1 to 25 of 41 Permanent GRC Jobs in London

purpose Implementing Information and Cybersecurity outcomes across a diverse portfolio of S&R project offerings Advising clients across cyber transformation, security strategy, governance, operating model, risk & compliance, maturity assessments, resilience and architecture Conducting threat modelling, impact analysis, architecture and assurance reviews, defining appropriate remediation actions Supporting implementation of cybersecurity controls ...

languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge of AI security risks and frameworks (e.g. ISO 42001). Security qualifications or certifications ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

firm’s enterprise application environment, comprising centrally governed, firmwide systems that support legal service delivery, financial and matter management, document and information governance, client intake and risk compliance, knowledge and collaboration, talent operations, and enterprise reporting. The role focuses on ensuring the availability, security, performance, and integration stability of these ...

security risk assessment experience (AWS experience a must) Familiarity with ISO 27001, NIST, SOC 2, PCI-DSS Comfortable engaging technical and non-technical stakeholders GRC tooling experience, consulting background, CISM/CRISC/CISSP This is an URGENT role so please apply ASAP. ...

Position: GRC Analyst - Cyber Security Type: Permanent Location: Remote, UK-based Salary: £50-60K We're seeking a GRC Analyst to strengthen pour client's governance, risk and compliance capability. The organisation is committed to maintaining robust security standards and regulatory compliance across its operations. This is a fully … remote role offering real visibility and the opportunity to influence security maturity across a diverse environment. The Role As a Cyber Security GRC Analyst, you will support and enhance the organisation's security governance framework, risk management processes, and compliance activities. Working closely with IT, security and business stakeholders ...

Were supporting a major UK bank in hiring a Senior IT & Cyber Risk, Controls & Audit Specialist to join their Technology GRC function within 1LOD. This is a high impact role for someone who can own and manage audit engagements, strengthen the IT & cyber control environment, and lead across SOX ITGCs ...

reports that provide senior stakeholders with meaningful insight into the organisation's third-party cyber risk posture. Embed third-party security controls into vendor governance processes, working closely with Procurement, Legal, Technology, and Risk. Monitor compliance with industry frameworks such as CIS Controls, NIST, GDPR, and sector-specific guidance. Support … best practice. Provide data, commentary, and risk metrics for divisional or organisational IT risk reporting. Escalate material risks or emerging issues to the Cyber Governance Manager and BISO leadership when required. Performance Objectives Build a comprehensive understanding of the organisation's supplier landscape and existing vendor governance controls, taking full ...

About the Company Headquartered in Denmark and backed by a leading European private equity investor, our partner is a fast-growing European GRC (Governance, Risk & Compliance) SaaS company. Trusted by Tier 1 clients across highly regulated industries, they are experiencing a phase of significant and exciting growth. With strong recurring … revenues and rapidly increasing enterprise contract values, governance, information security, and commercial discipline are central to long-term value creation. The Role Reporting directly to the Head of Operations, the Contracts & Compliance Manager will take ownership of the contracts and compliance function within a growing, regulated environment. This ...

governance. • Apply secure API gateway and WAF patterns. • Work with distributed system patterns, including event brokers and asynchronous messaging. • Maintain security posture: CVE remediation, GRC controls, scanning pipelines. Your Skills • Deep knowledge of Kubernetes, Rancher, GitOps, Linux, and cloud networking. • Understanding of API gateway and WAF patterns. • Experience with distributed ...

teams * Engage with internal audit and risk stakeholders where required What they are looking for Experience in technology risk, IT risk, IT controls or GRC * Exposure to regulated environments, financial services preferred but not essential * Strong stakeholder management and influencing skills * Comfortable working without formal authority * Practical mindset focused ...

Title: Risk & AI Governance Consultant Location: Remote Basic Salary: £75,000 - £90,000 Summary: An exciting opportunity to join a leading enterprise business as an AI Governance Consultant. This role will focus on ensuring AI systems are developed and deployed responsibly, ethically, and in line with regulatory and organisational standards. … play a key part in embedding governance frameworks, managing risks, and supporting compliance with evolving AI regulations across the UK and EU. Objectives: Drive the development and implementation of AI governance and risk frameworks. Ensure compliance with regulatory, ethical, and internal governance standards. Provide guidance to technical and non-technical ...

management Must have legal right to work as an independent contractor in Ireland or the United Kingdom Preferred Experience selling cybersecurity, compliance, audit, GRC, or infrastructure tools Familiarity with SOC 2, ISO 27001, or security frameworks Experience selling to startups or high-growth tech companies Growth Opportunity Clear pathway ...

resolution. Monitor performance, optimise systems, and coordinate upgrades and patches. Maintain vendor relationships to ensure ongoing support coverage. Own documentation, configurations, and support procedures. Governance, Risk & Compliance Implement best practices across development, testing, and deployment. Ensure adherence to regulatory, security, and audit requirements. Support business continuity and disaster recovery planning. ...

observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance and cost controls Experience & Skills This ...

safe by: Implementing evaluation frameworks for accuracy, coverage interpretation, decision consistency and bias Designing monitoring, logging and tracing suitable for regulated insurance environments Applying governance, risk and compliance principles (eg audit trails, explainability, access controls) Supporting controlled releases and operational handover into insurer IT and operations teams Ensuring reliability, reproducibility ...

Security Architect with 10+ years of experience to drive the security strategy for major global clients. You will bridge the gap between high-level governance (ISO27001, GRC) and technical cloud implementation. Key Responsibilities: Design & Strategy: Define security architectures, infrastructure cost models, and roadmaps. Technical Leadership: Oversee requirements for Firewalls, SIEM ...

Were supporting a major UK bank in hiring a Senior IT & Cyber Risk, Controls & Audit Specialist to join their Technology GRC function within 1LOD. This is a high impact role for someone who can own and manage audit engagements, strengthen the IT & cyber control environment, and lead across SOX ITGCs ...

safeguard Experian's assets. You will automate the review of security controls by reducing manual effort and increasing assessment efficiency. You will blend cybersecurity governance, risk and compliance (GRC) and automation engineering to improve evidence collection and control validation crucial for supporting the security organization's control assurance program. … integrations and scripting (e.g. Python, PowerShell, JavaScript). Experience with IT Service Management, DevOps, Identity and access management, ERP systems (e.g., SAP, Oracle) and GRC tools. Experience leveraging automation, data driven testing techniques and generative AI to gain efficiency in control assurance. Additional Information Benefits package includes: Great compensation package ...

information and cyber security across the organisation Manage and optimise third-party security relationships , including suppliers, MSPs, and assurance partners Oversee security governance, risk management, and compliance activities Provide leadership and direction to a small internal team , supported by external vendors Engage with senior stakeholders to translate security risk into ...

information and cyber security across the organisation Manage and optimise third-party security relationships , including suppliers, MSPs, and assurance partners Oversee security governance, risk management, and compliance activities Provide leadership and direction to a small internal team , supported by external vendors Engage with senior stakeholders to translate security risk into ...

Extensive ServiceNow IRM experience: Proven experience in designing and implementing ServiceNow IRM solutions, including a strong understanding of the platform's capabilities and functionalities. GRC knowledge: Deep understanding of Governance, Risk, and Compliance (GRC) principles and best practices. Technical skills: Proficiency in ServiceNow platform development, including scripting, workflows, and integrations. … presentation, and stakeholder management skills. Solution architecture experience: Experience in designing and implementing complex solutions, including defining architecture roadmaps. Certifications: ServiceNow certifications like CIS-GRC or CIS-VRM are often preferred. For more information on how we process your personal data, please refer to HCLTech’ s Candidate Data Privacy Notice. ...

British market. You will be building a pipeline from scratch, opening doors at C-level, and driving high-value consulting engagements across Governance, Risk, Compliance (GRC), SOC advisory, and enterprise cybersecurity transformation. You will be responsible for systematically expanding the UK client portfolio beyond existing founder networks. Key Focus Areas … Essential Experience Proven track record in new business development within the UK Experience selling cybersecurity consulting services (not only tools or pentesting) Exposure to GRC, SOC advisory, risk, compliance, cyber transformation or similar domains Experience working in boutique or mid-sized consultancies preferred Strong UK market knowledge and existing decision ...

Title: Cyber Governance Consultant – Permanent Location: Hybrid (Client sites, Company offices, and Home – note: cannot be fully remote) About the Role: We are looking for a Cyber Governance Consultant ( 2 - 4 years experience) to help clients design and implement cyber guidelines and governance frameworks tailored to their specific needs. … Experience: Experience designing or implementing secure solutions based on regulatory frameworks such as ISO, NIS, NIST, TISAX, DORA, NCSC CAF, or IEC62443. Background in GRC consulting or cybersecurity governance. Ability to balance security, compliance, usability, agility, and cost considerations. Experience creating business cases, roadmaps, or strategic recommendations for regulatory compliance. ...