1 to 25 of 68 Permanent CRISC Jobs in the UK

or CAF-related training/accreditation Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) Years of Experience Minimum 3 years’ experience delivering GRC services in a consultancy or in-house security role. - ESSENTIAL Proven track record of managing client-facing projects from scoping through More ❯

IT risk management structure Demonstrable experience of senior stakeholder management and relevant management reporting. Education/Qualifications: Essential Degree educated and/or equivalent experience.Preferred: Relevant certifications (e.g. CISA, CRISC, CISM, CISSP .) PERSONAL REQUIREMENTS Personal alignment to MUFG Values + Integrity & Responsibility + Professionalism & Teamwork + Challenge ourselves to grow Personal alignment to EMEA Cultural Principles + Client Centric More ❯

security clauses as relevant Support information security and compliance audits conducted in the department Qualifications and Experience required: Degree level qualified or equivalent - highly desirable. CISM and/or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role More ❯

security clauses as relevant Support information security and compliance audits conducted in the department Qualifications and Experience required: Degree level qualified or equivalent - highly desirable. CISM and/or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role More ❯

security clauses as relevant Support information security and compliance audits conducted in the department Qualifications and Experience required: Degree level qualified or equivalent - highly desirable. CISM and/or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role More ❯

Safety, and Information Governance policies. Person Specification Qualifications Masters level degree or equivalent experience in a related subject Formal certification (ISACA: Certified Information Security Manager (CISM). CISSP, or CRISC) and/or formal training in information security standards and best practice (e.g.: ISO 27001/2, COBIT), or equivalent work experience demonstrating understanding of the same. Professional Enterprise Architecture More ❯

maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position are: Graduate level in Cyber Security, Computer Science or similar. CRISC, CISM, CRM, CISA, CCP Practitioner SIRA, ISO/IEC 27001 Lead Auditor, or similar. 3-5 years’ experience in cyber governance, risk and compliance roles, preferably in the FMCG sector. More ❯

Certified in one of the following: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC More ❯

Certified in one of the following: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC More ❯

within the Trust. Person Specification Qualifications Essential ITIL v3 Service Management Qualification Educated to degree level or equivalent Formal certification (ISACA: Certified Information Security Manager (CISM). CISSP, or CRISC) and/or formal training in information security standards and best practice (e.g.: ISO 27001/2, COBIT), or equivalent work experience demonstrating understanding of the same. Experience Essential Extensive More ❯

and business teams. Proven experience in cybersecurity disciplines, ideally 5-7 years in roles covering risk management, architecture, engineering, or vulnerability management. Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow. For more details, please reach out to Mary Pearson on - . Reasonable Adjustments: Respect and equality are More ❯

and business teams. Proven experience in cybersecurity disciplines, ideally 5-7 years in roles covering risk management, architecture, engineering, or vulnerability management. Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow. For more details, please reach out to Mary Pearson on - . Reasonable Adjustments: Respect and equality are More ❯

a strong understanding of risk management, compliance frameworks, cloud security, and modern enterprise architecture in an agile working practices environment. You'll have recognised security certifications: CISSP, CISM, CISA, CRISC, or similar. You'll possess a strategic growth mindset balanced with a security first approach We might not be right for you if: You only want to focus on your More ❯

success. What You’ll Bring • A degree in Computer Science, Engineering, Information Security or a related field. • Professional certification or progress toward one such as ACP, CISSP, CISM, CCSP, CRISC or CISA. • Experience in cyber security, either within consultancy or an industrial organisation managing operational systems. • Familiarity with OT and ICS technologies and knowledge of key standards such as ISO More ❯

and privacy regulations (e.g., GDPR). Excellent written, verbal, and interpersonal communication skills. Strong analytical and organisational abilities. Relevant professional certifications (e.g., ISO 27001 Lead Implementer/Auditor, CISM, CRISC, CISSP) are desirable but not essential. More ❯

and privacy regulations (e.g., GDPR). Excellent written, verbal, and interpersonal communication skills. Strong analytical and organisational abilities. Relevant professional certifications (e.g., ISO 27001 Lead Implementer/Auditor, CISM, CRISC, CISSP) are desirable but not essential. More ❯

About You: Experience in IT security, risk management, or control assurance, preferably within financial services. Skilled in IT controls governance, testing, and executive-level reporting. Professional certifications such as CRISC or CISA are highly desirable. Strong analytical, communication, and stakeholder management skills. This permanent position based in Central London (3 days per week onsite, 2 days per week WFH) pays More ❯

GDPR, data-protection, and privacy frameworks. Practical experience supporting audit readiness, evidence gathering, and control implementation. Excellent attention to detail, analytical thinking, and confident stakeholder communication. Relevant certifications welcomed - CRISC, ISO 27001 Lead Implementer/Auditor, CIPP/E, GDPR Practitioner, CISM, or CISA. Why Apply? Join a modern, compliance-driven business where security and governance are at the heart More ❯

meetings and forums. Maintain awareness of current threats, vulnerabilities, and best practices in security assurance Experience Required Experience in information security, risk management, or assurance roles. Desirable qualifications - CISM, CRISC, CISSP, CISA, CGEIT, ISO 27001 Lead Auditor (or equivalent) Hold an active and transferable SC clearance Strong analytical skills with the ability to interpret technical and procedural evidence. Ability to More ❯

to non-technical stakeholders Theability to explain complex topics to a diverse range of audiences Strong attention to detail and theability to deliver high quality work CompTia Security +, CRISC, CISM or CISSP certification advantageous. About Forvis Mazars Forvis Mazars is a leading global professional services network. The network operates under a single brand worldwide, with just two members: Forvis More ❯

to non-technical stakeholders Theability to explain complex topics to a diverse range of audiences Strong attention to detail and theability to deliver high quality work CompTia Security +, CRISC, CISM or CISSP certification advantageous. About Forvis Mazars Forvis Mazars is a leading global professional services network. The network operates under a single brand worldwide, with just two members: Forvis More ❯

to non-technical stakeholders Theability to explain complex topics to a diverse range of audiences Strong attention to detail and theability to deliver high quality work CompTia Security +, CRISC, CISM or CISSP certification advantageous. About Forvis Mazars Forvis Mazars is a leading global professional services network. The network operates under a single brand worldwide, with just two members: Forvis More ❯

Confident communicator, able to engage effectively with technical and non-technical stakeholders. Exposure to financial services or other regulated industries is advantageous. Relevant certifications such as ITIL, CompTIA Security+, CRISC, or CISSP (Associate) are desirable. Why Join? Join a respected financial institution committed to developing its people and promoting from within. Work on a variety of IT risk and compliance More ❯

Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in terms of business impact. Professional certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable. Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR More ❯

Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in terms of business impact. Professional certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable. Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR More ❯