting in the review and maintenance of IT GRC documentation. Assist in the implementation and communication of IT risk and control management frameworks. Conduct governance reviews in line with agreed schedules and document outcomes. Maintain documentation for IT risk and control management processes. Support the preparation … and attestations to support second-line permanent control checks. Coordinate IT control attestations across Group IT and with third-party service providers. Key Skills and Experience: Significant experience in InformationSecurityGovernance, Risk, and Compliance (GRC), with a focus on IT risk and control management. Strong analytical skills with the ability to perform technical IT securityMore ❯
are maintained Supervises a team of specialists Delivers risk management services to Hitachi Energy in cooperation with the team Works closely with stakeholders to prioritize, create reporting, and oversee security findings Improves management of security risks/issues and helps identify areas of risk Reports on the services and their continuous improvement Background: 8+ years of experience in … IT/InformationSecurityGovernance in large, global organizations (consulting, audit, or industry/operations) Experience in planning and operating security risk/issue management-related processes and services Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, etc. … required Experience in service build-up is a plus SecurityGovernance/Risk Management certification (CISSP, CGEIT, CISM, CRISC, etc.) is a plus Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site due to your disability. You may request More ❯
procedures Supervises a team of specialists, Deliver risk management services to Hitachi Energy in cooperation with the te Work closely with the stakeholders to prioritize, create reporting, and oversee security findings. Improve management of security risks/issues and help identify areas of risk Reporting on the services, and their continuous improvement. Background: 8+ years of experience in … IT/InformationSecurityGovernance in large, global organizations (consulting, audit or industry/operations Experience in planning and operating security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required … Experience in service build up a plus SecurityGovernance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable More ❯
the area Supervise a team of specialists Deliver risk management services to Hitachi Energy in cooperation with the team Work closely with stakeholders to prioritize, create reports, and oversee security findings Improve management of security risks/issues and help identify areas of risk Report on the services and their continuous improvement Background: 8+ years of experience in … IT/InformationSecurityGovernance in large, global organizations (consulting, audit, or industry/operations) Experience in planning and operating security risk/issue management-related processes and services Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar) Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, etc.) Experience … in service build-up is a plus SecurityGovernance/Risk Management certification (CISSP, CGEIT, CISM, CRISC, etc.) is a plus Hitachi Energy is a global technology leader advancing a sustainable energy future for all. We serve customers in utility, industry, and infrastructure sectors with innovative solutions and services across the value chain. We pioneer technologies and enable More ❯
Head of InformationSecurity Department: IT Operations Employment Type: Permanent - Full Time Location: London Reporting To: Kirsty Kelly Description As Head of InformationSecurity, you will report directly into the Group CISO, and be responsible for leading and managing key pillars of our security programme, with a primary focus on Third-Party Security Risk … Management, Data Loss Prevention (DLP), Policy Governance, Security Training & Awareness, and Identity & Access Management (IAM). You will work closely with the Group CISO to ensure high standards in your areas of responsibility and global adherence to security practices. The ideal candidate will have deep knowledge of regulatory frameworks such as NYDFS Cybersecurity Regulation, GDPR, and other … European and Australian data protection laws, bringing a proactive, risk-based approach to securitygovernance and controls operationalization. About the role This role involves acting as a member of the CISO's leadership team, contributing to security strategy, budgeting, and cross-functional planning. Key responsibilities include: Managing cyber incidents and supporting the CISO team in global coordination. More ❯
Senior Security & Compliance Specialist, Payments Security Compliance Job ID: Amazon Development Centre (London) Limited In compliance with regulatory requirements, and in alignment with business teams, Payments Security Compliance (PSC) team supports Amazon payments entities in select regions. Security Compliance Specialists have varying scope of responsibility in each region, depending on the nature of regulatory licenses to … be maintained, number of regulators, the number of systems and teams in scope (blast radius of regulatory compliance), and the degree of stringency the local regime places on Security and Data protection We are seeking an experienced, self-motivated Senior Security Compliance Specialist with strong Security and Compliance background. This candidate will be an innovative and forward … thinking individual who possess in-depth knowledge and will be identifying InformationSecurity compliance risks, drive SecurityGovernance, Security Assurance and Risk Management efforts, manage regional regulatory compliance and contribute to emerging regulations and technology standards globally, partnering with Security Experts of Global Amazon InformationSecurity teams. Your work directly impacts Customer More ❯
Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC Reports to: Global CISO Location: London Summary of Position: This position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The … role will work in collaboration with Information Technology, Group Risk and Compliance, HR, Facilities and a number of third parties. Key Responsibilities & Accountabilities: Support the Global CISO in maintaining and realising the cyber security strategy Take overall responsibility of informationsecurity risk and compliance Assume responsibility for the BMS InformationSecurity Control Framework Produce … and maintain a the InformationSecuritygovernance and oversight target operating model Produce policies and supporting governance material Take ownership for the InformationSecurity Risk management processes Identify informationsecurity threats and work with technical teams to understand BMS exposure Provide specialist InformationSecurity input to IT and business operations More ❯
Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC Reports to: Global CISO Location: London Summary of Position: This position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The … role will work in collaboration with Information Technology, Group Risk and Compliance, HR, Facilities and a number of third parties. Key Responsibilities & Accountabilities: Support the Global CISO in maintaining and realising the cyber security strategy Take overall responsibility of informationsecurity risk and compliance Assume responsibility for the BMS InformationSecurity Control Framework Produce … and maintain a the InformationSecuritygovernance and oversight target operating model Produce policies and supporting governance material Take ownership for the InformationSecurity Risk management processes Identify informationsecurity threats and work with technical teams to understand BMS exposure Provide specialist InformationSecurity input to IT and business operations More ❯
Oliver James has partnered with a industry leader who are currently looking for a GRC Analyst to join the team. Your role is to support the InformationSecurity GRC Manager in understanding, evaluating, and communicating informationsecurity risks ensuring the security posture aligns with compliance and regulatory obligations. Improving and maintaining the informationsecuritygovernance and risk frameworks to ensure compliance with relevant standards and regulations. Experience Required: Proven experience in informationsecurity, risk, or governance. Solid understanding of key security frameworks and regulations like ISO 27001, NIST, and GDPR. Familiar with risk assessments, mitigation strategies, and creating action plans. Confident in writing reports and documentation such as audits … and ensuring compliance with standards like ISO 27001 and PCI-DSS. Strong communicator, able to work effectively with stakeholders at all levels. Key Responsibilities include: Identify, document, and communicate security risks, and help create strategies to manage them. Maintain and improve securitygovernance and risk frameworks. Monitor compliance with security policies, standards, laws, and regulations. Coordinate More ❯
London, England, United Kingdom Hybrid / WFH Options
itecopeople
Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the InformationSecurity team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process … is governed effectively, to ensure that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that … meet the clients defined policies and standards for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at More ❯
South East London, England, United Kingdom Hybrid / WFH Options
itecopeople
Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the InformationSecurity team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process … is governed effectively, to ensure that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that … meet the clients defined policies and standards for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at More ❯
Your Purpose As the subject matter expert in SecurityGovernance, Training & Culture, you will lead the development, delivery, and continuous improvement of the global strategy in this space. You'll work across teams and with external partners to promote secure behaviours, drive cultural change, and build awareness using innovative tools and approaches. Your role is essential in shaping … how colleagues across the organisation think and act securely in their day-to-day work. Key Responsibilities Lead the design and execution of the global InformationSecurityGovernance, Training & Culture strategy. Develop engaging, inclusive training and awareness initiatives, meeting regulatory and business requirements. Implement innovative tools and techniques to enhance behavioural change and cultural engagement. Oversee security … awareness campaigns, and community-building initiatives. Collaborate with stakeholders to maintain up-to-date policies, standards, and guidance. Measure effectiveness through KPIs, training needs analysis, and compliance metrics. Support security committees, report outcomes, and inform strategic improvements. Key Skills & Experience Strong communicator with a creative approach to training and awareness campaigns. Proven experience (5+ years) in security training More ❯
Select how often (in days) to receive an alert: Create Alert Job Title: Graduate Digital Intelligence Security Consultant Location: London We offer a range of hybrid and flexible working arrangements; however, for this role, you will be expected to attend your BAE Systems base location (or our customer sites) 3-5 days per week. What you'll be doing … Security Consultants help our customers understand & manage their cyber risk, secure their business, and improve their security operations. We are the trusted partners in defending or recovering from cyber attacks through technical services, assurance, and support. Responsibilities might include support to: The investigation of security breaches and incidents Informationsecuritygovernance and management Development … review of security policies and processes Security maturity and compliance activities Application and system-level risk assessments Delivery of security improvement, remediation, and hardening programmes Research into cyber threats and strategies to defend against them Analysis of security technologies and development of innovative solutions BAE Systems offers a competitive pension scheme, employee share plans, and an More ❯
Job title: Graduate Digital Intelligence Security Consultant Location: London We offer a range of hybrid and flexible working arrangements, however for this role you will be expected to attend your BAE Systems base location (or our customer sites) 3-5 days per week. Salary: £34,000 + £2,000 Welcome Bonus What you’ll be doing: Security Consultants … help our customers understand & manager their cyber risk, secure their business and improve their security operations. We are the people they trust to defend, or recover, from cyber attack through technical services, assurance and support. Responsibilities might include support to: The investigation of security breaches and incidents Informationsecuritygovernance and management Development & review of … security policies and processes Security maturity and compliance activities Application and system-level risk assessments Delivery of security improvement, remediation and hardening programmes Research into cyber threats and strategies to defend from them. Analysis of security technologies and development of innovative solutions Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share More ❯
Job title: Graduate Digital Intelligence Security Consultant Location: Frimley We offer a range of hybrid and flexible working arrangements, however for this role you will be expected to attend your BAE Systems base location (or our customer sites) 3-5 days per week. Salary: £34,000 + £2,000 Welcome Bonus What you’ll be doing: Security Consultants … help our customers understand & manager their cyber risk, secure their business and improve their security operations. We are the people they trust to defend, or recover, from cyber attack through technical services, assurance and support. Responsibilities might include support to: The investigation of security breaches and incidents Informationsecuritygovernance and management Development & review of … security policies and processes Security maturity and compliance activities Application and system-level risk assessments Delivery of security improvement, remediation and hardening programmes Research into cyber threats and strategies to defend from them. Analysis of security technologies and development of innovative solutions Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share More ❯
