Oxford, Oxfordshire, South East, United Kingdom Hybrid / WFH Options
Unipart
Head of Cybersecurity GovernanceRiskandCompliance Location: Mainly remote based working in the UK with travel to Oxford, Cowley (OX4 2GQ) occasionally Contract: Permanent Hours: Full time Salary: £70,000 per annum, plus car/car allowance Benefits: 33 days holiday, pension, life assurance, employee assistance programme, wellbeing support, and flexible benefits scheme About the Job As our Head … of Cybersecurity GovernanceRiskandCompliance youll work closely with business and technology teams, helping to articulate and communicate the InfoSec governance program, identify risks and evaluate and help implement controls and improvements. As part of your key responsibilities youll: Manage the day to day of the function and team Support the management of Information Security governance for the organisation … following skills and experience, but please apply if you think youd be able to perform well in this role! Excellent written and verbal communication skills Previous experience within a GRC function, IT Security/Cyber team, Internal Audit or an IT environment Hands on practical experience of ensuring full compliance with legal & regulatory frameworks including ISO 27001 Riskmanagement Strong More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
you possess the following?: Proven related experience in cybersecurity riskmanagement in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards andrisk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
you possess the following?: Proven related experience in cybersecurity riskmanagement in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards andrisk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯
Jam Management Consultancy Limited T/A JAM RECRUITMENT
providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, riskmanagement, and regulatory compliance. Proficiency with security monitoring tools and incident management processes. Excellent analytical, communication, and leadership skills. Desirable Knowledge of GDPR, NIST, or other security frameworks. Experience More ❯
london, south east england, united kingdom Hybrid / WFH Options
Albany Beck
and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber RiskManagement principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯
slough, south east england, united kingdom Hybrid / WFH Options
Albany Beck
and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber RiskManagement principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯
london (city of london), south east england, united kingdom Hybrid / WFH Options
Albany Beck
and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber RiskManagement principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯
london, south east england, united kingdom Hybrid / WFH Options
EML
protection frameworks and global privacy regulations (e.g., GDPR,CCPA). Professional certifications such as from the International Compliance Association (ICA), or other relevant credentials preferred. Technical : Experience with complianceGRC, DPIA, ROPA and privacy management technologies and automation tools.Strong project management skills with experience leading cross-functional initiatives. Team : Strong communication and influencing skills, capable of working with senior leaders More ❯
slough, south east england, united kingdom Hybrid / WFH Options
EML
protection frameworks and global privacy regulations (e.g., GDPR,CCPA). Professional certifications such as from the International Compliance Association (ICA), or other relevant credentials preferred. Technical : Experience with complianceGRC, DPIA, ROPA and privacy management technologies and automation tools.Strong project management skills with experience leading cross-functional initiatives. Team : Strong communication and influencing skills, capable of working with senior leaders More ❯
london (city of london), south east england, united kingdom Hybrid / WFH Options
EML
protection frameworks and global privacy regulations (e.g., GDPR,CCPA). Professional certifications such as from the International Compliance Association (ICA), or other relevant credentials preferred. Technical : Experience with complianceGRC, DPIA, ROPA and privacy management technologies and automation tools.Strong project management skills with experience leading cross-functional initiatives. Team : Strong communication and influencing skills, capable of working with senior leaders More ❯
london, south east england, united kingdom Hybrid / WFH Options
Anson McCade
resilience and enable growth. What You’ll Do Advise executives on actionable cyber strategies to support digital transformation Shape and deliver cyber transformation programmes aligned with organisational objectives Design governanceand operational models to enhance cyber maturity and regulatory readiness Assess and define risk-based roadmaps that embed cyber security into business operations Work across a range of industries and … of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication skills – written and verbal – with the ability to present to both technical and business stakeholders Consulting: Proven project delivery using Agile and Waterfall More ❯
slough, south east england, united kingdom Hybrid / WFH Options
Anson McCade
resilience and enable growth. What You’ll Do Advise executives on actionable cyber strategies to support digital transformation Shape and deliver cyber transformation programmes aligned with organisational objectives Design governanceand operational models to enhance cyber maturity and regulatory readiness Assess and define risk-based roadmaps that embed cyber security into business operations Work across a range of industries and … of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication skills – written and verbal – with the ability to present to both technical and business stakeholders Consulting: Proven project delivery using Agile and Waterfall More ❯
the need for Sponsorship We're looking for a Compliance Manager to support and evolve the compliance function for a telecoms organisation based in Theale. Reporting to the Senior Governance, Risk & Compliance Counsel, you'll lead the development and implementation of compliance programs that mitigate legal and regulatory risks while embedding a culture of ethical and operational integrity. Key Responsibilities More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Allianz Popular SL
Role Description The Information Security Analyst plays a key role in supporting Allianz UK's Information Security initiatives, with a focus on executing the Governance, Risk, andCompliance (GRC) activities and implementing the NIST Cyber Security Framework (CSF) across the organisation. The NIST analyst will involve in day-to-day GRC operations, such as designing and implementing security controls, interpreting … non-compliance issues and information security risks. As an Information Security Analyst at Allianz UK, you will be pivotal in advancing the company's Information Security initiatives by executing Governance, Risk, andCompliance (GRC) activities and implementing the NIST Cyber Security Framework (CSF) organization-wide. Your role will involve daily GRC operations, including designing and implementing security controls, interpreting requirements … catalogue, policies, and procedures aligned with the NIST Cyber Security Framework (CSF). Collaborating with the wider organization to integrate control testing andriskmanagement activities into the existing governance framework. Assisting cross-functional teams and business units in integrating security measures into business operations. Supporting compliance activities with the Group Information Security Framework, Cyber Essentials, and PCI DSS attestation. More ❯
Snelshall West, Milton Keynes, Buckinghamshire, England, United Kingdom
DS Smith
and flexibility to support the demands of a FTSE 100 business.Supporting Head of Information Security Architecture and Assurance as well as working closely with key stakeholders including Head of Governance, RiskandCompliance, Digital Security, IT and business teams you will focus on core areas such as riskmanagementand security due-diligence reviews ensuring compliance with legal, regulatory andMore ❯
East Grinstead, Sussex, United Kingdom Hybrid / WFH Options
Spectrum IT Recruitment
Identify and implement emerging technologies that enhance performance and security. Leadership & People Development Build and develop a high-performing, collaborative team culture. Support team members' personal and professional development. Governance, Risk & Compliance Maintain the infrastructure and security risk register, ensuring compliance with all relevant regulations and policies. Supplier & Stakeholder Management Manage supplier relationships to maximise service quality and value. Collaborate More ❯
East Grinstead, West Sussex, United Kingdom Hybrid / WFH Options
Spectrum IT Recruitment
Identify and implement emerging technologies that enhance performance and security. Leadership & People Development Build and develop a high-performing, collaborative team culture. Support team members' personal and professional development. Governance, Risk & Compliance Maintain the infrastructure and security risk register, ensuring compliance with all relevant regulations and policies. Supplier & Stakeholder Management Manage supplier relationships to maximise service quality and value. Collaborate More ❯
Company Overview Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, riskmanagementand compliance. We work across public and private sector and have over 60k customers across the UK across 20 different sectors including construction, transport, retail, hospitality education, facility and property management, manufacturing, local More ❯
Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, riskmanagementand compliance. We work across public and private sector and have over 250k customers across the UK across 20 different sectors including construction, transport, retail, hospitality education, facility and property management, manufacturing, local and central More ❯
Tunbridge Wells, Kent, Royal Tunbridge Wells, United Kingdom Hybrid / WFH Options
FPSG
into CI/CD workflows Familiarity with security frameworks such as DSOMM, OWASP, and SAMM Suitability: This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with a strong security focus and interest in building secure, scalable systems in the cloud and alongside Salesforce More ❯
Winchester, Hampshire, United Kingdom Hybrid / WFH Options
Arqiva
Join our Cyber Security Team as a Governance, RiskandCompliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment with … wellness and employee assistance programmes, gymflex, buy and sell annual leave, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, andrisk assessments Assist with internal audits and help prepare for external More ❯
future. We use data to help clients become more efficient, increase profitability and give more customers an amazing experience. Want to be part of it? Reporting to the Senior Governance, Risk & Compliance Officer, the Information Security Officer will assist in strengthening the organisation's security posture within a large, complex, and fast-paced environment. This role supports the development and … implementation of GRC policies, riskmanagement frameworks, and control processes to ensure the confidentiality, integrity, and availability of Keyloop's information assets. The Information Security Officer will work cross-functionally with stakeholders across diverse teams and departments to embed strong information security practices throughout the business. The role also includes identifying and tracking risks within the supply chain and supporting … the organisation's broader information security governance, risk, andcompliance efforts. A critical part of this role is helping to promote a strong risk-aware culture and embedding positive security behaviours across the organisation. Role & Responsibility : The job holder will be responsible for assisting and supporting in a range of activities across the Governance, RiskandCompliance function. The job More ❯
broader enterprise technology goals. Cyber Security and IdAM Partner with Cyber Security stakeholders to design and implement secure authentication mechanisms (e.g., MFA, SSO). Drive the rollout of identity governance solutions and ensure integration with enterprise-wide access management systems. Ensure all programs comply with security best practices, regulatory requirements (e.g., GDPR), and internal security policies. Oversee change managementand … CISM, AWS Security Specialty, or Certified Identity and Access Manager (CIAM). Agile (Scrum Master, SAFe) and cloud (AWS Cloud Practitioner) certifications. Experience in security assessments, threat modeling, or governance/risk/compliance (GRC) tooling. Benefits Pension company contribution = 3% Incentive scheme up to 10% of annual salary , based on company performance. Your wellbeing is paramount so you can More ❯
Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, riskmanagementand compliance. We work across public and private sector and have over 250k customers across the UK across 20 different sectors including construction, transport, retail, hospitality education, facility and property management, manufacturing, local and central More ❯
Basingstoke, Hampshire, United Kingdom Hybrid / WFH Options
Once For All Limited
Innovation Team Type: Full time, Permanent Once For All is a high-growth, cloud-based SaaS company. Our platform helps 250k+ customers across the UK & Europe manage supply-chain governance, riskand compliance. We are embarking on a transformation - by placing intelligent, automated decision-making at the heart of our systems & processes. Role Summary We're looking for a Senior More ❯