6 of 6 Remote Permanent Information Security Governance Jobs

based asset managers and other wealth related businesses. Due to this Titan Wealth is expanding rapidly through strategic acquisitions, offering a unique combination of start-up energy and the security of private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated Information Security Governance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our information security governance and risk management framework. This role is essential in ensuring the organisation proactively manages information security risk across its employees, technologies, vendors, and operations and adheres to the regulatory and security standards pertinent to financial … services while providing visibility to key stakeholders. Job Responsibilities Support the development, maintenance, and enforcement of information security policies, procedures, and standards Conduct risk assessments on technology systems, third-party vendors, and new services. Drive, monitor and track remediation efforts related to incidents, assurance internal audits, external audits, and security assessments Strong stakeholder management skills, working closely More ❯

the application button which will direct you to our careers site. If you require any adjustments to assist you in applying, please contact We are looking for a proactive Information Security Risk Analyst to join our dynamic Information Security Team. In this role, you will play a crucial part in strengthening our governance, risk, and … compliance initiatives related to information security. Your efforts will help ensure our organisation meets regulatory standards, effectively manages security risks, and maintains a robust security posture to safeguard our customers and sensitive data. We welcome candidates from all backgrounds to apply and contribute to our diverse and inclusive team. Here’s a taste of what you will … be doing as a Risk Analyst at Nottingham Building Society: - Framework Development: Develop and maintain the organisation’s information security governance, risk, and compliance framework. Risk Assessments: Conduct risk assessments to identify vulnerabilities, focusing on protecting customer data and financial systems. Regulatory Compliance: Ensure compliance with regulations and standards like GDPR, ISO 27001, CQuest, SOC 2, and More ❯

the application button which will direct you to our careers site. If you require any adjustments to assist you in applying, please contact We are looking for a proactive Information Security Risk Analyst to join our dynamic Information Security Team. In this role, you will play a crucial part in strengthening our governance, risk, and … compliance initiatives related to information security. Your efforts will help ensure our organisation meets regulatory standards, effectively manages security risks, and maintains a robust security posture to safeguard our customers and sensitive data. We welcome candidates from all backgrounds to apply and contribute to our diverse and inclusive team. Here’s a taste of what you will … be doing as a Risk Analyst at Nottingham Building Society: - Framework Development: Develop and maintain the organisation’s information security governance, risk, and compliance framework. Risk Assessments: Conduct risk assessments to identify vulnerabilities, focusing on protecting customer data and financial systems. Regulatory Compliance: Ensure compliance with regulations and standards like GDPR, ISO 27001, CQuest, SOC 2, and More ❯

tasks are the following: Providing counsel on all aspects of cybersecurity incident prevention and response, including customer and regulatory notifications, contractual obligations, and legal risk mitigation, to cyber and information security stakeholders. Advising business stakeholders on regulatory inquiries regarding cyber and information security issues and/or events. Instructing Citi's Cybersecurity Fusion Center and Citi … s business lines on legal risks associated with various components of Citi's cyber and information security program, including matters involving incident response strategies, incident investigations, and regulatory compliance. Tracking existing and proposed cybersecurity rules and regulations (such as DORA and the EU Cyber Resilience Act) and advising on legal interpretations in order to inform a compliance strategy. … and initiatives to provide legal risk mitigation advice. Drafting cybersecurity presentations, exercises, and trainings, as well as presenting and participating as needed. Counseling on the development and implementation of information security governance. Updating cybersecurity policies, playbooks, and procedures. What we'll need from you We are looking for an attorney who has experience advising clients on cybersecurity issues More ❯

Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the Information Security team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process … is governed effectively, to ensure that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that … meet the clients defined policies and standards for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at More ❯

tier global payments business . These roles are being offered to provide interim cover during a parental leave period and will help shape and enforce group-wide technology and information security standards across new business and acquisition areas. Contract Assignment Details: Location: London (Hybrid – 1–2 days onsite per week, flexible) Start Date: August 2025 (August start for … costs come out of your rate) Key Responsibilities: Act as the central policy and standards liaison across business programmes and senior stakeholders Develop, refine, and align internal technology/security policies and control standards Translate global regulatory requirements and frameworks into deployable technical policy Support M&A integration by embedding consistent policy and compliance expectations Maintain oversight of risk … registers and collaborate with third-party risk and legal teams Contribute to continuous improvement and automation of controls Background: Experience in technology risk, cyber security policy, or information security governance Familiarity with frameworks such as NIST, ISO 27001, DORA, and SOX Strong communication and stakeholder engagement skills Prior exposure to global financial services or payments firms More ❯