1 to 25 of 208 Permanent GRC Jobs in the UK

roadmap Hands on delivery when needed Oversight of Cyber Security delivery Stakeholder Management Project Delivery - working closely with IT project managers Vendor and 3p Management Introduction and oversight of GRC Experience required: Microsoft 365 Experience with on prem to cloud migration Organisational transformation experience - e.g. new systems implementation, Integration of systems, optimisation of data Vendor management Stakeholder Management - internal and … of IT Infrastructure Manager MSP negotiation stakeholder management SimPRO Microsoft365 PowerBI CyberSecurity Cyber Security Firewall AntiVirus Vendor Management IT Manager Head of IT Infrastructure Manager MSP negotiation stakeholder management Governance Governance Governance Governance GRC GRC GRC GRC Compliance Compliance Compliance Compliance Compliance If you are interested in this position please click 'apply'. Hunter Selection Limited is a recruitment consultancy More ❯

Job Advert: Solution Architect – Governance, Risk & Compliance (GRC) Location: [UK or US ] Department: Technology/Professional Services Employment Type: Full-time About Us My client is a fast-growing leader in the Governance, Risk & Compliance (GRC) domain, helping organizations strengthen resilience, stay compliant, and make informed risk-based decisions. Their solutions support enterprises across industries to manage complex regulatory environments … mitigate risk, and drive operational efficiency. Seeking a highly skilled Solution Architect with deep expertise in GRC solutions to join our team. This is an opportunity to shape the architecture of enterprise-grade solutions that have a real impact on global organizations. The Role As a Solution Architect (GRC) , you will: Act as the technical authority for the design and … delivery of GRC solutions, ensuring alignment with client business needs, regulatory requirements, and industry best practices. Partner with stakeholders (CISOs, Risk Officers, Compliance Managers, CIOs) to translate complex requirements into scalable solution architectures. Guide pre-sales engagements, providing technical leadership and thought partnership during customer discussions. Own solution blueprints and oversee implementation, ensuring delivery excellence, security, and sustainability. Stay ahead More ❯

WELCOME TO PCI PAL PCI Pal is a leading provider of SaaS solutions that empower companies to take payments securely, adhere to strict industry governance, and remove their business from the significant risks posed by non-compliance and data loss. We are integrated and resold by some of the world's leading business communications vendors, as well as major payment … service providers. We are currently looking for a GRC & Audit Lead to join our UK team. THE OPPORTUNITY: PCI Pal's Information Security team requires a dynamic and proactive individual to lead all Governance, Risk and Compliance (GRC), audit requirements for our team and the company. We are an agile and innovative team and are responsible for ensuring that the … confidentiality, integrity and availability (CIA) of our internal, external environments, and client solutions are always maintained. The Lead GRC & Audit function will be focused on ownership of all Information Security GRC, Audit and project initiatives, including proactive cross-functional collaboration with other variety of business stakeholders. The role will ultimately encompass all facets from ensuring that GRC and audit requirements More ❯

Are you a governance leader who thrives at the intersection of information security, compliance, and organisational resilience? We’re looking for an experienced Senior Security Governance Manager to drive our Information Governance, Cyber Security, and Quality frameworks to new heights. This is a high-impact role where you’ll shape the strategic direction of security governance across the business, ensuring … compliance with UK, NHS, and international regulations — while empowering teams to work securely and confidently in a complex digital environment. What You’ll Be Responsible For Information Governance Develop and execute the organisation’s Information Governance (IG) strategy in line with UK, NHS, and international data protection frameworks. Maintain governance policies and key artefacts such as DPIAs, Data Processing Agreements … and support independent audit processes. Monitor compliance across business units and lead corrective actions where required. Cyber Security Lead the implementation and maintenance of Cyber Security policies, ensuring robust governance across all business areas. Manage the ISO 27001 certification lifecycle — including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. More ❯

packaging solutions, paper products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and … risk register, tools, process, reporting and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with More ❯

CISM and/or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Extensive experience of information security management and/or security awareness. In-depth expert More ❯

of innovation, collaboration, recognition and inclusivity and offer a wide range of benefits to support staff wellbeing. Your Future Starts Here PURPOSE OF JOB: We are seeking an experienced Governance, Risk & Compliance (GRC) Consultant to join our growing cyber security team. You will deliver high-quality GRC services to a diverse client base, help build in-house capability for core … offerings, and support the integration of GRC with our Assurance and DFIM service lines. With 3+ years’ experience in information security, data protection, risk management, enterprise IT, legal, or compliance roles, you will have a proven track record of delivering GRC consultancy across sectors. You will demonstrate strong knowledge of frameworks such as ISO, ISF, NIST CSF, NIS/NIS2 … certifications. This role offers the opportunity to work on high-impact projects within a forward-thinking, supportive environment that values expertise, innovation, and growth. KEY RESPONSIBILITIES: Deliver high-quality GRC services, including: ISO 27001 NIST Gap Analysis CAF Assessments PCI DSS CSMA, ISF, and CIS Assessments Develop and maintain in-house methodologies, templates, and delivery playbooks for core GRC services. More ❯

and/or CISSP or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is highly desirable Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Experience of information security management and/or security awareness. Good knowledge of industry More ❯

the crypto industry Maintain an industry pulse: Maintain awareness of international regulation, emerging threats, forecasts, policies, and benchmarks Qualifications 6+ years of experience working in a technical controls or GRC engineering function, or equivalent experience Control domain knowledge and best practices: Familiarity with standards and frameworks e.g. ISO 27001/5, NIST CSF, SOX, SOC, COBIT Strong technical acumen: Ability More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and More ❯

objectives, regulatory frameworks, and threat landscapes into actionable security and risk strategies. Shape the security culture: champion awareness, training, and security-first thinking from engineering to client-facing teams. Governance, Risk & Compliance Develop and maintain security policies, standards, and controls, tailored for cross jurisdictional compliance (e.g. GDPR, DORA, local tax/financial regulations). Lead periodic risk and security assessments More ❯

in Excel and Power BI (automation, dashboard design, data modelling). Strong analytical and problem-solving mindset. Understanding of cybersecurity and risk management concepts (e.g., Active Directory, control frameworks, GRC). Comfortable working with complex, multi-source data environments. Excellent communication and stakeholder engagement skills. Degree in a quantitative or technical discipline. Desirable Experience in audit, risk, or analytics functions. More ❯

in Excel and Power BI (automation, dashboard design, data modelling). Strong analytical and problem-solving mindset. Understanding of cybersecurity and risk management concepts (e.g., Active Directory, control frameworks, GRC). Comfortable working with complex, multi-source data environments. Excellent communication and stakeholder engagement skills. Degree in a quantitative or technical discipline. Desirable Experience in audit, risk, or analytics functions. More ❯

GRC Analyst – Salford (Hybrid, 3 Days in Office) Salary: £45,000 – £50,000 per annum Contract: Full-time, Permanent Location: Salford, Greater Manchester (Hybrid – 3 days per week in the office) The Opportunity An exciting opportunity has arisen for a Governance, Risk and Compliance (GRC) Analyst to join a dynamic and growing organisation based in Salford. This hybrid role offers … pivotal part in shaping and maintaining the company’s risk and compliance framework, ensuring alignment with key industry standards and regulations. The successful candidate will be instrumental in supporting governance processes, conducting risk assessments, and ensuring adherence to information security and data protection requirements across the business. Key Responsibilities Support the development, implementation, and maintenance of the organisation’s GRC … teams to promote a culture of risk awareness and compliance. Contribute to awareness initiatives and training programmes. Candidate Profile The ideal candidate will have proven experience in a similar GRC, Risk, or Compliance role, with a strong understanding of information security and governance frameworks. They will be detail-oriented, analytical, and capable of engaging effectively with stakeholders across all levels More ❯

to Have: Experience in cyber threat intelligence, risk scoring, or third-party risk domains . Background in graph technologies (Neo4j, TigerGraph, ArangoDB) and entity resolution. Understanding of security standards, GRC frameworks, and compliance automation . Previous experience scaling teams from 5 → 50 engineers. Comfortable working with distributed teams and agile processes. More ❯

Security Consultant (Governance, Risk, Compliance) Reading, UK (Hybrid with some travel) £30.00–£40.00 per hour (Inside IR35) 6-month contract. Potential to extend up to 2 years We are seeking an experienced Cyber Security Consultant (GRC) to join a leading global technology organization as part of their expanding Cyber Security practice. The successful candidate will deliver a range of Governance … Risk, and Compliance (GRC) consulting engagements for large enterprise clients, supporting the full project lifecycle from scoping to delivery and reporting. You’ll work closely with senior stakeholders, from technical teams through to directors, providing expert advisory support to strengthen cyber security frameworks and ensure compliance with global standards. Key Responsibilities Deliver end-to-end Cyber GRC consulting projects for … emerging technology risk management. Collaborate with internal and client teams to enhance cyber resilience and compliance maturity. About You Minimum of 4+ years’ experience in IT Security, Information Security Governance, Technology Risk Management, or Cyber Compliance. Strong consulting background with demonstrable client-facing experience. Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or CISMP. A solid understanding of Cloud More ❯

every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity As S/4 HANA Roles & GRC Access Manager, you will lead and support our SAP Security and Governance, Risk, and Compliance (GRC) initiatives. The ideal candidate will have extensive experience with SAP Security architecture and implementation … SAP GRC solutions (Access Control, Identity Access Governance), and proven experience managing teams through complex SAP implementations and security risk assessments. This role will play a crucial part in designing, implementing, and re-design of security roles, Identity and Access Governance for cross-platform ecosystems while maintaining secure and compliant SAP environments across the organisation. You will demonstrate and develop … your capabilities in the following areas: Develop and implement S/4 HANA security and GRC strategy, design to protect the integrity and confidentiality of our clients' enterprise systems. Oversee S/4 HANA Security during implementation ensuring compliance embedding audit and regulatory requirements. Lead the design, configuration, implementation and testing of SAP GRC modules such as Access Control (AC More ❯

Senior Control Advisor/GRC Advisor – Aberdeen or London We’re looking for a proactive and detail-oriented Senior Control Advisor to support the Governance, Risk & Compliance (GRC) function. In this role, you’ll help ensure regulatory compliance and effective risk management by monitoring controls, conducting audits, and collaborating with business units to strengthen the IT governance framework. You’ll … Deliver training and promote awareness of compliance and control procedures across the organisation Drive continuous improvement in risk, compliance, and control processes What you’ll do Work with the GRC Senior Manager to support IS in the delivery of GRC activities Collaborate with IS teams to create and complete Risk & Control Matrices for applications Ensure alignment with regulatory requirements and … and other stakeholders Stay informed about emerging risks and industry best practices Participate in process improvement initiatives related to ITGCs Contribute to the development of control frameworks Support the GRC Senior Manager in any required activities which support improvements in assurance, compliance, and audit activities Monitor key controls, e.g., IT General Controls (ITGCs) which support financial reporting Addresses findings from More ❯

Senior Control Advisor/GRC Advisor – Aberdeen or London We’re looking for a proactive and detail-oriented Senior Control Advisor to support the Governance, Risk & Compliance (GRC) function. In this role, you’ll help ensure regulatory compliance and effective risk management by monitoring controls, conducting audits, and collaborating with business units to strengthen the IT governance framework. You’ll … Deliver training and promote awareness of compliance and control procedures across the organisation Drive continuous improvement in risk, compliance, and control processes What you’ll do Work with the GRC Senior Manager to support IS in the delivery of GRC activities Collaborate with IS teams to create and complete Risk & Control Matrices for applications Ensure alignment with regulatory requirements and … and other stakeholders Stay informed about emerging risks and industry best practices Participate in process improvement initiatives related to ITGCs Contribute to the development of control frameworks Support the GRC Senior Manager in any required activities which support improvements in assurance, compliance, and audit activities Monitor key controls, e.g., IT General Controls (ITGCs) which support financial reporting Addresses findings from More ❯

This position sits within a well-established Security Risk & Governance team, responsible for managing the organisation's information security compliance framework. The role focuses on maintaining and improving external certifications, supporting audits, and driving awareness across the business. Reporting to the Head of GRC. It's a hybrid role requiring working in Manchester office for 3 days weekly Client Details More ❯

This position sits within a well-established Security Risk & Governance team, responsible for managing the organisation's information security compliance framework. The role focuses on maintaining and improving external certifications, supporting audits, and driving awareness across the business. Reporting to the Head of GRC. It's a hybrid role requiring working in Manchester office for 3 days weekly Client Details More ❯

GRC Manager Woking based with Hybrid working Competitive salary, up to 25% bonus and excellent benefits package We’re looking for an experienced and proactive Governance, Risk & Compliance (GRC) Manager to join our dynamic team based in Woking. In this key role, you’ll help strengthen our risk management framework, enhance compliance processes, and ensure robust governance across our operations. … You’ll work collaboratively with senior stakeholders to drive continuous improvement, embed a strong risk culture, and support strategic decision-making across the business. If you’re passionate about governance excellence, thrive in a fast-paced environment, and want to make real impact at Europe’s leading frozen food company. Responsibilities: Overseeing cyber security governance efforts, ensuring alignment with frameworks … and implement security policies, procedures, and standards that support risk mitigation and compliance efforts in line with industry standards. Play an active, hands-on role in security initiatives and GRC activities, including incident management, vulnerability assessments, and compliance reviews. Provide reporting to leadership committees and the Board. About you: We need someone who can communicate at all levels and with More ❯

InfoSec team is award-winning, collaborative, and one of the most gender-diverse in the industry. They’re looking for a Lead Information Security Analyst to strengthen their security governance, risk, and compliance functions — ensuring customer data and company systems remain secure while leading a small, capable team of analysts. What you’ll be doing: • Leading and supporting all aspects … of security governance activities – from policy and exception management to risk and vendor assessments • Managing compliance and audit activities (ISO 27001, NIST, PCI DSS, NYDFS, etc.) and working closely with tech, legal, and audit teams • Overseeing major projects to ensure security is baked in from inception to implementation • Coaching and developing a team of Information Security Analysts, fostering a proactive … and high-performing culture • Acting as a hands-on leader who can balance strategy, delivery, and stakeholder engagement What you’ll bring: • Strong background in GRC (Governance, Risk, and Compliance) within cybersecurity • Practical experience with frameworks such as ISO 27001, NIST, and PCI DSS • Proven ability to design, implement, and maintain security policies and procedures • Confident in managing audits, vendor More ❯

Information Security Consultant (Governance, Risk, Compliance - GRC) Role Summary Our leading multinational client is significantly growing its Cyber Security consulting practice across Europe. We currently require the services of a Security Consultant (Governance, Risk, Compliance - GRC) to strengthen our delivery capability in the security consulting space. Your success will be measured primarily by the quality of delivery and overall client … satisfaction. Key Responsibilities You will be seen by your clients as a professional representative of our firm. You will be responsible for delivering Cyber GRC projects, spanning from client identification and scope definition through to assignment delivery and final billing. You will be responsible for delivering security consulting services to our large enterprise clients. Effectively identify business issues and propose … in a related discipline or equivalent experience. Consulting Experience (4+ years): Demonstrated professional consulting experience of four (4) or more years in the following areas: Enterprise IT Security, Information Governance and Cyber Security. Technology Risk Management. Compliance. Business Continuity/Disaster Recovery (DR). Cloud Security. Standards Knowledge: Experience delivering projects utilising recognised security frameworks, standards and methodologies such as More ❯