1 to 25 of 79 Permanent GRC Jobs in London

Oliver James is proud to be partnering with a globally renowned reinsurance company in their search for a Cyber Security Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) Specialist. This role will play a crucial part in strengthening the organisation's security posture, focusing heavily on vendor risk, regulatory readiness, and cyber governance. Overview Oliver James is proud … to be partnering with a globally renowned reinsurance company in their search for a Cyber Security Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) Specialist. This role will play a crucial part in strengthening the organisation's security posture, focusing heavily on vendor risk, regulatory readiness, and cyber governance. Based in the City of London with a flexible … and validate vendor security documentation (e.g., SOC 2, ISO 27001), evaluate control effectiveness, and coordinate remediation efforts for identified gaps. Ensure relevant business stakeholders are informed of potential risks. Governance, Risk & Compliance (GRC): Actively contribute to broader GRC initiatives, including: Managing GRC platforms and tools (e.g., control catalogues, issue tracking, policy management). Designing and deploying security awareness programs (e.g. More ❯

seamless data flow and integration between corporate systems (for example, linking finance and procurement systems or HR and payroll systems) to create a single source of truth. Implement data governance practices so that management reports and analytics are accurate and timely. Governance, Risk & Compliance: Implement strong IT governance and security practices for all corporate tech systems. Proactively use technology to … Expertise: Hands-on knowledge of implementing and supporting enterprise software such as ERP systems (e.g., Oracle Financials, SAP, or Netsuite), HRIS/Payroll systems (e.g., Workday, PeopleSoft, ADP), and GRC (Governance, Risk & Compliance) tools. Understanding of system architecture, integrations (middleware, APIs), and data management. Enterprise Applications: Proficiency with enterprise resource planning (ERP) systems, financial reporting software, and HR management systems. More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

Overview "Head of Cyber Governance, Risk and Compliance" - London Hybrid Full-time Personal Contract REQ5121 As a strategic leader in Governance, Risk and Compliance, you will guide SGN's cyber security and regulatory approach, ensuring our operations remain secure, resilient and fully compliant. We deliver safety, warmth, and comfort to homes and businesses. Every role, whether in the office or … on the front line, plays a key part in this mission. Here's how you will contribute Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001/2, and NIST-2. Oversee delivery plans, resource allocation, and stakeholder engagement for GRC initiatives. Training & Awareness Develop and More ❯

Head of Cyber Governance, Risk and Compliance London | Hybrid | Full-time | Personal Contract Competitive pension scheme – Enhanced maternity/paternity pay – Life assurance – HolidayPlus – Cycle2work Scheme & more REQ5121 As a strategic leader in Governance, Risk and Compliance, you will guide SGN’s cyber security and regulatory approach, ensuring our operations remain secure, resilient and fully compliant. We deliver safety, warmth … comfort to homes and businesses. Every role, whether in the office or on the front line, plays a key part in this mission. Here’s how you will contribute... Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001/2, and NIST-2. Oversee delivery plans … resource allocation, and stakeholder engagement for GRC initiatives. Training & Awareness Develop and maintain SGN’s Information Security training and awareness materials. Integrate lessons learned from incidents and address feedback from training delivery. Information Security Policy & ISMS Maintain a robust portfolio of security policies, standards, and procedures to support ISO27001, NIST, and NIS eCAF compliance. Ensure policies are current, reviewed regularly More ❯

primary client contact for your workstreams Supporting the scoping and mobilisation of new engagements alongside senior colleagues Designing and delivering high-quality finance technology solutions (reporting, planning, close, treasury, GRC, ESG, and beyond) Translating client requirements, existing processes, and spreadsheets into coherent solution designs and implementation documentation Serving as a subject matter expert and providing architectural and technical leadership to More ❯

primary client contact for your workstreams Supporting the scoping and mobilisation of new engagements alongside senior colleagues Designing and delivering high-quality finance technology solutions (reporting, planning, close, treasury, GRC, ESG, and beyond) Translating client requirements, existing processes, and spreadsheets into coherent solution designs and implementation documentation Serving as a subject matter expert and providing architectural and technical leadership to More ❯

primary client contact for your workstreams Supporting the scoping and mobilisation of new engagements alongside senior colleagues Designing and delivering high-quality finance technology solutions (reporting, planning, close, treasury, GRC, ESG, and beyond) Translating client requirements, existing processes, and spreadsheets into coherent solution designs and implementation documentation Serving as a subject matter expert and providing architectural and technical leadership to More ❯

primary client contact for your workstreams Supporting the scoping and mobilisation of new engagements alongside senior colleagues Designing and delivering high-quality finance technology solutions (reporting, planning, close, treasury, GRC, ESG, and beyond) Translating client requirements, existing processes, and spreadsheets into coherent solution designs and implementation documentation Serving as a subject matter expert and providing architectural and technical leadership to More ❯

security leader with a blend of strategic vision and operational expertise. You should bring: Proven experience defining and executing cyber security strategy at a senior level Strong knowledge of governance, risk, compliance, and regulatory frameworks Leadership experience managing cyber security operations teams Excellent stakeholder management skills, including board-level engagement The ability to represent the organisation externally with authority and More ❯

cross-functional programme team, ensuring collaboration between internal stakeholders, incumbent provider, and new vendor. Deliver clear, concise ExCo-level reporting, highlighting programme risks, dependencies, and strategic decisions. Drive robust governance and risk management, ensuring regulatory compliance, operational resilience, and smooth customer experience throughout the transition. Oversee change management and stakeholder engagement to embed the new service and operating model. Requirements More ❯

cross-functional programme team, ensuring collaboration between internal stakeholders, incumbent provider, and new vendor. Deliver clear, concise ExCo-level reporting, highlighting programme risks, dependencies, and strategic decisions. Drive robust governance and risk management, ensuring regulatory compliance, operational resilience, and smooth customer experience throughout the transition. Oversee change management and stakeholder engagement to embed the new service and operating model. Requirements More ❯

cross-functional programme team, ensuring collaboration between internal stakeholders, incumbent provider, and new vendor. Deliver clear, concise ExCo-level reporting, highlighting programme risks, dependencies, and strategic decisions. Drive robust governance and risk management, ensuring regulatory compliance, operational resilience, and smooth customer experience throughout the transition. Oversee change management and stakeholder engagement to embed the new service and operating model. Requirements More ❯

cross-functional programme team, ensuring collaboration between internal stakeholders, incumbent provider, and new vendor. Deliver clear, concise ExCo-level reporting, highlighting programme risks, dependencies, and strategic decisions. Drive robust governance and risk management, ensuring regulatory compliance, operational resilience, and smooth customer experience throughout the transition. Oversee change management and stakeholder engagement to embed the new service and operating model. Requirements More ❯

digital risk frameworks, methodologies, and compliance requirements. Ability to interpret IT Risk regulatory requirements and translate them into actionable sales opportunities. Proficiency in risk management tools and platforms (e.g. GRC platforms), ideally with experience in implementing and/or optimizing these solutions. Proven strategic experience in leading risk assessments and developing and implementing risk mitigation strategies. Strong analytical and problem … Exceptional communication and presentation skills for executive reporting, stakeholder engagement, and internal team leadership. To qualify for the role you should have Extensive experience in digital risk management, IT governance, cybersecurity, or related fields; experience with AI would be an additional advantage. Professional certifications such as CISA, CISSP, or equivalent (preferred but not mandatory). Significant expertise in risk management More ❯

experts, to ensure our business commitments are delivered with quality and to expectation. · Assessing new technology solutions · Ensuring our non-functional requirements are met regarding performance, scalability, resilience, and GRC requirements (Information security, risk, industry regulation compliance) · Helping to encourage collaboration and product ownership across developers and testers · Ensuring continual shift of secure, quality and tested code activity left · Working More ❯

party SaaS, and security consulting services. Experience of evaluating and documenting technical needs. A history of consistently meeting sales objectives and goals. Knowledge of data security related legislation and governance, risk and compliance principles. Strong communication skills. If Verizon and this role sound like a fit for you, we encourage you to apply even if you don't meet every More ❯

The post holder will need todevelop strong relationships with the rest of legal team, senior management andin particular key stakeholders in the SaaS Operations, SaaS Commercial andSales, Security, Privacy, Governance, Risk and Compliance and Finance teams. The post holder will be responsible forensuring the consistent application of the company internal policies and thatappropriate expert legal advice is applied to our More ❯

and deliver the technology strategy aligned with public sector priorities, policies, and compliance. - Lead end-to-end delivery of secure, reliable digital and cloud solutions for government services. - Oversee governance, risk, and regulatory compliance, including cybersecurity and data protection. - Build strong relationships with public sector stakeholders, translating technical solutions into business outcomes. - Drive innovation by adopting emerging technologies to modernize More ❯

and deliver the technology strategy aligned with public sector priorities, policies, and compliance. - Lead end-to-end delivery of secure, reliable digital and cloud solutions for government services. - Oversee governance, risk, and regulatory compliance, including cybersecurity and data protection. - Build strong relationships with public sector stakeholders, translating technical solutions into business outcomes. - Drive innovation by adopting emerging technologies to modernize More ❯

effective Risk and Control Management, this role will play a crucial part in supporting the development and implementation of robust risk management practices. The organisation does not yet have Governance, Risk, and Compliance (GRC) tooling in place, so the analyst will need to work closely with various departments to ensure that technology controls are effectively designed and implemented to safeguard More ❯

We are seeking a detail-oriented and proactive SaaS GRC Specialist to strengthen our Governance, Risk, and Compliance framework as we scale our SaaS operations. In this role, you will ensure that our business processes, security controls, and regulatory obligations are consistently met. You will work across multiple teams—security, legal, product, and operations—helping us maintain trust with customers … and regulators while supporting business growth. Key Responsibilities Own and manage governance, risk, and compliance initiatives for our SaaS platforms. Monitor, review, and improve internal policies, procedures, and controls in line with ISO 27001, SOC 2, GDPR, and other regulatory frameworks. Conduct risk assessments and recommend mitigation strategies for SaaS operations and customer data protection. Collaborate with product, engineering, and … IT teams to embed compliance into day-to-day operations. Prepare and support external audits, certifications, and customer due diligence requests. Deliver GRC training and awareness sessions to employees across the business. Track regulatory changes and advise leadership on potential business impacts. Requirements Bachelor’s degree in Information Security, Business, Compliance, or related field. 2+ years of experience in GRC More ❯

We are seeking a detail-oriented and proactive SaaS GRC Specialist to strengthen our Governance, Risk, and Compliance framework as we scale our SaaS operations. In this role, you will ensure that our business processes, security controls, and regulatory obligations are consistently met. You will work across multiple teams—security, legal, product, and operations—helping us maintain trust with customers … and regulators while supporting business growth. Key Responsibilities Own and manage governance, risk, and compliance initiatives for our SaaS platforms. Monitor, review, and improve internal policies, procedures, and controls in line with ISO 27001, SOC 2, GDPR, and other regulatory frameworks. Conduct risk assessments and recommend mitigation strategies for SaaS operations and customer data protection. Collaborate with product, engineering, and … IT teams to embed compliance into day-to-day operations. Prepare and support external audits, certifications, and customer due diligence requests. Deliver GRC training and awareness sessions to employees across the business. Track regulatory changes and advise leadership on potential business impacts. Requirements Bachelor’s degree in Information Security, Business, Compliance, or related field. 2+ years of experience in GRC More ❯