1 to 25 of 170 Permanent GRC Jobs in England

Governance, Risk & Compliance (GRC) Consultant | 6 Month Contract We are supporting a large public sector organisation within the education and research sector as they strengthen their cyber governance, compliance, and operational resilience capabilities across complex technology environments. This role will support a broad range of governance, risk, and compliance initiatives … including certification activities, cyber risk management, policy development, and security governance across enterprise and research platforms. Responsibilities Support cyber governance, risk, and compliance activities across complex enterprise environments Assist with certification and recertification programmes across recognised security and compliance frameworks Conduct gap assessments and provide practical remediation recommendations Support development ...

Cyber Governance Lead 1-month contract Inside IR35 Remote working SC Clearance advantageous but not essential Cyber Governance Lead - We are seeking an experienced Cyber Governance professional to support a programme of cyber governance, assurance, policy and standards development, and ISO certification readiness activities across a complex enterprise environment. … successful contractor will support delivery across cyber risk management, ISMS documentation, governance reporting, policy and standards development, and cyber service catalogue reform activities. This role requires a strong blend of governance, assurance, stakeholder management, and regulatory compliance experience, with the ability to operate independently and engage effectively with senior stakeholders. ...

Technology Governance Lead (Risk, Compliance & Security) London Hybrid Up to £80,000 plus excellent bens We are looking for a Technology Governance Lead to drive a proactive, secure-by-default, and compliant-by-design culture across our technology organisation. Reporting to the Head of IT Transformation, this role will take … ownership of technology risk, cyber governance, security oversight, and compliance assurance across platforms, delivery teams, and third-party services. This is a strategic and hands-on leadership role focused on improving governance maturity, strengthening resilience, enhancing audit outcomes, and ensuring technology risks are clearly understood, managed, and communicated across ...

Policy & Governance Lead/GRC Analyst Active SC Clearance – required to work on‐site MOD/aerospace programmes. Aerospace and Defence Experience – demonstrable background delivering architecture within MOD, Defence Digital, or UK aerospace environments. This role will be based in Reading with hybrid/custom working options where appropriate. Area … Policy & Governance, GRC/Assurance Purpose of the Role Define, maintain, govern, and assure compliance with the organisation’s ISMS policy framework, standards, and procedures, while supporting audit readiness and control assurance. Key Responsibilities Own and maintain all policies, standards, procedures, and guidelines aligned to ISO 27001. Manage updates, reviews ...

embody: Innovation to solve the hardest problems. Accountability for every result. Integrity always. About The Role As a Senior Security Consultant within the Governance, Risk & Compliance (GRC) practice, you will lead and deliver a broad range of cybersecurity, governance, risk and assurance engagements across both public and private sector organisations. … work closely with client stakeholders at all levels, helping organisations strengthen their security posture, manage cyber risk, improve compliance maturity and implement pragmatic security governance frameworks aligned to business objectives. The successful candidate will possess strong experience across information security governance, risk management, security compliance and assurance activities, with practical ...

GRC Analyst – Information Security London – Hybrid £50,000 - £55,000 + Bonus VIQU has partnered with a leading transport organisation to recruit a GRC Analyst to join their Finance and Information Security team. This is a fantastic opportunity for a GRC Analyst to take ownership of established governance frameworks, policies … and risk processes within a highly regulated environment. The GRC Analyst will play a key role in maintaining compliance, supporting audits, and embedding a strong risk-aware culture across the business. Key Responsibilities of the GRC Analyst: Support and maintain the organisation’s risk management framework, including risk identification, assessment ...

## Head, Governance, Risk and Compliance (Head Security GRC)Applylocations: Londontime type: Full timeposted on: Posted 2 Days Agojob requisition id: JR154The RoleThe Head, GRC is a senior cybersecurity leader responsible for defining and operating the governance, risk and compliance strategy for the organization. This role partners closely with … cyber risk is governed effectively, regulatory obligations are met, and security controls are aligned to business priorities. The role will lead policy and standards governance, cyber risk management, control assurance, audit and regulatory engagement, and third-party risk oversight while building a culture of accountability and continuous improvement.* Lead and ...

GRC Consultant (SC/DV Cleared) - Outside IR35 Role Overview We are seeking experienced Governance, Risk & Compliance (GRC) Consultants with active SC or DV Clearance to support a Defence programme. The successful candidate will provide security governance, risk management, compliance assurance, and accreditation support across secure and complex environments. … role requires strong stakeholder engagement, an understanding of UK Government security standards, and experience operating within defence or national security environments. Key Responsibilities Deliver GRC support across secure government programmes. Conduct risk assessments, security reviews, and compliance audits. Support the development and maintenance of security documentation including: Risk Management & Accreditation ...

Risk Management (IRM) platform. This position involves gathering business requirements, translating them into functional specifications, workflows, and user stories, and driving process standardization and governance adoption across the organization. 1. Requirements Gathering & Stakeholder Workshops Conduct workshops with Risk, Audit, and Compliance stakeholders. Gather and analyze business requirements. Understand: Risk frameworks … Identify → Assess → Respond → Monitor) Control frameworks and indicators Risk assessment models Scoring methodologies and logic 3. Process Design & Optimization Review and re-engineer existing Governance, Risk & Compliance (GRC) processes. Align processes with industry standards and best practices. Improve: Compliance readiness Audit readiness Operational efficiency Governance maturity 4. Functional Implementation Support ...

consultancy projects across a diverse client base. Conduct cyber maturity assessments, risk reviews, and gap analyses to identify areas for improvement. Advise organisations on governance, risk management, compliance, and security best practice. Develop practical security roadmaps and recommendations aligned to business objectives. Support clients with certification and compliance initiatives, including ...

projects that demand innovation, collaboration, and thought leadership . Role – We are seeking an experienced ServiceNow IRM Business Functional Consultant to support a major Governance, Risk, and Compliance (GRC) transformation programme. This is a business-facing role acting as the bridge between Risk, Audit, Compliance, and Technology teams. You will … lead requirements gathering, process design, and functional solution definition across the ServiceNow Integrated Risk Management (IRM) platform, helping organisations strengthen governance, improve compliance, and drive operational efficiency. Key Responsibilities: Requirements Gathering & Business Analysis Facilitate workshops with: Risk Management teams Audit teams Compliance stakeholders Business process owners Analyse and document: Regulatory ...

environments. You will hold a detailed understanding of one or more of the following aspects of cloud security: security architecture, security operations, security engineering, governance, risk and compliance. Requirements Must be a British citizen to meet compliance and security clearance requirements. Bachelor's degree or equivalent practical experience. 10 years ...

environments. You will hold a detailed understanding of one or more of the following aspects of cloud security: security architecture, security operations, security engineering, governance, risk and compliance. Requirements Must be a British citizen to meet compliance and security clearance requirements. Bachelor’s degree or equivalent practical experience. 10 years ...

solution architecture, or technical consultancy role within cybersecurity or technology services. Strong understanding of core cybersecurity domains (e.g. offensive security, defensive operations, cloud security, GRC). Ability to design and communicate solutions clearly to technical and non-technical stakeholders. Familiarity with frameworks such as ISO 27001, NIST, or CIS Controls. ...

service providers into a multi-supplier (SIAM) environment within a Defence programme. The role focuses on translating established security processes, policies, and governance into structured onboarding materials, ensuring that incoming suppliers clearly understand their obligations and are aligned from day one. Working closely with Security Assurance, Incident, and Vulnerability Management … redesigned. The outcome is a consistent, controlled onboarding approach that enables suppliers to operate effectively within the existing security operating model. This is a governance, integration, and enablement role, not a hands‐on operational security or engineering function. Key Responsibilities Supplier Onboarding & Process Integration Develop structured onboarding packs ...

established UK business during a key phase of growth and investment, to recruit a GRC Analyst. This is a role centred around governance, risk management, and compliance, working closely with stakeholders across the business to strengthen frameworks, ensure controls are effective, and support ongoing audit and regulatory requirements. … looking to build a career in GRC, gaining exposure to risk, audit, and compliance within a growing organisation that is investing in its security and governance capability. Apply today with your most up-to-date CV! BH35513 ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem‐solving skills. Excellent oral and written communication skills including concisely communicating status ...

this work, and we are looking for the people who want to build it with us. This role is how we build out our GRC capability across our global client base, including the German speaking accounts where local language is part of doing the work properly. The Work Lex Dinamica … multinationals to government contractors and high growth scale ups, and they come to us for advisory work, DPO support delivered as a service, AI governance, and privacy technology programmes including OneTrust, where we are a certified implementation partner. The GRC Consultant role is how we extend our work into governance ...

and scalable solutions. Skills & Experience We’re looking for someone with strong technical expertise and a passion for security! Here’s what we need: • Governance, Risk & Compliance: Risk-based decisions, adherence to regulatory and internal security standards. • Threat Modelling and Risk Management: Identify threats and mitigations for complex cloud systems. ...

modern, 3-Layer Operating Model. Your primary focus is to govern our outsourced Managed Detection & Response (MDR/SOC) partners, own the internal GRC (Governance, Risk, and Compliance) framework, and ensure data protection standards are met. You will act as the strategic link between external security experts and our internal ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

fine‐tuning techniques Familiarity with distributed computing frameworks (eg Spark) Knowledge of graph neural networks, reinforcement learning, or causal inference Experience with AI governance, model risk management, and regulatory compliance Experience using Pro code and Low code tools such as LangGraph, AutoGen, Semantic Kernal and MS CoPilot Experience ...

number of varying consultancy assignments. Due to the potential variety in assignments your responsibilities will range from developing security architectures, to providing guidance on GRC activities. Other responsibilities will include: Providing security expertise for major system procurements and Agile programmes to ensure secure delivery; Identifying, analysing and evaluating information risks ...

and how to map technical solutions to business value. Ability to work collaboratively with cross‐functional teams and manage multiple projects simultaneously. Experience in GRC (Governance, Risk, and Compliance) is a strong plus. Relevant certifications (e.g., CISSP, CISM, AWS Certified Solutions Architect/Azure Solution Architect Professional/Google Professional ...

fine‐tuning techniques Familiarity with distributed computing frameworks (eg Spark) Knowledge of graph neural networks, reinforcement learning, or causal inference Experience with AI governance, model risk management, and regulatory compliance Experience using Pro code and Low code tools such as LangGraph, AutoGen, Semantic Kernal and MS CoPilot Experience ...