22 of 22 Contract GRC Jobs in the UK excluding London

Security Consultant – GRC (Governance, Risk & Compliance) Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE) Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.This is … a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries. Key … Responsibilities Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out. Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security. Translate complex security and compliance requirements into actionable business solutions. Build trusted relationships with clients at both technical and senior management levels. Skills More ❯

Are you a governance leader who thrives at the intersection of information security, compliance, and organisational resilience? We're looking for an experienced Senior Security Governance Manager to drive our Information Governance, Cyber Security, and Quality frameworks to new heights. This is a high-impact role where you'll shape the strategic direction of security governance across the business, ensuring … compliance with UK, NHS, and international regulations - while empowering teams to work securely and confidently in a complex digital environment. What You'll Be Responsible For Information Governance Develop and execute the organisation's Information Governance (IG) strategy in line with UK, NHS, and international data protection frameworks. Maintain governance policies and key artefacts such as DPIAs, Data Processing Agreements … and support independent audit processes. Monitor compliance across business units and lead corrective actions where required. Cyber Security Lead the implementation and maintenance of Cyber Security policies, ensuring robust governance across all business areas. Manage the ISO 27001 certification lifecycle - including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. More ❯

willing to work at customer premises, sometimes requiring some degree of travel. Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

willing to work at customer premises, sometimes requiring some degree of travel. Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

focused on assessing and managing third-party risks. The role involves conducting supplier due diligence, reviewing compliance declarations, and supporting audit readiness across multiple frameworks. Reporting to Head of GRC, this is a FTC role with hybrid working in Manchester Client Details A major UK-based technology and infrastructure provider offering connectivity, cloud, and security services. The organisation operates across More ❯

of our client, We are seeking an experienced Senior Information Security Analyst to provide immediate support to their Information Security team. This hybrid role combines technical security analysis with governance, risk, and compliance (GRC) activities, offering a unique opportunity to influence and maintain the organisation’s security posture. About the Role: The successful candidate will assess risks, review supplier and … This is a hands-on delivery role requiring someone who can work independently, make sound judgments, and communicate effectively with both technical and non-technical stakeholders. Key Responsibilities: Security Governance & Risk Conduct security risk assessments for systems, projects, and suppliers, documenting findings consistently. Review, respond to, and attest security questionnaires and tender submissions. Support and track remediation actions arising from … protection. Promote good security practices across the organisation. Support incident briefings and reporting to senior stakeholders. Required Skills and Experience: 5+ years in Information Security roles, combining technical and GRC activities. Strong understanding of cloud and network security (Microsoft M365, Azure, Defender, DLP, Conditional Access preferred). Experience reviewing security questionnaires, tenders, and supplier assurance evidence. Knowledge of risk assessment More ❯

skills, experience + tasks will include: ServiceNow Architect with TSOM (Telecoms Service Operations Management) implementation projects. Design + implementation of ServiceNow modules including: TSOM, ITSM, ITOM, ITAM, HRSD, CSM, GRC, SecOps + custom applications. Designing + implementing CMDB and Discovery. Proven expertise in ServiceNow integrations involving: REST, SOAP, APIs, and MID Servers. ServiceNow scripting (JavaScript, Glide, Flow Designer) and ServiceNow More ❯

GRC Consultant - MOD DV Location: Farnborough or Cambridgeshire Type: Hybrid (3 days on-site) IR Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service. Have an excellent More ❯

Working Our client are seeking an experienced Information Security Analyst to provide immediate support to the Information Security team. This role is a hybrid of technical security analysis and governance, risk, and compliance (GRC)activities. The successful candidate will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident … This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical and non-technical stakeholders. Key Responsibilities Security Governance & Risk Technical Security Oversight Supplier and Third-Party Security Assurance Advisory and Awareness Desirable Relevant certifications such as CISSP, CISM, CRISC, CEH, CompTIA Security+, or equivalent experience. Experience working in More ❯

Role Overview Our client is seeking an experienced, hands on Senior Information Security Analyst to support both their technical security work and governance, risk and compliance (GRC). You will assess risks, review supplier and project security, respond to security questionnaires and tenders, support incident investigations, and help maintain compliance with Cyber Essentials Plus, ISO 27001, DSPT and GDPR. Responsibilities … to policy updates. Provide clear security advice to projects and senior stakeholders. What you'll need to succeed Proven experience in information security, with a blend of technical and GRC responsibilities. Strong understanding of cloud and network security, ideally within Microsoft ecosystems (e.g., Azure, M365, Defender suite, DLP, Conditional Access). Skilled in evaluating supplier security through questionnaires, procurement documents More ❯

to ensure alignment of requirements and deliverables Track activity progress, manage risks, and implement risk mitigation strategies to ensure successful outcomes Drive standardisation of threat intelligence protocols, tools, and governance across the region Partner with technology, compliance, and risk management teams to ensure compliance with regulatory and legal requirements in each jurisdiction Host and manage regular global meetings (e.g., bi … Microsoft Teams, Outlook (for meeting management & scheduling), SharePoint, OneDrive,Miro/MURAL Reporting & Analytics: Power BI, Tableau, advanced Excel; strong ability to produce quarterly, annual, and executive- level reports. Governance & Compliance: ServiceNow, Archer GRC, or similar platforms Strong report-writing and presentation skills, with attention to detail and executive-level clarity Strong analytical and problem-solving abilities Business level fluency More ❯

security, and risk management within a complex banking and financial services environment. You will be responsible for managing and delivering large-scale audits, influencing multiple stakeholders, and ensuring robust governance and risk frameworks are in place. Key Responsibilities Lead and deliver complex technology and cyber audits, ensuring timely completion and high-quality outcomes. Assess and strengthen risk management processes, controls … and compliance frameworks. Influence and collaborate with cross-functional teams, project managers, and senior stakeholders. Provide clear, concise reporting and recommendations to executive-level audiences. Drive governance, change management, and benefits realisation across projects. Translate complex technical issues into simple, actionable insights for business leaders. Knowledge & Experience Strong knowledge of internal audit processes , with a focus on technology and cyber … audits on time. Extensive experience in banking environments and cybersecurity projects . Strong stakeholder management, with the ability to influence and communicate at all levels. Demonstrated success in project governance, change management, and process improvement. Qualifications Degree in a technology-related discipline (e.g. BSc Computer Science ). Professional certifications such as CISA, CISM or equivalent (preferred). Additional audit certifications More ❯

purpose We are seeking an experienced Senior Information Security Analyst to provide immediate support to the Information Security team. This role is a hybrid of technical security analysis and governance, risk, and compliance (GRC)activities. The successful candidate will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident More ❯

purpose We are seeking an experienced Senior Information Security Analyst to provide immediate support to the Information Security team. This role is a hybrid of technical security analysis and governance, risk, and compliance (GRC)activities. The successful candidate will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident More ❯

purpose We are seeking an experienced Senior Information Security Analyst to provide immediate support to the Information Security team. This role is a hybrid of technical security analysis and governance, risk, and compliance (GRC)activities. The successful candidate will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident More ❯

Information Security Analyst | Hybrid | Contract | Northampton My client is looking for an Information Security Analyst/GRC Analyst to be a part of their growing security team. The successful candidate will play a pivotal role in ensuring compliance with data protection regulations, supporting the Information Security Management System ISMS, and maintaining robust governance, risk, and compliance GRC processes. Key Responsibilities … to Subject Access Requests SARs in accordance with GDPR timelines and procedures. Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution. Support the wider GRC and Information Security team in data protection and risk management activities. Help maintain the Information Security Management System ISMS Provide expert advice on GDPR compliance and data subject rights. Provide … expert guidance on data classification, retention, and information governance best practices. Information Security Analyst Experience/Technology: Proven experience in GRC and Information security. Extensive expertise of GDPR, SAR, and Right to Be Forgotten requirements. Hands-on experience with Microsoft Purview or other data discovery and governance tools are desirable but not necessary. Experience running user awareness campaigns. Good communication More ❯

governance. Required Skills: Proven experience in business/systems analysis, especially in banking, procurement, or third-party risk management. Strong background in implementing SaaS platforms, ideally ProcessUnity or similar GRC/TPRM tools. Familiarity with SaaS and cloud-based applications (Azure/AWS). Excellent understanding of technical and non-functional requirements like performance, security, and scalability. Experience in interface … specification and integration design, including APIs and data mapping. Outstanding stakeholder management and communication skills. Preferred Skills: Knowledge of GRC platforms and third-party risk workflows. Experience with procurement systems (e.g., Coupa, Ariba, SAP). Proficiency in JIRA, Confluence, Visio, and SQL. Exposure to Agile and Waterfall methodologies. Education: Bachelor's degree in Information Systems, Business Administration, Supply Chain Management More ❯

/day (Outside IR35) ServiceNow Architect needed for a 6 Month Contract. TSOM (Telecom Service & Operations Management) project experience with ITSM i.e other modules (TSOM, ITOM, ITAM, HRSD, CSM, GRC, SecOps). A chance to work with a global IT Consultancy on a ServiceNow project for an external client. Hybrid working - working 2-3 days/week remotely from home … skills, experience + tasks will include: Experienced needed TSOM (Telecom Service & Operations Management) implementation project toLead the design and implementation of ServiceNow modules, including ITSM, ITOM, ITAM, HRSD, CSM, GRC, SecOps and custom applications. Strong experience ServiceNow ITSM and other modules i.e (TSOM, ITOM, ITAM, HRSD, CSM, GRC, SecOps). Experience designing and implementing CMDB and Discovery. Proven expertise in More ❯

Role Overview Our client is seeking an experienced, hands on Senior Information Security Analyst to support both their technical security work and governance, risk and compliance (GRC). You will assess risks, review supplier and project security, respond to security questionnaires and tenders, support incident investigations, and help maintain compliance with Cyber Essentials Plus, ISO 27001, DSPT click apply for More ❯

GRC Consultant - MOD DV Location: Farnborough or Cambridgeshire Type: Hybrid (3 days on-site) IR Status: Inside Rate: £500 - £600 Lenghth: Initial 6 months, scope for extension Must have Active MOD DV Clearance In this role, you'll be: Providing the Secure by Design risk and security assurance function within MOD as part of a managed service click apply for More ❯

stories, and maintaining the functional integrity of the platform and associated processes. Key Responsibilities- Apply your expertise in one or more ServiceNow products, with familiarity in ITSM, Secops, RiskOps, GRC and HRSD being advantageous. Facilitate customer workshops and lead project demonstrations using the ServiceNow platform. Develop clear and actionable customer requirements (user stories), including scripting and configuration across various platform More ❯

guides and documentation Work with the Head of People Systems to support the coordination and drive automation of People Systems and process improvements Ensure that you adhere to the Governance, Risk & Compliance (GRC) obligations for your role & complete all mandatory compliance training assigned to you The ideal candidate will: Have 5+ years of hands-on Workday experience including implementation, Security More ❯