1 to 25 of 153 Permanent GRC Jobs in the UK

Technology Governance Lead (Risk, Compliance & Security) London Hybrid Up to £80,000 plus excellent bens We are looking for a Technology Governance Lead to drive a proactive, secure-by-default, and compliant-by-design culture across our technology organisation. Reporting to the Head of IT Transformation, this role will take … ownership of technology risk, cyber governance, security oversight, and compliance assurance across platforms, delivery teams, and third-party services. This is a strategic and hands-on leadership role focused on improving governance maturity, strengthening resilience, enhancing audit outcomes, and ensuring technology risks are clearly understood, managed, and communicated across ...

embody: Innovation to solve the hardest problems. Accountability for every result. Integrity always. About The Role As a Senior Security Consultant within the Governance, Risk & Compliance (GRC) practice, you will lead and deliver a broad range of cybersecurity, governance, risk and assurance engagements across both public and private sector organisations. … work closely with client stakeholders at all levels, helping organisations strengthen their security posture, manage cyber risk, improve compliance maturity and implement pragmatic security governance frameworks aligned to business objectives. The successful candidate will possess strong experience across information security governance, risk management, security compliance and assurance activities, with practical ...

GRC Analyst – Information Security London – Hybrid £50,000 - £55,000 + Bonus VIQU has partnered with a leading transport organisation to recruit a GRC Analyst to join their Finance and Information Security team. This is a fantastic opportunity for a GRC Analyst to take ownership of established governance frameworks, policies … and risk processes within a highly regulated environment. The GRC Analyst will play a key role in maintaining compliance, supporting audits, and embedding a strong risk-aware culture across the business. Key Responsibilities of the GRC Analyst: Support and maintain the organisation’s risk management framework, including risk identification, assessment ...

environments. You will hold a detailed understanding of one or more of the following aspects of cloud security: security architecture, security operations, security engineering, governance, risk and compliance. Requirements Must be a British citizen to meet compliance and security clearance requirements. Bachelor’s degree or equivalent practical experience. 10 years ...

Role: Governance Risk and Compliance Lead Salary: Up to £95,000 + bonus + package Location: London (Hybrid) Essential Skills: • Strong GRC background. • Governance , Risk and Compliance background. • Experience in conducting risk assessments. • PCI DSS , ISO 27001, NIS 2 and the UK telecom Security Act. • Good understanding of Telecom security … threats. • Excellent communication skills. If you are interested in this Governance Risk and Compliance Lead position and meeting the above requirements please apply immediately. #J-18808-Ljbffr ...

established UK business during a key phase of growth and investment, to recruit a GRC Analyst. This is a role centred around governance, risk management, and compliance, working closely with stakeholders across the business to strengthen frameworks, ensure controls are effective, and support ongoing audit and regulatory requirements. … looking to build a career in GRC, gaining exposure to risk, audit, and compliance within a growing organisation that is investing in its security and governance capability. Apply today with your most up-to-date CV! BH35513 ...

opportunity qualification and pipeline management. Drive and determination to take on our challenge of scaling our services. Deep understanding of cybersecurity technologies, privacy frameworks, GRC and risk management within enterprise settings. Evidence of client handling skills, commercial acumen, and the ability to spot opportunities and risks. Intellectual curiosity, structured thinking ...

ecommerce — ideally cross‐border or merchant‐of‐record. Prior experience standing up or scaling a security program at a growth‐stage company. Familiarity with GRC/continuous compliance platforms (e.g., Vanta, Drata, Secureframe). AWS experience (our primary cloud) and Atlassian suite (Jira, Confluence) for workflow and documentation. Formal people ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

number of varying consultancy assignments. Due to the potential variety in assignments your responsibilities will range from developing security architectures, to providing guidance on GRC activities. Other responsibilities will include: Providing security expertise for major system procurements and Agile programmes to ensure secure delivery; Identifying, analysing and evaluating information risks ...

fine‐tuning techniques Familiarity with distributed computing frameworks (eg Spark) Knowledge of graph neural networks, reinforcement learning, or causal inference Experience with AI governance, model risk management, and regulatory compliance Experience using Pro code and Low code tools such as LangGraph, AutoGen, Semantic Kernal and MS CoPilot Experience ...

and how to map technical solutions to business value. Ability to work collaboratively with cross‐functional teams and manage multiple projects simultaneously. Experience in GRC (Governance, Risk, and Compliance) is a strong plus. Relevant certifications (e.g., CISSP, CISM, AWS Certified Solutions Architect/Azure Solution Architect Professional/Google Professional ...

vulnerability management. Supplier and third-party risk assessment. Lead and participate in cyber incident response exercises and real incidents, ensuring lessons learnt are embedded. Governance, Risk & Compliance Own cyber risk management and contribute to the enterprise risk register. Ensure compliance with relevant standards and frameworks (e.g. ISO 27001, NIST, Cyber ...

Present technical information and recommendations clearly to senior managers and Chief Officers. * Deliver a high standard of customer service while maintaining professionalism and confidentiality. Governance, Risk & Compliance * Ensure compliance with policies, legislation, and security standards, including data protection and organisational requirements. * Identify and manage technical risks and support issue resolution ...

fine‐tuning techniques Familiarity with distributed computing frameworks (eg Spark) Knowledge of graph neural networks, reinforcement learning, or causal inference Experience with AI governance, model risk management, and regulatory compliance Experience using Pro code and Low code tools such as LangGraph, AutoGen, Semantic Kernal and MS CoPilot Experience ...

and excellent benefits. Candidates must have SC or DV Clearance and substantial experience in cyber security and information assurance. You will lead engagements in governance, risk, and compliance on diverse programs while contributing to consultancy growth. Certification in CISSP or CISM is highly desirable. #J-18808-Ljbffr ...

technical and non-technical stakeholders, providing clear accreditation outcomes and rationale Contribute to continuous improvement of accreditation processes Profile Proven expertise in information security GRC or accreditation process Strong understanding of information security framework/standards like ISO27001, NIST, CREST, CAF Understanding of software development life cycle is preferred Strong ...

will be a key member of our growing Security Engineering team, working at the intersection of our Infrastructure, Cross-Cutting, Information Security, and GRC teams. At Engine, we believe security should be at the heart of every technical process, not an afterthought. You won’t work in a silo ...

and wider Defence environments. The Role As a Lead Cyber Security Consultant, you'll take ownership of multiple client engagements, delivering expert advice across governance, risk, compliance, and Secure by Design practices. You'll work closely with senior stakeholders to assess risk, define security controls, deliver assurance activities, and support … across cloud and on-prem platforms Contribute to internal knowledge sharing and thought leadership Experience & Expertise Strong background in Technical/Security Architecture or Governance, Risk & Compliance Experience working in Defence/MOD environments Strong analytical and communication skills, with the ability to influence senior stakeholders Passion for continuous learning ...

and wider Defence environments. The Role As a Lead Cyber Security Consultant, you'll take ownership of multiple client engagements, delivering expert advice across governance, risk, compliance, and Secure by Design practices. You'll work closely with senior stakeholders to assess risk, define security controls, deliver assurance activities, and support … across cloud and on-premise platforms Contribute to internal knowledge sharing and thought leadership Experience & Expertise Strong background in Technical/Security Architecture or Governance, Risk & Compliance Experience working in Defence/MOD environments Strong analytical and communication skills, with the ability to influence senior stakeholders Passion for continuous learning ...

A risk management consultancy is seeking a ServiceNow professional to develop Risk solutions. This role involves designing and configuring ServiceNow applications and requires a recognised degree and ServiceNow CSA certification. You should have at least ...

independent lives. This is a hands on role. Strong technical knowledge of cyber security frameworks, risk management, and regulatory compliance. Experience with security controls, GRC (governance, risk, and compliance) processes, and digital tools such as O365 and SharePoint. DSPT and CAF. Excellent analytical, communication, and mentoring skills. A collaborative mindset … using your expertise to keep our organisation secure. Training & Communication:Deliver specialist training and guidance, making complex information accessible to a wide audience. Reporting & Governance:Develop dashboards, metrics, and reports to inform decision-making and track remediation activities. About us Listen to why colleagues think we are a great place ...

risks. When required, reviewing and auditing managements completion of agreed control enhancement actions (which resulted from previous internal audit findings). Explaining good practice governance, risk management, compliance and internal controls activities during discussions with staff of the Group. Understands and grasps the current and developing regulatory and legislative rules ...

systems thinking approach; you design enablement with learner needs and real-world application at the center. Huge plus if you are familiar with the GRC/Security space or have worked in a highly technical environment. Open to using AI to amplify their skills and strengthen their work - demonstrating curiosity ...

enterprise risk appetite into an actionable, outcome-driven security strategy; and support the multi-year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure “secure-by-default” across cloud, application, data, identity, and infrastructure landscapes. … drive constant improvement. Drive secure-by-design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee ...