Hybrid/Remote GRC Job Trends, Salaries & Related Skills

Governance, Risk Management and Compliance (GRC)
UK > Work from Home

The table below provides summary statistics and salary benchmarking for remote or hybrid work requiring GRC skills. It covers permanent job vacancies from the 6 months leading up to 14 May 2026, with comparisons to the same periods in the previous two years.

	6 months to 14 May 2026	Same period 2025	Same period 2024
Rank	239	365	448
Rank change year-on-year	+126	+83	+35
Permanent jobs citing GRC	182	56	127
As % of all permanent jobs with remote/hybrid work options	0.98%	0.39%	0.39%
As % of the Quality Assurance & Compliance category	6.04%	1.92%	3.03%
Number of salaries quoted	112	34	108
10^th Percentile	£50,000	£58,625	£37,500
25^th Percentile	£57,500	£62,500	£43,438
Median annual salary (50^th Percentile)	£84,930	£73,750	£57,500
Median % change year-on-year	+15.16%	+28.26%	-17.86%
75^th Percentile	£95,000	£85,313	£77,500
90^th Percentile	£110,000	£90,500	£95,750
UK median annual salary	£75,000	£72,500	£65,000
% change year-on-year	+3.45%	+11.54%	-

All Quality Assurance and Compliance Skills
Work from Home

GRC falls under the Quality Assurance and Compliance category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies with remote or hybrid options requiring quality assurance or compliance skills.

Permanent vacancies with a requirement for quality assurance or compliance skills	3,011	2,913	4,195
As % of all permanent jobs with a WFH option	16.27%	20.04%	12.92%
Number of salaries quoted	1,865	1,590	3,244
10^th Percentile	£35,750	£35,000	£34,575
25^th Percentile	£46,500	£46,250	£42,500
Median annual salary (50^th Percentile)	£60,000	£60,000	£57,500
Median % change year-on-year	-	+4.35%	-4.17%
75^th Percentile	£81,250	£75,000	£73,750
90^th Percentile	£95,000	£95,000	£95,000
UK median annual salary	£60,000	£57,500	£52,500
% change year-on-year	+4.35%	+9.52%	-8.70%

GRC
Job Vacancy Trend for Remote/Hybrid Jobs

Historical trend showing the proportion of permanent IT job postings citing GRC and offering remote or hybrid work options relative to all permanent IT jobs advertised.

GRC
Salary Trend for Remote/Hybrid Jobs

Salary distribution trend for jobs with remote/hybrid work options citing GRC.

GRC
Salary Histogram for Remote/Hybrid Jobs

Salary distribution for jobs with remote/hybrid work options citing GRC over the 6 months to 14 May 2026.

GRC salary histogram for jobs with remote/hybrid work options

GRC
Top 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

For the 6 months to 14 May 2026, GRC job roles required the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent jobs with hybrid or remote work options and a requirement for GRC.

1	94 (51.65%)	Cybersecurity
2	87 (47.80%)	ISO/IEC 27001
3	61 (33.52%)	Information Security
4	58 (31.87%)	Risk Management
5	52 (28.57%)	AI
6	46 (25.27%)	NIST
7	43 (23.63%)	PCI DSS
8	42 (23.08%)	Security Architecture
9	41 (22.53%)	Continuous Improvement
10	40 (21.98%)	Cloud Security
11	38 (20.88%)	CISSP
12	36 (19.78%)	Azure
13	35 (19.23%)	CISM
14	32 (17.58%)	CI/CD
14	32 (17.58%)	IT Strategy

15	31 (17.03%)	SDLC
15	31 (17.03%)	Threat Modelling
16	30 (16.48%)	Security Cleared
17	28 (15.38%)	Validation
18	27 (14.84%)	AWS
19	26 (14.29%)	CISA
19	26 (14.29%)	CrowdStrike
19	26 (14.29%)	DevSecOps
19	26 (14.29%)	Palo Alto
19	26 (14.29%)	Security Testing
19	26 (14.29%)	Tenable
20	25 (13.74%)	Decision-Making
20	25 (13.74%)	Regulatory Compliance
21	24 (13.19%)	Application Security
21	24 (13.19%)	Degree

GRC
Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	4 (2.20%)	Totara

Applications
1	7 (3.85%)	Microsoft Excel
2	5 (2.75%)	Microsoft Project
3	1 (0.55%)	Microsoft Office
3	1 (0.55%)	Microsoft PowerPoint
3	1 (0.55%)	MS Visio

Business Applications
1	2 (1.10%)	SAP GRC
1	2 (1.10%)	SAP S/4HANA
2	1 (0.55%)	SAP BPC
2	1 (0.55%)	SAP HCM

Cloud Services
1	36 (19.78%)	Azure
2	27 (14.84%)	AWS
3	24 (13.19%)	Serverless
4	16 (8.79%)	GCP
5	11 (6.04%)	Entra ID
5	11 (6.04%)	Microsoft 365
6	10 (5.49%)	SaaS
7	8 (4.40%)	Azure DevOps
8	7 (3.85%)	Azure Key Vault
8	7 (3.85%)	Cloudflare
8	7 (3.85%)	Vercel
9	6 (3.30%)	Vertex AI
10	5 (2.75%)	Smartsheet
11	4 (2.20%)	Azure Sentinel
12	2 (1.10%)	Cloud Computing
12	2 (1.10%)	Datadog
12	2 (1.10%)	Google Sheets
12	2 (1.10%)	Power Platform
13	1 (0.55%)	Azure Monitor
13	1 (0.55%)	Google Workspace

Communications & Networking
1	19 (10.44%)	Firewall
2	12 (6.59%)	Network Security
3	7 (3.85%)	DMZ
4	4 (2.20%)	VPN
5	1 (0.55%)	Wireless
5	1 (0.55%)	Wireshark

Database & Business Intelligence
1	6 (3.30%)	Semantic Layer
2	2 (1.10%)	Data Warehouse
2	2 (1.10%)	Looker
2	2 (1.10%)	Power BI
3	1 (0.55%)	Tableau

Development Applications
1	24 (13.19%)	Snyk
2	5 (2.75%)	JIRA
3	1 (0.55%)	Burp Suite
3	1 (0.55%)	Metasploit

General
1	66 (36.26%)	Social Skills
2	54 (29.67%)	Finance
3	45 (24.73%)	Inclusion and Diversity
4	31 (17.03%)	Telecoms
5	27 (14.84%)	Public Sector
6	21 (11.54%)	Law
7	18 (9.89%)	Banking
8	15 (8.24%)	Legal
9	14 (7.69%)	Analytical Skills
9	14 (7.69%)	Retail
10	12 (6.59%)	Marketing
11	10 (5.49%)	Influencing Skills
12	8 (4.40%)	Electronics
12	8 (4.40%)	Manufacturing
13	7 (3.85%)	Back Office
13	7 (3.85%)	Financial Institution
13	7 (3.85%)	Local Government
14	4 (2.20%)	Aviation
14	4 (2.20%)	Organisational Skills
15	3 (1.65%)	Advertising

Job Titles
1	33 (18.13%)	Senior
2	32 (17.58%)	Architect
3	30 (16.48%)	Lead
4	28 (15.38%)	Security Architect
5	27 (14.84%)	Consultant
6	26 (14.29%)	Senior Architect
7	24 (13.19%)	Cloud Architect
7	24 (13.19%)	Cloud Security Architect
7	24 (13.19%)	Senior Cloud Architect
7	24 (13.19%)	Senior Security Architect
8	22 (12.09%)	Analyst
8	22 (12.09%)	Security Consultant
9	14 (7.69%)	Security Analyst
10	11 (6.04%)	Head of IT
11	7 (3.85%)	Cybersecurity Analyst
11	7 (3.85%)	Information Analyst
11	7 (3.85%)	Information Security Analyst
11	7 (3.85%)	Risk Analyst
11	7 (3.85%)	Software Engineering Manager
11	7 (3.85%)	Software Manager

Libraries, Frameworks & Software Standards
1	8 (4.40%)	SAP CAF
2	7 (3.85%)	CSS
2	7 (3.85%)	HTML
2	7 (3.85%)	React
3	1 (0.55%)	EDI
3	1 (0.55%)	EDIFACT
3	1 (0.55%)	SAP Fiori

Miscellaneous
1	23 (12.64%)	Data Centre
2	16 (8.79%)	Cloud Native
2	16 (8.79%)	Security Posture
3	15 (8.24%)	Management Information System
4	13 (7.14%)	Onboarding
5	7 (3.85%)	Blog
5	7 (3.85%)	Cloud Security Posture
5	7 (3.85%)	Culture of Ownership
5	7 (3.85%)	Cyber Kill Chain
5	7 (3.85%)	PKI
5	7 (3.85%)	Podcast
6	4 (2.20%)	Cyber Defence
6	4 (2.20%)	e-Learning
6	4 (2.20%)	Learning Management System
6	4 (2.20%)	Mobile App
6	4 (2.20%)	Operational Technology
7	2 (1.10%)	Data Structures
7	2 (1.10%)	NHS
7	2 (1.10%)	Self-Motivation
7	2 (1.10%)	Taxonomies

Operating Systems
1	5 (2.75%)	Windows
2	1 (0.55%)	Android
2	1 (0.55%)	Apple iOS
2	1 (0.55%)	Linux

Processes & Methodologies
1	94 (51.65%)	Cybersecurity
2	61 (33.52%)	Information Security
3	58 (31.87%)	Risk Management
4	52 (28.57%)	AI
5	42 (23.08%)	Security Architecture
6	41 (22.53%)	Continuous Improvement
7	40 (21.98%)	Cloud Security
8	32 (17.58%)	CI/CD
8	32 (17.58%)	IT Strategy
9	31 (17.03%)	SDLC
9	31 (17.03%)	Threat Modelling
10	28 (15.38%)	Validation
11	26 (14.29%)	DevSecOps
11	26 (14.29%)	Security Testing
12	25 (13.74%)	Decision-Making
12	25 (13.74%)	Regulatory Compliance
13	24 (13.19%)	Application Security
14	23 (12.64%)	Roadmaps
14	23 (12.64%)	Technology Strategy
15	22 (12.09%)	Agile

Programming Languages
1	7 (3.85%)	JavaScript
2	6 (3.30%)	Python

Qualifications
1	38 (20.88%)	CISSP
2	35 (19.23%)	CISM
3	30 (16.48%)	Security Cleared
4	26 (14.29%)	CISA
5	24 (13.19%)	Degree
6	18 (9.89%)	SC Cleared
7	16 (8.79%)	CRISC
8	13 (7.14%)	CompTIA Security+
9	10 (5.49%)	ISO 27001 Lead Implementer
10	8 (4.40%)	DV Cleared
11	7 (3.85%)	ISACA
11	7 (3.85%)	PMI Certification
11	7 (3.85%)	SANS
12	6 (3.30%)	PMP
13	5 (2.75%)	CHECK Team Member
13	5 (2.75%)	ISO 27001 Lead Auditor
13	5 (2.75%)	OSCP
14	4 (2.20%)	CHECK Team Leader
14	4 (2.20%)	CREST Certified
15	3 (1.65%)	Cyber Scheme

Quality Assurance & Compliance
1	87 (47.80%)	ISO/IEC 27001
2	46 (25.27%)	NIST
3	43 (23.63%)	PCI DSS
4	21 (11.54%)	GDPR
5	12 (6.59%)	Cyber Essentials
6	11 (6.04%)	NCSC
7	8 (4.40%)	ISO/IEC 42001
7	8 (4.40%)	SOC 2
8	7 (3.85%)	Accessibility
8	7 (3.85%)	JSP 440
8	7 (3.85%)	NIST 800
9	5 (2.75%)	ISO/IEC 27005
10	4 (2.20%)	Cyber Essentials PLUS
11	3 (1.65%)	COBIT
11	3 (1.65%)	Sarbanes-Oxley
12	2 (1.10%)	Actionable Recommendations
12	2 (1.10%)	SEPA
13	1 (0.55%)	ISO 22301
13	1 (0.55%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
13	1 (0.55%)	PMO

System Software
1	24 (13.19%)	Virtual Machines
2	5 (2.75%)	Active Directory
3	1 (0.55%)	IAG

Systems Management
1	8 (4.40%)	RSA Archer
2	7 (3.85%)	Computer Emergency Response Teams
3	2 (1.10%)	Grafana
3	2 (1.10%)	Opsgenie
4	1 (0.55%)	Nessus
4	1 (0.55%)	Nmap
4	1 (0.55%)	Single Sign-On
4	1 (0.55%)	Terraform

Vendors
1	26 (14.29%)	CrowdStrike
1	26 (14.29%)	Palo Alto
1	26 (14.29%)	Tenable
2	18 (9.89%)	Microsoft
3	10 (5.49%)	SAP
4	6 (3.30%)	OpenAI
5	5 (2.75%)	Google
6	4 (2.20%)	Apple
7	2 (1.10%)	GoldenSource
7	2 (1.10%)	PagerDuty
7	2 (1.10%)	Splunk
8	1 (0.55%)	CyberArk
8	1 (0.55%)	OneTrust
8	1 (0.55%)	Qualys
8	1 (0.55%)	ServiceNow

Governance, Risk Management and Compliance (GRC)UK > Work from Home

All Quality Assurance and Compliance SkillsWork from Home

GRCJob Vacancy Trend for Remote/Hybrid Jobs

GRCSalary Trend for Remote/Hybrid Jobs

GRCSalary Histogram for Remote/Hybrid Jobs

GRCTop 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

GRCCo-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category