Hybrid/Remote GRC Job Trends, Salaries & Related Skills

Governance, Risk Management and Compliance (GRC)
UK > Work from Home

The table below provides summary statistics and salary benchmarking for remote or hybrid work requiring GRC skills. It covers permanent job vacancies from the 6 months leading up to 30 November 2025, with comparisons to the same periods in the previous two years.

	6 months to 30 Nov 2025	Same period 2024	Same period 2023
Rank	263	347	361
Rank change year-on-year	+84	+14	+186
Permanent jobs citing GRC	110	123	110
As % of all permanent jobs with remote/hybrid work options	0.72%	0.63%	0.53%
As % of the Quality Assurance & Compliance category	4.16%	4.03%	3.43%
Number of salaries quoted	76	77	93
10^th Percentile	£44,375	£50,750	£50,250
25^th Percentile	£49,000	£61,250	£57,500
Median annual salary (50^th Percentile)	£59,250	£69,308	£70,576
Median % change year-on-year	-14.51%	-1.80%	+8.58%
75^th Percentile	£79,375	£87,500	£85,000
90^th Percentile	£92,500	£97,750	£87,250
UK median annual salary	£67,500	£69,308	£70,576
% change year-on-year	-2.61%	-1.80%	+0.82%

All Quality Assurance and Compliance Skills
Work from Home

GRC falls under the Quality Assurance and Compliance category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies with remote or hybrid options requiring quality assurance or compliance skills.

Permanent vacancies with a requirement for quality assurance or compliance skills	2,642	3,051	3,210
As % of all permanent jobs with a WFH option	17.41%	15.67%	15.36%
Number of salaries quoted	1,626	1,679	2,546
10^th Percentile	£34,864	£35,000	£37,000
25^th Percentile	£47,500	£46,250	£47,500
Median annual salary (50^th Percentile)	£62,500	£62,500	£60,000
Median % change year-on-year	-	+4.17%	+4.35%
75^th Percentile	£80,000	£78,500	£78,938
90^th Percentile	£97,500	£96,900	£95,000
UK median annual salary	£57,500	£60,000	£60,000
% change year-on-year	-4.17%	-	+4.35%

GRC
Job Vacancy Trend for Remote/Hybrid Jobs

Historical trend showing the proportion of permanent IT job postings citing GRC and offering remote or hybrid work options relative to all permanent IT jobs advertised.

GRC
Salary Trend for Remote/Hybrid Jobs

Salary distribution trend for jobs with remote/hybrid work options citing GRC.

GRC
Salary Histogram for Remote/Hybrid Jobs

Salary distribution for jobs with remote/hybrid work options citing GRC over the 6 months to 30 November 2025.

GRC salary histogram for jobs with remote/hybrid work options

GRC
Top 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

For the 6 months to 30 November 2025, GRC job roles required the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent jobs with hybrid or remote work options and a requirement for GRC.

1	83 (75.45%)	ISO/IEC 27001
2	71 (64.55%)	Cybersecurity
3	68 (61.82%)	Risk Management
4	60 (54.55%)	NIST
5	54 (49.09%)	CISM
6	53 (48.18%)	CISSP
7	42 (38.18%)	Security Cleared
8	39 (35.45%)	Information Security
9	38 (34.55%)	ISMS
10	34 (30.91%)	SC Cleared
11	33 (30.00%)	ISO 27001 Lead Implementer
12	32 (29.09%)	Continuous Improvement
13	31 (28.18%)	Business Intelligence
14	30 (27.27%)	SAP
15	28 (25.45%)	Collaborative Culture

15	28 (25.45%)	CRISC
16	24 (21.82%)	Digital Marketing
16	24 (21.82%)	Programme Management
16	24 (21.82%)	SAP CAF
17	21 (19.09%)	Azure
18	20 (18.18%)	CISA
18	20 (18.18%)	SOC 2
19	19 (17.27%)	GDPR
20	18 (16.36%)	Incident Response
20	18 (16.36%)	Vulnerability Management
21	16 (14.55%)	AWS
21	16 (14.55%)	Degree
22	15 (13.64%)	Cyber Essentials
22	15 (13.64%)	Firewall
22	15 (13.64%)	Microsoft

GRC
Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	4 (3.64%)	SharePoint
2	2 (1.82%)	Microsoft Exchange

Applications
1	2 (1.82%)	Microsoft Office
2	1 (0.91%)	Microsoft Excel

Business Applications
1	6 (5.45%)	SAP GRC
2	3 (2.73%)	SAP S/4HANA
3	1 (0.91%)	SAP BPC

Cloud Services
1	21 (19.09%)	Azure
2	16 (14.55%)	AWS
3	15 (13.64%)	SaaS
4	9 (8.18%)	GCP
5	6 (5.45%)	Microsoft 365
6	5 (4.55%)	Power Platform
7	4 (3.64%)	Entra ID
7	4 (3.64%)	GitHub
7	4 (3.64%)	GitHub Actions
8	2 (1.82%)	Amazon GuardDuty
8	2 (1.82%)	Azure Sentinel
8	2 (1.82%)	Cloud Computing
8	2 (1.82%)	IaaS
8	2 (1.82%)	PaaS
9	1 (0.91%)	Google Workspace
9	1 (0.91%)	Mimecast

Communications & Networking
1	15 (13.64%)	Firewall
2	10 (9.09%)	Network Security
3	6 (5.45%)	VPN
4	5 (4.55%)	Intrusion Detection
4	5 (4.55%)	TCP/IP
5	3 (2.73%)	DMZ
5	3 (2.73%)	HTTP
5	3 (2.73%)	LAN
5	3 (2.73%)	WAN
6	2 (1.82%)	DHCP
6	2 (1.82%)	DNS
7	1 (0.91%)	Cisco ASA

Database & Business Intelligence
1	5 (4.55%)	Power BI
1	5 (4.55%)	Tableau

Development Applications
1	4 (3.64%)	TeamCity
2	3 (2.73%)	Snyk

General
1	58 (52.73%)	Social Skills
2	51 (46.36%)	Finance
3	42 (38.18%)	Public Sector
4	25 (22.73%)	Telecoms
5	24 (21.82%)	Electronics
5	24 (21.82%)	Manufacturing
5	24 (21.82%)	Marketing
6	19 (17.27%)	Analytical Skills
7	11 (10.00%)	Banking
8	9 (8.18%)	Legal
9	8 (7.27%)	Influencing Skills
10	6 (5.45%)	Financial Institution
10	6 (5.45%)	Law
11	5 (4.55%)	Back Office
11	5 (4.55%)	Inclusion and Diversity
11	5 (4.55%)	Retail
12	3 (2.73%)	Organisational Skills
13	2 (1.82%)	Advertising
14	1 (0.91%)	Games
14	1 (0.91%)	Presentation Skills

Job Titles
1	45 (40.91%)	Consultant
2	37 (33.64%)	Security Consultant
3	12 (10.91%)	Analyst
4	11 (10.00%)	Senior
5	10 (9.09%)	Security Engineer
6	9 (8.18%)	Security Manager
6	9 (8.18%)	Security Specialist
7	7 (6.36%)	Cloud Engineer
8	6 (5.45%)	Cloud Security Engineer
8	6 (5.45%)	SAP Consultant
8	6 (5.45%)	Security Analyst
9	5 (4.55%)	Cybersecurity Consultant
9	5 (4.55%)	Cybersecurity Specialist
9	5 (4.55%)	Head of IT
9	5 (4.55%)	Senior Consultant
10	4 (3.64%)	Automation Engineer
10	4 (3.64%)	Cloud Automation Engineer
10	4 (3.64%)	Information Security Manager
10	4 (3.64%)	IT Analyst
11	3 (2.73%)	Information Manager

Libraries, Frameworks & Software Standards
1	24 (21.82%)	SAP CAF
2	3 (2.73%)	SAP Basis
2	3 (2.73%)	SAP Fiori
3	2 (1.82%)	.NET
3	2 (1.82%)	SLSA

Miscellaneous
1	16 (14.55%)	Security Posture
2	15 (13.64%)	Cloud Native
3	10 (9.09%)	Management Information System
4	8 (7.27%)	Cloud Security Posture
5	7 (6.36%)	Blog
6	6 (5.45%)	Analytical Mindset
6	6 (5.45%)	Taxonomies
7	5 (4.55%)	Public Cloud
8	3 (2.73%)	Cyber Kill Chain
8	3 (2.73%)	Driving Licence
8	3 (2.73%)	PKI
8	3 (2.73%)	Private Cloud
9	2 (1.82%)	Distributed Systems
9	2 (1.82%)	Onboarding
9	2 (1.82%)	Replication
10	1 (0.91%)	Cyber Threat
10	1 (0.91%)	Enterprise Software
10	1 (0.91%)	Operational Technology
10	1 (0.91%)	PMI
10	1 (0.91%)	Security Operations Centre

Operating Systems
1	4 (3.64%)	Windows
1	4 (3.64%)	Windows Server

Processes & Methodologies
1	71 (64.55%)	Cybersecurity
2	68 (61.82%)	Risk Management
3	39 (35.45%)	Information Security
4	38 (34.55%)	ISMS
5	32 (29.09%)	Continuous Improvement
6	31 (28.18%)	Business Intelligence
7	28 (25.45%)	Collaborative Culture
8	24 (21.82%)	Digital Marketing
8	24 (21.82%)	Programme Management
9	18 (16.36%)	Incident Response
9	18 (16.36%)	Vulnerability Management
10	14 (12.73%)	Cloud Security
11	13 (11.82%)	Decision-Making
11	13 (11.82%)	Security Architecture
12	12 (10.91%)	Problem-Solving
12	12 (10.91%)	Stakeholder Engagement
13	10 (9.09%)	CI/CD
13	10 (9.09%)	Risk Assessment
13	10 (9.09%)	Security Operations
14	9 (8.18%)	Security Management

Programming Languages
1	5 (4.55%)	Bash
1	5 (4.55%)	Python
2	4 (3.64%)	Go
3	2 (1.82%)	Bicep
4	1 (0.91%)	PowerShell

Qualifications
1	54 (49.09%)	CISM
2	53 (48.18%)	CISSP
3	42 (38.18%)	Security Cleared
4	34 (30.91%)	SC Cleared
5	33 (30.00%)	ISO 27001 Lead Implementer
6	28 (25.45%)	CRISC
7	20 (18.18%)	CISA
8	16 (14.55%)	Degree
9	14 (12.73%)	ISO 27001 Lead Auditor
10	7 (6.36%)	DV Cleared
11	6 (5.45%)	Master's Degree
12	5 (4.55%)	CISMP
13	4 (3.64%)	AWS Certification
14	3 (2.73%)	NVQ Level 3
14	3 (2.73%)	OSCP
15	2 (1.82%)	(ISC)2 CCSP
15	2 (1.82%)	CESG Certified Professional
15	2 (1.82%)	CHECK Team Leader
15	2 (1.82%)	CHECK Team Member
15	2 (1.82%)	CompTIA Security+

Quality Assurance & Compliance
1	83 (75.45%)	ISO/IEC 27001
2	60 (54.55%)	NIST
3	20 (18.18%)	SOC 2
4	19 (17.27%)	GDPR
5	15 (13.64%)	Cyber Essentials
5	15 (13.64%)	PCI DSS
6	13 (11.82%)	NIST 800
7	12 (10.91%)	NCSC
8	8 (7.27%)	Cyber Essentials PLUS
9	7 (6.36%)	JSP 440
10	6 (5.45%)	COBIT
10	6 (5.45%)	ISO/IEC 42001
10	6 (5.45%)	SOC 1
11	5 (4.55%)	Data Quality
11	5 (4.55%)	ITGC
12	4 (3.64%)	ISO 22301
12	4 (3.64%)	ISO 9001
13	3 (2.73%)	ISO 14001
13	3 (2.73%)	ISO/IEC 27005
13	3 (2.73%)	NEBOSH

System Software
1	1 (0.91%)	IAG

Systems Management
1	7 (6.36%)	RSA Archer
2	6 (5.45%)	Terraform
3	4 (3.64%)	Cilium
3	4 (3.64%)	Kubernetes
4	3 (2.73%)	Single Sign-On
5	2 (1.82%)	Microsoft Intune

Vendors
1	30 (27.27%)	SAP
2	15 (13.64%)	Microsoft
3	4 (3.64%)	Google
4	3 (2.73%)	Checkmarx
4	3 (2.73%)	Palo Alto
4	3 (2.73%)	Qualys
4	3 (2.73%)	Salesforce
5	2 (1.82%)	ServiceNow
5	2 (1.82%)	Tenable
6	1 (0.91%)	Atlassian
6	1 (0.91%)	Cisco
6	1 (0.91%)	Darktrace
6	1 (0.91%)	Fortinet

Governance, Risk Management and Compliance (GRC)UK > Work from Home

All Quality Assurance and Compliance SkillsWork from Home

GRCJob Vacancy Trend for Remote/Hybrid Jobs

GRCSalary Trend for Remote/Hybrid Jobs

GRCSalary Histogram for Remote/Hybrid Jobs

GRCTop 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

GRCCo-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category