13 of 13 Information Security Governance Jobs in the UK excluding London

Are you currently working for an IT provider but ready to step into the world of dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance … Team's service offerings forward. Work with a innovative, industry-leading Cyber Security team Play a key role in the development of internal and client security programs Contribute to significant projects that support clients' compliance and risk management goals If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities: Ensure … protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team with scoping engagements and delivering valuable More ❯

Social network you want to login/join with: Chief Information Security Officer, Edinburgh col-narrow-left Client: Motability Operations Location: Edinburgh, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 5615cf41bd25 Job Views: 6 Posted: 25.06.2025 Expiry Date: 09.08.2025 col-wide Job Description: About The Role: The Chief Information Security Officer (CISO) is a senior leader responsible for establishing and maintaining the organisation's vision, strategy, and programs related to information security. The CISO plays a crucial role in safeguarding the organisation's sensitive data, intellectual property, and information systems from potential threats and cyberattacks. The CISO collaborates with various departments, including IT, legal, business risk, and … business units, to ensure the implementation of effective security measures and adherence to industry best practices and regulatory requirements. As CISO, you will be responsible for: Information Security Strategy: Develop and communicate a comprehensive information security strategy that aligns with the overall business goals and objectives. Ensure adherence to this strategy across the entire technology More ❯

Senior Associate, Information Security & Risk Management We are Grant Thornton. We go beyond business as usual, so you can too. Grant Thornton Ireland (GT) has nearly 3,000 people in 9 offices across Ireland, The Isle of Man, Gibraltar, and Bermuda, with a presence in over 145 countries around the world, and a global network of over … feel valued. If you are looking to deepen and develop your skills, knowledge, and experience throughout your career, then that is what you will get, and more. TheSr. Associate, Information Security position will be an integral member of the Governance, Risk & Compliance team. This rolewill be responsible for organizing and managing evidence for external audits. Work in … Chief Information Security Officer (CISO) office under Director, Information Security Governance, Risk and Compliance. Successful candidate will have a good mix of security knowledge, understanding of industry best practice, and a demonstrated background in information security risk management. The candidate will be responsible for managing and responding to client security questionnaires More ❯

About The Role The Chief Information Security Officer (CISO) is a senior leader responsible for establishing and maintaining the organisation's vision, strategy, and programs related to information security. The CISO plays a crucial role in safeguarding the organisation's sensitive data, intellectual property, and information systems from potential threats and cyberattacks. The CISO collaborates with … various departments, including IT, legal, business risk, and business units, to ensure the implementation of effective security measures and adherence to industry best practices and regulatory requirements. As CISO, you will be responsible for: Information Security Strategy: Develop and communicate a comprehensive information security strategy that aligns with the overall business goals and objectives. Ensure … adherence to this strategy across the entire technology estate. Risk Management: Identify, assess, and prioritise security risks, considering potential impact on the organisation's operations, reputation, and finances. Implement security risk mitigation measures and foster a security-aware organisational culture. Security Governance: Work with the Data Protection team to establish and maintain the organisation's More ❯

Posted: 29.06.2025 Expiry Date: 13.08.2025 col-wide Job Description: The Head of Cyber Defence Unit is responsible for the design, implementation, and operation (PLAN BUILD RUN) of all technical security solutions and processes. They drive the security vision within IT and beyond, in areas like production, digital products, and facility management. The HoITSEC acts as the authority for … the development and enforcement of technical enterprise security strategy, standards, and policies. The HoITSEC is also a close sparring partner to the Chief Information Security Officer (CISO) for aligning Information Security Governance and the technical and procedural adoption of ISMS policies and requirements. Key Responsibilities: Developing and implementing the IT Security strategy (covering … IT infrastructure, IT applications, cloud, on-premise) and incorporating it into the IT strategy. Incorporating the IT security strategy into the production and R&D strategies. Establishing a companywide enterprise IT security architecture. Defining and enforcing technical security standards and operational policies. Driving “Security by Design” in relevant business areas. Integrating IT Security into IT More ❯

tasks are the following: Providing counsel on all aspects of cybersecurity incident prevention and response, including customer and regulatory notifications, contractual obligations, and legal risk mitigation, to cyber and information security stakeholders. Advising business stakeholders on regulatory inquiries regarding cyber and information security issues and/or events. Instructing Citi's Cybersecurity Fusion Center and Citi … s business lines on legal risks associated with various components of Citi's cyber and information security program, including matters involving incident response strategies, incident investigations, and regulatory compliance. Tracking existing and proposed cybersecurity rules and regulations (such as DORA and the EU Cyber Resilience Act) and advising on legal interpretations in order to inform a compliance strategy. … and initiatives to provide legal risk mitigation advice. Drafting cybersecurity presentations, exercises, and trainings, as well as presenting and participating as needed. Counseling on the development and implementation of information security governance. Updating cybersecurity policies, playbooks, and procedures. What we'll need from you We are looking for an attorney who has experience advising clients on cybersecurity issues More ❯

procedures Supervises a team of specialists, Deliver risk management services to Hitachi Energy in cooperation with the te Work closely with the stakeholders to prioritize, create reporting, and oversee security findings. Improve management of security risks/issues and help identify areas of risk Reporting on the services, and their continuous improvement. Background: 8+ years of experience in … IT/Information Security Governance in large, global organizations (consulting, audit or industry/operations Experience in planning and operating security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required … Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable More ❯

and procedures. Supervise a team of specialists. Deliver risk management services to Hitachi Energy in cooperation with the team. Work closely with stakeholders to prioritize, create reporting, and oversee security findings. Improve management of security risks/issues and help identify areas of risk. Report on the services and their continuous improvement. Minimum requirements: 8+ years of experience … in IT/Information Security Governance in large, global organizations (consulting, audit, or industry/operations). Experience in planning and operating security risk/issue management-related processes and services. Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar). Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001 … CobiT, etc.). Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC) is a plus. About Hitachi Energy: Hitachi Energy is a global technology leader advancing a sustainable energy future. We serve customers across utility, industry, and infrastructure sectors with innovative solutions and services. We are committed to digital transformation to accelerate the energy transition towards a More ❯

Social network you want to login/join with: Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the Information Security team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are … identified and the activities to ensure that the process is governed effectively, to ensure that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various … departments, business units and suppliers to implement practices that meet the clients defined policies and standards for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks More ❯

Job Title: Cybersecurity SME Work Location: Telford, Shropshire Department: Information Security & Risk Management Reports To: Chief Information Security Officer (CISO)/Head of Information Assurance, security, ensuring compliance with frameworks such as UK GDPR We at Coforge are hiring Cybersecurity SME with the following skillset: Job Summary: We are looking for a Cybersecurity SME … in the UK (based out of Telford, Shropshire) with a strong experience of – Data Protection, Application & Cloud Data Security Key Responsibilities: Information Security Governance & Compliance: • Develop and maintain security policies, standards, and procedures aligned with UK GDPR and other compliance. • Conduct risk assessments and support DPIAs for systems processing sensitive data (e.g., PII, PHI). … Ensure security controls are embedded across enterprise platforms including Pega CRM, contact center systems, and cloud data environments . Data Protection & DLP: • Design and implement DLP strategies across endpoints, cloud storage, and enterprise applications. • Enforce data classification, encryption, and access control policies for regulated data. • Collaborate with stakeholders to ensure compliance with data protection regulations and privacy-by-design More ❯

Job title: Graduate Digital Intelligence Security Consultant Location: Frimley We offer a range of hybrid and flexible working arrangements, however for this role you will be expected to attend your BAE Systems base location (or our customer sites) 3-5 days per week. Salary: £34,000 + £2,000 Welcome Bonus What you'll be doing: Security Consultants … help our customers understand & manager their cyber risk, secure their business and improve their security operations. We are the people they trust to defend, or recover, from cyber attack through technical services, assurance and support. Responsibilities might include support to: The investigation of security breaches and incidents Information security governance and management Development & review of … security policies and processes Security maturity and compliance activities Application and system-level risk assessments Delivery of security improvement, remediation and hardening programmes Research into cyber threats and strategies to defend from them. Analysis of security technologies and development of innovative solutions Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share More ❯

Job Title: Graduate Digital Intelligence Security Consultant Location: Frimley We offer a range of hybrid and flexible working arrangements. However, for this role, you will be expected to attend your BAE Systems base location (or our customer sites) 3-5 days per week. Salary: £34,000 + £2,000 Welcome Bonus What you'll be doing: Security Consultants … help our customers understand & manage their cyber risk, secure their business, and improve their security operations. We are the people they trust to defend or recover from cyber attacks through technical services, assurance, and support. Responsibilities might include support to: The investigation of security breaches and incidents Information security governance and management Development & review of … security policies and processes Security maturity and compliance activities Application and system-level risk assessments Delivery of security improvement, remediation, and hardening programmes Research into cyber threats and strategies to defend from them Analysis of security technologies and development of innovative solutions Benefits: In addition to a competitive pension scheme, BAE Systems offers employee share plans More ❯

Social network you want to login/join with: Job title: Graduate Digital Intelligence Security Consultant Location: Frimley We offer a range of hybrid and flexible working arrangements, however for this role you will be expected to attend your BAE Systems base location (or our customer sites) 3-5 days per week. What you’ll be doing: Security Consultants help our customers understand & manager their cyber risk, secure their business and improve their security operations. We are the people they trust to defend, or recover, from cyber attack through technical services, assurance and support. Responsibilities might include support to: The investigation of security breaches and incidents Information security governance and management Development … review of security policies and processes Security maturity and compliance activities Application and system-level risk assessments Delivery of security improvement, remediation and hardening programmes Research into cyber threats and strategies to defend from them. Analysis of security technologies and development of innovative solutions As well as a competitive pension scheme, BAE Systems also offers employee More ❯