Hybrid/Remote GRC Job Trends, Salaries & Related Skills

Governance, Risk Management and Compliance (GRC)
UK > Work from Home

The table below provides summary statistics and salary benchmarking for remote or hybrid work requiring GRC skills. It covers permanent job vacancies from the 6 months leading up to 17 June 2026, with comparisons to the same periods in the previous two years.

	6 months to 17 Jun 2026	Same period 2025	Same period 2024
Rank	233	380	457
Rank change year-on-year	+147	+77	+16
Permanent jobs citing GRC	196	47	129
As % of all permanent jobs with remote/hybrid work options	0.98%	0.31%	0.37%
As % of the Quality Assurance & Compliance category	6.08%	1.64%	2.98%
Number of salaries quoted	124	32	107
10^th Percentile	£50,000	£50,700	£37,500
25^th Percentile	£58,589	£62,188	£43,125
Median annual salary (50^th Percentile)	£84,930	£73,750	£60,000
Median % change year-on-year	+15.16%	+22.92%	-14.29%
75^th Percentile	£95,000	£86,250	£77,500
90^th Percentile	£110,000	£88,625	£95,000
UK median annual salary	£75,000	£72,500	£65,000
% change year-on-year	+3.45%	+11.54%	-

All Quality Assurance and Compliance Skills
Work from Home

GRC falls under the Quality Assurance and Compliance category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies with remote or hybrid options requiring quality assurance or compliance skills.

Permanent vacancies with a requirement for quality assurance or compliance skills	3,224	2,860	4,334
As % of all permanent jobs with a WFH option	16.15%	18.63%	12.54%
Number of salaries quoted	2,094	1,545	3,250
10^th Percentile	£35,000	£34,750	£34,500
25^th Percentile	£45,000	£46,250	£42,500
Median annual salary (50^th Percentile)	£60,000	£60,000	£57,500
Median % change year-on-year	-	+4.35%	-4.17%
75^th Percentile	£78,800	£75,000	£75,000
90^th Percentile	£95,000	£93,778	£95,000
UK median annual salary	£59,394	£57,500	£52,500
% change year-on-year	+3.29%	+9.52%	-8.70%

GRC
Job Vacancy Trend for Remote/Hybrid Jobs

Historical trend showing the proportion of permanent IT job postings citing GRC and offering remote or hybrid work options relative to all permanent IT jobs advertised.

GRC
Salary Trend for Remote/Hybrid Jobs

Salary distribution trend for jobs with remote/hybrid work options citing GRC.

GRC
Salary Histogram for Remote/Hybrid Jobs

Salary distribution for jobs with remote/hybrid work options citing GRC over the 6 months to 17 June 2026.

GRC salary histogram for jobs with remote/hybrid work options

GRC
Top 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

For the 6 months to 17 June 2026, GRC job roles required the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent jobs with hybrid or remote work options and a requirement for GRC.

1	101 (51.53%)	Cybersecurity
2	93 (47.45%)	ISO/IEC 27001
3	74 (37.76%)	Information Security
4	62 (31.63%)	Risk Management
5	54 (27.55%)	AI
6	52 (26.53%)	NIST
7	43 (21.94%)	Cloud Security
8	41 (20.92%)	Security Architecture
9	40 (20.41%)	Continuous Improvement
9	40 (20.41%)	PCI DSS
10	36 (18.37%)	CISSP
11	35 (17.86%)	Azure
11	35 (17.86%)	CISM
12	33 (16.84%)	CI/CD
12	33 (16.84%)	SDLC

13	31 (15.82%)	Threat Modelling
14	30 (15.31%)	IT Strategy
14	30 (15.31%)	Security Cleared
15	29 (14.80%)	CrowdStrike
16	28 (14.29%)	Decision-Making
16	28 (14.29%)	Degree
16	28 (14.29%)	Validation
17	27 (13.78%)	Regulatory Compliance
18	26 (13.27%)	AWS
18	26 (13.27%)	DevSecOps
18	26 (13.27%)	Security Testing
19	25 (12.76%)	Application Security
19	25 (12.76%)	Incident Management
19	25 (12.76%)	Palo Alto
19	25 (12.76%)	Serverless

GRC
Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	5 (2.55%)	Totara
2	1 (0.51%)	SharePoint

Applications
1	7 (3.57%)	Microsoft Excel
2	5 (2.55%)	Microsoft Project
3	2 (1.02%)	Microsoft PowerPoint
4	1 (0.51%)	Microsoft Office
4	1 (0.51%)	MS Visio

Business Applications
1	2 (1.02%)	SAP GRC
1	2 (1.02%)	SAP S/4HANA
2	1 (0.51%)	SAP BPC
2	1 (0.51%)	SAP HCM

Cloud Services
1	35 (17.86%)	Azure
2	26 (13.27%)	AWS
3	25 (12.76%)	Serverless
4	16 (8.16%)	SaaS
5	15 (7.65%)	GCP
6	12 (6.12%)	Entra ID
7	10 (5.10%)	Microsoft 365
8	8 (4.08%)	Azure DevOps
9	7 (3.57%)	Azure Key Vault
9	7 (3.57%)	Cloudflare
9	7 (3.57%)	Vercel
10	6 (3.06%)	Vertex AI
11	5 (2.55%)	Smartsheet
12	3 (1.53%)	Microsoft Purview
12	3 (1.53%)	Power Platform
13	2 (1.02%)	Azure Sentinel
13	2 (1.02%)	Datadog
13	2 (1.02%)	Google Sheets
14	1 (0.51%)	Azure Monitor
14	1 (0.51%)	OCI

Communications & Networking
1	19 (9.69%)	Firewall
2	14 (7.14%)	Network Security
3	6 (3.06%)	DMZ
4	4 (2.04%)	VPN

Database & Business Intelligence
1	6 (3.06%)	Semantic Layer
2	2 (1.02%)	Data Warehouse
2	2 (1.02%)	Looker
2	2 (1.02%)	Power BI

Development Applications
1	25 (12.76%)	Snyk
2	5 (2.55%)	JIRA
3	2 (1.02%)	Yeoman

General
1	67 (34.18%)	Social Skills
2	49 (25.00%)	Inclusion and Diversity
3	46 (23.47%)	Finance
4	25 (12.76%)	Telecoms
5	22 (11.22%)	Analytical Skills
6	21 (10.71%)	Public Sector
7	19 (9.69%)	Law
8	16 (8.16%)	Legal
9	15 (7.65%)	Banking
9	15 (7.65%)	Retail
10	9 (4.59%)	Influencing Skills
11	7 (3.57%)	Legal Technology
11	7 (3.57%)	Local Government
11	7 (3.57%)	Organisational Skills
12	6 (3.06%)	Back Office
12	6 (3.06%)	Financial Institution
12	6 (3.06%)	Marketing
13	4 (2.04%)	Advertising
13	4 (2.04%)	Aviation
14	2 (1.02%)	Electronics

Job Titles
1	39 (19.90%)	Senior
2	36 (18.37%)	Architect
3	31 (15.82%)	Lead
4	30 (15.31%)	Security Architect
4	30 (15.31%)	Senior Architect
5	26 (13.27%)	Senior Security Architect
6	25 (12.76%)	Cloud Architect
6	25 (12.76%)	Cloud Security Architect
6	25 (12.76%)	Senior Cloud Architect
7	24 (12.24%)	Consultant
8	23 (11.73%)	Analyst
9	18 (9.18%)	Security Consultant
10	12 (6.12%)	Security Analyst
10	12 (6.12%)	Security Specialist
11	9 (4.59%)	Head of IT
12	8 (4.08%)	Solutions Architect
13	7 (3.57%)	Engineering Manager
13	7 (3.57%)	Security Manager
13	7 (3.57%)	Senior Solutions Architect
13	7 (3.57%)	Software Manager

Libraries, Frameworks & Software Standards
1	7 (3.57%)	CSS
1	7 (3.57%)	HTML
1	7 (3.57%)	React
2	4 (2.04%)	ModSecurity
3	2 (1.02%)	SAP CAF
4	1 (0.51%)	EDI
4	1 (0.51%)	EDIFACT
4	1 (0.51%)	SAP Fiori
4	1 (0.51%)	TAPI

Miscellaneous
1	23 (11.73%)	Data Centre
2	18 (9.18%)	Management Information System
3	15 (7.65%)	Cloud Native
4	14 (7.14%)	Onboarding
5	13 (6.63%)	Security Posture
6	7 (3.57%)	Culture of Ownership
6	7 (3.57%)	e-Learning
6	7 (3.57%)	Operational Technology
6	7 (3.57%)	Podcast
7	6 (3.06%)	Blog
7	6 (3.06%)	Cloud Security Posture
7	6 (3.06%)	Cyber Kill Chain
7	6 (3.06%)	PKI
7	6 (3.06%)	Self-Motivation
8	5 (2.55%)	Learning Management System
9	4 (2.04%)	Cyber Defence
10	3 (1.53%)	Mobile App
11	2 (1.02%)	Data Structures
11	2 (1.02%)	NHS
11	2 (1.02%)	Taxonomies

Operating Systems
1	4 (2.04%)	Windows

Processes & Methodologies
1	101 (51.53%)	Cybersecurity
2	74 (37.76%)	Information Security
3	62 (31.63%)	Risk Management
4	54 (27.55%)	AI
5	43 (21.94%)	Cloud Security
6	41 (20.92%)	Security Architecture
7	40 (20.41%)	Continuous Improvement
8	33 (16.84%)	CI/CD
8	33 (16.84%)	SDLC
9	31 (15.82%)	Threat Modelling
10	30 (15.31%)	IT Strategy
11	28 (14.29%)	Decision-Making
11	28 (14.29%)	Validation
12	27 (13.78%)	Regulatory Compliance
13	26 (13.27%)	DevSecOps
13	26 (13.27%)	Security Testing
14	25 (12.76%)	Application Security
14	25 (12.76%)	Incident Management
15	24 (12.24%)	Roadmaps
15	24 (12.24%)	Technology Strategy

Programming Languages
1	7 (3.57%)	JavaScript
2	6 (3.06%)	Python

Qualifications
1	36 (18.37%)	CISSP
2	35 (17.86%)	CISM
3	30 (15.31%)	Security Cleared
4	28 (14.29%)	Degree
5	20 (10.20%)	CISA
5	20 (10.20%)	CRISC
5	20 (10.20%)	SC Cleared
6	14 (7.14%)	CompTIA Security+
7	12 (6.12%)	ISO 27001 Lead Implementer
8	10 (5.10%)	DV Cleared
9	7 (3.57%)	ISACA
9	7 (3.57%)	ISO 27001 Lead Auditor
9	7 (3.57%)	SANS
10	6 (3.06%)	CREST Certified
10	6 (3.06%)	PMI Certification
11	5 (2.55%)	PMP
12	4 (2.04%)	OSCP
13	3 (1.53%)	(ISC)2 CCSP
13	3 (1.53%)	Cyber Scheme
13	3 (1.53%)	Tigerscheme

Quality Assurance & Compliance
1	93 (47.45%)	ISO/IEC 27001
2	52 (26.53%)	NIST
3	40 (20.41%)	PCI DSS
4	24 (12.24%)	GDPR
5	15 (7.65%)	Cyber Essentials
6	11 (5.61%)	NCSC
7	10 (5.10%)	JSP 440
8	9 (4.59%)	ISO/IEC 42001
8	9 (4.59%)	SOC 2
9	8 (4.08%)	Accessibility
10	7 (3.57%)	NIST 800
11	5 (2.55%)	ISO/IEC 27005
12	4 (2.04%)	Cyber Essentials PLUS
13	3 (1.53%)	Sarbanes-Oxley
14	2 (1.02%)	COBIT
14	2 (1.02%)	SEPA
15	1 (0.51%)	Actionable Recommendations
15	1 (0.51%)	EU AI Act
15	1 (0.51%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
15	1 (0.51%)	Solvency II

System Software
1	25 (12.76%)	Virtual Machines
2	4 (2.04%)	Active Directory
3	1 (0.51%)	IAG

Systems Management
1	8 (4.08%)	RSA Archer
2	7 (3.57%)	Computer Emergency Response Teams
3	2 (1.02%)	Grafana
3	2 (1.02%)	Opsgenie
4	1 (0.51%)	Single Sign-On
4	1 (0.51%)	Terraform

Vendors
1	29 (14.80%)	CrowdStrike
2	25 (12.76%)	Palo Alto
2	25 (12.76%)	Tenable
3	22 (11.22%)	Microsoft
4	6 (3.06%)	OpenAI
5	4 (2.04%)	Apple
5	4 (2.04%)	SAP
6	3 (1.53%)	Google
7	2 (1.02%)	GoldenSource
7	2 (1.02%)	PagerDuty
7	2 (1.02%)	Splunk
8	1 (0.51%)	CyberArk
8	1 (0.51%)	OneTrust
8	1 (0.51%)	Oracle
8	1 (0.51%)	ServiceNow

Governance, Risk Management and Compliance (GRC)UK > Work from Home

All Quality Assurance and Compliance SkillsWork from Home

GRCJob Vacancy Trend for Remote/Hybrid Jobs

GRCSalary Trend for Remote/Hybrid Jobs

GRCSalary Histogram for Remote/Hybrid Jobs

GRCTop 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

GRCCo-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category