1 to 25 of 78 Permanent GRC Jobs in London

Governance, Risk & Compliance (GRC) Consultant | 6 Month Contract We are supporting a large public sector organisation within the education and research sector as they strengthen their cyber governance, compliance, and operational resilience capabilities across complex technology environments. This role will support a broad range of governance, risk, and compliance initiatives … including certification activities, cyber risk management, policy development, and security governance across enterprise and research platforms. Responsibilities Support cyber governance, risk, and compliance activities across complex enterprise environments Assist with certification and recertification programmes across recognised security and compliance frameworks Conduct gap assessments and provide practical remediation recommendations Support development ...

Cyber Governance Lead 1-month contract Inside IR35 Remote working SC Clearance advantageous but not essential Cyber Governance Lead - We are seeking an experienced Cyber Governance professional to support a programme of cyber governance, assurance, policy and standards development, and ISO certification readiness activities across a complex enterprise environment. … successful contractor will support delivery across cyber risk management, ISMS documentation, governance reporting, policy and standards development, and cyber service catalogue reform activities. This role requires a strong blend of governance, assurance, stakeholder management, and regulatory compliance experience, with the ability to operate independently and engage effectively with senior stakeholders. ...

Technology Governance Lead (Risk, Compliance & Security) London Hybrid Up to £80,000 plus excellent bens We are looking for a Technology Governance Lead to drive a proactive, secure-by-default, and compliant-by-design culture across our technology organisation. Reporting to the Head of IT Transformation, this role will take … ownership of technology risk, cyber governance, security oversight, and compliance assurance across platforms, delivery teams, and third-party services. This is a strategic and hands-on leadership role focused on improving governance maturity, strengthening resilience, enhancing audit outcomes, and ensuring technology risks are clearly understood, managed, and communicated across ...

embody: Innovation to solve the hardest problems. Accountability for every result. Integrity always. About The Role As a Senior Security Consultant within the Governance, Risk & Compliance (GRC) practice, you will lead and deliver a broad range of cybersecurity, governance, risk and assurance engagements across both public and private sector organisations. … work closely with client stakeholders at all levels, helping organisations strengthen their security posture, manage cyber risk, improve compliance maturity and implement pragmatic security governance frameworks aligned to business objectives. The successful candidate will possess strong experience across information security governance, risk management, security compliance and assurance activities, with practical ...

GRC Analyst – Information Security London – Hybrid £50,000 - £55,000 + Bonus VIQU has partnered with a leading transport organisation to recruit a GRC Analyst to join their Finance and Information Security team. This is a fantastic opportunity for a GRC Analyst to take ownership of established governance frameworks, policies … and risk processes within a highly regulated environment. The GRC Analyst will play a key role in maintaining compliance, supporting audits, and embedding a strong risk-aware culture across the business. Key Responsibilities of the GRC Analyst: Support and maintain the organisation’s risk management framework, including risk identification, assessment ...

## Head, Governance, Risk and Compliance (Head Security GRC)Applylocations: Londontime type: Full timeposted on: Posted 2 Days Agojob requisition id: JR154The RoleThe Head, GRC is a senior cybersecurity leader responsible for defining and operating the governance, risk and compliance strategy for the organization. This role partners closely with … cyber risk is governed effectively, regulatory obligations are met, and security controls are aligned to business priorities. The role will lead policy and standards governance, cyber risk management, control assurance, audit and regulatory engagement, and third-party risk oversight while building a culture of accountability and continuous improvement.* Lead and ...

Risk Management (IRM) platform. This position involves gathering business requirements, translating them into functional specifications, workflows, and user stories, and driving process standardization and governance adoption across the organization. 1. Requirements Gathering & Stakeholder Workshops Conduct workshops with Risk, Audit, and Compliance stakeholders. Gather and analyze business requirements. Understand: Risk frameworks … Identify → Assess → Respond → Monitor) Control frameworks and indicators Risk assessment models Scoring methodologies and logic 3. Process Design & Optimization Review and re-engineer existing Governance, Risk & Compliance (GRC) processes. Align processes with industry standards and best practices. Improve: Compliance readiness Audit readiness Operational efficiency Governance maturity 4. Functional Implementation Support ...

consultancy projects across a diverse client base. Conduct cyber maturity assessments, risk reviews, and gap analyses to identify areas for improvement. Advise organisations on governance, risk management, compliance, and security best practice. Develop practical security roadmaps and recommendations aligned to business objectives. Support clients with certification and compliance initiatives, including ...

projects that demand innovation, collaboration, and thought leadership . Role – We are seeking an experienced ServiceNow IRM Business Functional Consultant to support a major Governance, Risk, and Compliance (GRC) transformation programme. This is a business-facing role acting as the bridge between Risk, Audit, Compliance, and Technology teams. You will … lead requirements gathering, process design, and functional solution definition across the ServiceNow Integrated Risk Management (IRM) platform, helping organisations strengthen governance, improve compliance, and drive operational efficiency. Key Responsibilities: Requirements Gathering & Business Analysis Facilitate workshops with: Risk Management teams Audit teams Compliance stakeholders Business process owners Analyse and document: Regulatory ...

environments. You will hold a detailed understanding of one or more of the following aspects of cloud security: security architecture, security operations, security engineering, governance, risk and compliance. Requirements Must be a British citizen to meet compliance and security clearance requirements. Bachelor's degree or equivalent practical experience. 10 years ...

environments. You will hold a detailed understanding of one or more of the following aspects of cloud security: security architecture, security operations, security engineering, governance, risk and compliance. Requirements Must be a British citizen to meet compliance and security clearance requirements. Bachelor’s degree or equivalent practical experience. 10 years ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem‐solving skills. Excellent oral and written communication skills including concisely communicating status ...

this work, and we are looking for the people who want to build it with us. This role is how we build out our GRC capability across our global client base, including the German speaking accounts where local language is part of doing the work properly. The Work Lex Dinamica … multinationals to government contractors and high growth scale ups, and they come to us for advisory work, DPO support delivered as a service, AI governance, and privacy technology programmes including OneTrust, where we are a certified implementation partner. The GRC Consultant role is how we extend our work into governance ...

modern, 3-Layer Operating Model. Your primary focus is to govern our outsourced Managed Detection & Response (MDR/SOC) partners, own the internal GRC (Governance, Risk, and Compliance) framework, and ensure data protection standards are met. You will act as the strategic link between external security experts and our internal ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

and how to map technical solutions to business value. Ability to work collaboratively with cross‐functional teams and manage multiple projects simultaneously. Experience in GRC (Governance, Risk, and Compliance) is a strong plus. Relevant certifications (e.g., CISSP, CISM, AWS Certified Solutions Architect/Azure Solution Architect Professional/Google Professional ...

fine‐tuning techniques Familiarity with distributed computing frameworks (eg Spark) Knowledge of graph neural networks, reinforcement learning, or causal inference Experience with AI governance, model risk management, and regulatory compliance Experience using Pro code and Low code tools such as LangGraph, AutoGen, Semantic Kernal and MS CoPilot Experience ...

Role The Head, GRC is a senior cybersecurity leader responsible for defining and operating the governance, risk and compliance strategy for the organization. This role partners closely with the CISO, technology leaders, legal, risk, compliance and business stakeholders to ensure cyber risk is governed effectively, regulatory obligations are met, and … security controls are aligned to business priorities. The role will lead policy and standards governance, cyber risk management, control assurance, audit and regulatory engagement, and third‐party risk oversight while building a culture of accountability and continuous improvement. Lead and continuously improve the cybersecurity GRC framework, operating model, governance forums ...

will be a key member of our growing Security Engineering team, working at the intersection of our Infrastructure, Cross-Cutting, Information Security, and GRC teams. At Engine, we believe security should be at the heart of every technical process, not an afterthought. You won’t work in a silo ...

A risk management consultancy is seeking a ServiceNow professional to develop Risk solutions. This role involves designing and configuring ServiceNow applications and requires a recognised degree and ServiceNow CSA certification. You should have at least ...

audit/regulatory engagement. Experience required: Frameworks: NIST, ISO 27001, COBIT (practical application). Strong understanding of risk‐to‐control mapping. Experience working with GRC tools. Strong experience delivering technology and cyber control improvement or remediation programmes. Proven hands‐on background in Technology & cyber risk management, Control design, rewrite, and ...

utilizing LLMs, while knowing when to engage an engineer for proper implementation Ability to translate between engineers and auditors without friction Optional bonus: GRC tooling beyond Sprinto, DPO or DPO‐adjacent work, payments regulatory exposure, or a proven track record of reducing manual compliance work through automation ...

Role: Lead commercial and contractual negotiations with customers and stakeholders Provide strategic commercial guidance across complex engagements Support public sector bids, contract management and governance activities Manage risk, compliance and contractual obligations throughout the contract lifecycle Partner with legal, sales and operational teams to deliver successful outcomes ...

marketing, with experience spanning both Demand Generation and Marketing Operations A background in B2B SaaS, ideally in industries related to cybersecurity, compliance, GRC, or TPRM Comfort managing paid media budgets across Google Ads and LinkedIn, optimising spend and finding ways to increase profitability and top-line revenue Deep, practical experience ...

environment Microsoft365 Microsoft InTune Azure Responsibilities Accountable for Infrastructure, User support, Cyber Security standards, Cloud and On Prem hybrid environment, Disaster recovery, service delivery, Governance, Risk and Compliance. Provide clear instruction to reports and stakeholders, ensuring standards are met and upheld. Act as primary technical authority. Support and lead onboarding ...