19 of 19 DemandTrendPermanent GRC Jobs in Berkshire

you possess the following?: Proven related experience in cybersecurity risk management in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯

providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management, and regulatory compliance. Proficiency with security monitoring tools and incident management processes. Excellent analytical, communication, and leadership skills. Desirable Knowledge of GDPR, NIST, or other security frameworks. Experience More ❯

and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber Risk Management principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯

protection frameworks and global privacy regulations (e.g., GDPR,CCPA). Professional certifications such as from the International Compliance Association (ICA), or other relevant credentials preferred. Technical : Experience with compliance GRC, DPIA, ROPA and privacy management technologies and automation tools.Strong project management skills with experience leading cross-functional initiatives. Team : Strong communication and influencing skills, capable of working with senior leaders More ❯

resilience and enable growth. What You’ll Do Advise executives on actionable cyber strategies to support digital transformation Shape and deliver cyber transformation programmes aligned with organisational objectives Design governance and operational models to enhance cyber maturity and regulatory readiness Assess and define risk-based roadmaps that embed cyber security into business operations Work across a range of industries and … of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication skills – written and verbal – with the ability to present to both technical and business stakeholders Consulting: Proven project delivery using Agile and Waterfall More ❯

the need for Sponsorship We're looking for a Compliance Manager to support and evolve the compliance function for a telecoms organisation based in Theale. Reporting to the Senior Governance, Risk & Compliance Counsel, you'll lead the development and implementation of compliance programs that mitigate legal and regulatory risks while embedding a culture of ethical and operational integrity. Key Responsibilities More ❯

future. We use data to help clients become more efficient, increase profitability and give more customers an amazing experience. Want to be part of it? Reporting to the Senior Governance, Risk & Compliance Officer, the Information Security Officer will assist in strengthening the organisation's security posture within a large, complex, and fast-paced environment. This role supports the development and … implementation of GRC policies, risk management frameworks, and control processes to ensure the confidentiality, integrity, and availability of Keyloop's information assets. The Information Security Officer will work cross-functionally with stakeholders across diverse teams and departments to embed strong information security practices throughout the business. The role also includes identifying and tracking risks within the supply chain and supporting … the organisation's broader information security governance, risk, and compliance efforts. A critical part of this role is helping to promote a strong risk-aware culture and embedding positive security behaviours across the organisation. Role & Responsibility : The job holder will be responsible for assisting and supporting in a range of activities across the Governance, Risk and Compliance function. The job More ❯

for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define and shape what governance and risk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third … years in roles covering risk management, architecture, engineering, or vulnerability management. Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow. For more details, please reach out to Mary Pearson on - . Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and More ❯

implementation of data classification methodologies to ensure appropriate protection based on sensitivity and importance. The role will be based in Reading and will report directly to the Head of Governance, Risk and Compliance, working to deliver the company's goals for a fit-for-purpose critical asset and classification framework. This is a role that requires independence, a proactive approach … risk management practices. Desirable Technical Skills & Qualifications: Industry Certifications: Certifications such as CISSP, CISM, or CISA. Key Relationships & Interactions: CISO direct reports: Security Operations Manager, Security Architecture Manager, Security Governance Manager, Cyber Security Programme Manager, Cyber Resilience Manager CIO and CIO Direct Reports: Operational Technology, Enterprise Architects, PMO and Programme Delivery, Business Change and Engagement Key Business Stakeholders Service Owners More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure rollout of … required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability … ready to step up, guide analysts, and model high-integrity InfoSec practice What you’ll be doing: GRC ownership: maintain ISO27001 and SOC2 certifications, policies, and the Information Security Management System Third-party risk management: oversee supplier assessments, support junior analysts, and guide reviews via Panorays Security awareness & training: manage phishing simulations and content using Proofpoint Security architecture reviews: support More ❯

various tools and activities. Manage and improve Three's Security Exception process. Work effectively with Enterprise risk and compliance functions to escalate enterprise-level Technology and Security risks. Operate GRC tools for Risk Management to record, track, and monitor risks and controls. Support ongoing education and awareness activities related to Security policies, Risk management frameworks, and governance across the company. More ❯

Job Title: Security Governance Lead – NIST & Archer Expertise Location: London About the Role: Albany Beck is seeking a highly skilled Security Governance Lead to support a key financial services client in advancing its information security governance capabilities. This role requires deep expertise in NIST frameworks and Archer GRC, as well as strong leadership in centralising security policy management, controls, and … compliance operations. Key Responsibilities: Collaborate with the Executive Director of Security Governance to maintain and evolve the client’s information security policies, standards, and procedures in alignment with the organization’s master policy. Lead the centralisation, documentation, and continuous improvement of a unified controls inventory, including clear assignment of control ownership and alignment of roles and responsibilities. Maintain the service … on agreed security metrics, such as training completion rates and awareness initiatives. Coordinate the collection of evidence to support internal and external regulatory attestations and compliance reviews. Drive continuous governance improvements through structured policy lifecycle management and stakeholder engagement. Required Experience and Skills: Proven experience in a security governance or risk management leadership role within the financial services or consulting More ❯

Cyber Strategy Manager to lead the design and execution of cyber programmes for complex, large-scale clients. You’ll work directly with C-level stakeholders, shaping cyber operating models, governance structures, and transformation initiatives. Key Responsibilities Own end-to-end delivery of cyber strategy and transformation engagements Define and execute security roadmaps, operating models, and risk frameworks Lead teams delivering … GRC, cyber maturity, and compliance workstreams Communicate with client execs (CISO, CTO, Audit) and manage internal delivery teams Contribute to business development, team mentorship, and capability growth What We’re Looking For 5+ years in cybersecurity or cyber advisory Experience leading cyber transformation in a consulting or enterprise environment Deep understanding of frameworks: NIST, ISO27001, GDPR, NIS2, CAF Track record More ❯

with AGILE techniques, preferably tools: Atlassian/Jira Proficiency in using security assessment tools and techniques Understanding of legal and regulatory obligations related to information security. Experience working with Governance, Risk and Compliance (GRC) tools (preferred: OneTrust) Risk Management Skills: • Identifying potential security vulnerabilities, risks and their potential impact to the organization • Risk analysis and mitigation of potential vulnerabilities • Applying More ❯

and internal policies across multiple jurisdictions. You will implement compliance programs, monitor adherence, provide risk-based legal advice, and help shape a compliance-focused culture. Key Accountabilities: Compliance and Governance Ensure the organisation adheres to corporate governance standards, codes of conduct and relevant laws across all jurisdictions. Monitor regulatory developments and interpret their relevance and impact on the business, providing … not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and manage internal reporting mechanisms by liaising with internal Global Risk and Compliance (GRC) function. Global Regulatory Compliance Ensure compliance with international legal and regulatory frameworks (e.g. GDPR, FCPA, local employment laws). Liaise with external counsel where jurisdiction-specific advice is needed with More ❯

We are seeking a detail-oriented and proactive GRC Analyst . This … role is pivotal in safeguarding the organisation’s reputation and ensuring regulatory compliance. You will work closely with process owners, auditors, and stakeholders to analyse, monitor, and address risk management and compliance issues, with a strong alignment to the Group Head of Audit. Key Responsibilities Administer and maintain ISO 27001 and ISO 22301 compliance programs. Oversee and configure the GRC … providers. Conduct risk and vulnerability assessments, compliance reviews, and audits. Support and manage ISO 27001, ISO 22301, and PCI audits. Maintain a central repository for audit evidence. Develop and enhance the GRC framework in line with industry best practices. Collaborate with cross-functional teams to identify and mitigate IT and business risks. Own and manage the IT Risk Register and More ❯

impact. Create a phased ESG framework that aligns with Helix’s core services, operational structure, and risk profile. Identify KPIs and reporting obligations across environmental performance, social value, and governance maturity. Partner with procurement, IT, HR, and client delivery functions to embed sustainable practices in operations and supply chain. Coordinate with senior leadership and external advisors to establish board-level … impact. Create a phased ESG framework that aligns with Helix’s core services, operational structure, and risk profile. Identify KPIs and reporting obligations across environmental performance, social value, and governance maturity. Partner with procurement, IT, HR, and client delivery functions to embed sustainable practices in operations and supply chain. Coordinate with senior leadership and external advisors to establish board-level … and stakeholder engagement skills. Highly organised with attention to detail. Desirable Certified Internal or Lead Auditor in ISO27001, 9001, 14001, or 45001. NEBOSH or IEMA qualifications. Experience in SaaS, GRC, property compliance, or similarly regulated sectors. Familiarity with compliance platforms (e.g. ISMS.online, Q-Pulse, etc.) Soft Skills Strong communication and problem-solving ability: a proactive, solution-focused approach to diagnosing More ❯

Manager Reading - Hybrid working Permanent Are you passionate about embedding a culture of compliance and integrity across an organisation? We're looking for a Compliance Manager to join our Governance, Risk, and Compliance (GRC) function. Reporting to the Lead GRC, you'll play a key role in shaping and evolving our compliance framework while ensuring the business operates in line More ❯

key focus on providing independent oversight and assurance across a major global finance transformation programme. We’re looking to speak with professionals who specialise in programme assurance and change governance - those who can ensure that large-scale change initiatives meet the highest standards of control, risk management, and compliance. This role will focus on ensuring that the right controls, frameworks … effectively across finance-impacting initiatives. ABOUT THE ROLE: Provide independent oversight and assurance over the IT elements of a global finance transformation programme, ensuring adherence to change control and governance frameworks. Monitor, test, and report on programme compliance with internal controls, highlighting control gaps or areas of non-compliance. Support the design and embedding of sustainable IT change control processes … plans. Collaborate with internal and external auditors as needed, providing evidence and insight into programme assurance activity. ABOUT THE PERSON: Experienced in project assurance, IT controls assurance, or programme governance – ideally within large, complex organisations. Strong understanding of change control frameworks - ICFR/SOX compliance would be advantageous. Able to interpret and apply policy and regulatory standards within a programme More ❯