13 of 13 Remote GRC Jobs in Central London

and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber Risk Management principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯

protection frameworks and global privacy regulations (e.g., GDPR,CCPA). Professional certifications such as from the International Compliance Association (ICA), or other relevant credentials preferred. Technical : Experience with compliance GRC, DPIA, ROPA and privacy management technologies and automation tools.Strong project management skills with experience leading cross-functional initiatives. Team : Strong communication and influencing skills, capable of working with senior leaders More ❯

globally. What You’ll Do Advise executive stakeholders on defining and executing risk-based cyber security strategies. Design and deliver cyber transformation programmes that align with business goals. Define governance frameworks, target operating models, and maturity roadmaps. Support clients in achieving regulatory compliance (e.g., NIS2, GDPR, ISO27001). Lead or support project delivery across multiple sectors and stakeholder levels. What … and team management (Agile or Waterfall). Analytical and lateral problem-solving mindset. Bonus if you have: Security clearance or the ability to obtain it. Hands-on experience across GRC, cyber threat management, or vulnerability management. If you’re ready to work on some of the most pressing and complex cyber challenges facing organisations today and want to do it More ❯

resilience and enable growth. What You’ll Do Advise executives on actionable cyber strategies to support digital transformation Shape and deliver cyber transformation programmes aligned with organisational objectives Design governance and operational models to enhance cyber maturity and regulatory readiness Assess and define risk-based roadmaps that embed cyber security into business operations Work across a range of industries and … of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication skills – written and verbal – with the ability to present to both technical and business stakeholders Consulting: Proven project delivery using Agile and Waterfall More ❯

of defense. Contribute to the evolution of the Technology and Cyber Risk and Control Framework through data-driven insights. Ensure alignment of analytics activities with regulatory expectations and internal governance standards. Drive continuous improvement in risk data quality, reporting processes, and analytics capabilities. The Requirements: Skills: Strong knowledge of risk management frameworks (e.g., NIST, ISO 27001, COBIT) and control environments. … general controls, cyber security principles, and technology risk domains. Proven experience in risk analytics, data visualization, and reporting (e.g., using Power BI, Tableau, or similar tools). Familiarity with GRC platforms and risk data management practices. Experience in a risk management, IT audit, or cyber security role within a financial services or regulated environment. Ability to interpret complex technical data More ❯

Cyber Strategy Manager to lead the design and execution of cyber programmes for complex, large-scale clients. You’ll work directly with C-level stakeholders, shaping cyber operating models, governance structures, and transformation initiatives. Key Responsibilities Own end-to-end delivery of cyber strategy and transformation engagements Define and execute security roadmaps, operating models, and risk frameworks Lead teams delivering … GRC, cyber maturity, and compliance workstreams Communicate with client execs (CISO, CTO, Audit) and manage internal delivery teams Contribute to business development, team mentorship, and capability growth What We’re Looking For 5+ years in cybersecurity or cyber advisory Experience leading cyber transformation in a consulting or enterprise environment Deep understanding of frameworks: NIST, ISO27001, GDPR, NIS2, CAF Track record More ❯

and internal policies across multiple jurisdictions. You will implement compliance programs, monitor adherence, provide risk-based legal advice, and help shape a compliance-focused culture. Key Accountabilities: Compliance and Governance Ensure the organisation adheres to corporate governance standards, codes of conduct and relevant laws across all jurisdictions. Monitor regulatory developments and interpret their relevance and impact on the business, providing … not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and manage internal reporting mechanisms by liaising with internal Global Risk and Compliance (GRC) function. Global Regulatory Compliance Ensure compliance with international legal and regulatory frameworks (e.g. GDPR, FCPA, local employment laws). Liaise with external counsel where jurisdiction-specific advice is needed with More ❯

impact. Create a phased ESG framework that aligns with Helix’s core services, operational structure, and risk profile. Identify KPIs and reporting obligations across environmental performance, social value, and governance maturity. Partner with procurement, IT, HR, and client delivery functions to embed sustainable practices in operations and supply chain. Coordinate with senior leadership and external advisors to establish board-level … impact. Create a phased ESG framework that aligns with Helix’s core services, operational structure, and risk profile. Identify KPIs and reporting obligations across environmental performance, social value, and governance maturity. Partner with procurement, IT, HR, and client delivery functions to embed sustainable practices in operations and supply chain. Coordinate with senior leadership and external advisors to establish board-level … and stakeholder engagement skills. Highly organised with attention to detail. Desirable Certified Internal or Lead Auditor in ISO27001, 9001, 14001, or 45001. NEBOSH or IEMA qualifications. Experience in SaaS, GRC, property compliance, or similarly regulated sectors. Familiarity with compliance platforms (e.g. ISMS.online, Q-Pulse, etc.) Soft Skills Strong communication and problem-solving ability: a proactive, solution-focused approach to diagnosing More ❯

from security gap assessments to crisis simulations, risk frameworks, and technical reviews. Support the development and delivery of both technical (e.g. M365/cloud config reviews, vulnerability assessments) and GRC engagements. Help shape and evolve our cyber propositions , working closely with delivery leads across managed services, threat intel, and MDR. Scope and define client engagements with a clear focus on … deep domain knowledge, consulting experience, and the leadership skills to inspire others. You should have: A track record of consulting and delivering a wide range of cyber engagements — both GRC and technical. Strong understanding of frameworks like NIST, ISO 27001, CIS, and a pragmatic view on applying them. Familiarity with technical tooling for assessments, vulnerability analysis, and cloud reviews (you More ❯

research reports. Understanding of priorities of the chief risk officer including enterprise risk management, integrated risk management, third-party risk management, ESG risk and reputational risk. Deep understanding of Governance, Risk, and Compliance (GRC) software and other risk focused technologies. Additional benefits we offer... Competitive salary (with annual review) Performance-driven quarterly bonus scheme Pension with enhanced employer contribution Generous More ❯

on retail and dining, to health and wellbeing, travel, and technology...and plenty more The Role We are currently recruiting for a Manager to join our existing Data and Information Governance Team. Reporting into the Senior Manager, Information Governance and Deputy Data Protection Officer supporting the further developing of the, dedicated first line capability for information risk, control frameworks and testing … a control framework across a complex infrastructure of product lines, control functions and subsidiaries, enabling effective oversight of information risk. You will develop elements of and implement an Information Governance Framework whilst developing and monitoring various risk controls within the RCSA framework in both Operations and as SME across the business. You will work directly with local 1LoD defence risk … in-depth knowledge and practical experience in the following: - Data Protection - Information Rights - Records Management - Information Risk You will be able to demonstrate evidence of delivering change in Information Governance to create a transparent, but 'privacy aware' compliance culture with proven experience in an operational risk management role in the public or private sector, preferably in financial services. You will More ❯

key focus on providing independent oversight and assurance across a major global finance transformation programme. We’re looking to speak with professionals who specialise in programme assurance and change governance - those who can ensure that large-scale change initiatives meet the highest standards of control, risk management, and compliance. This role will focus on ensuring that the right controls, frameworks … effectively across finance-impacting initiatives. ABOUT THE ROLE: Provide independent oversight and assurance over the IT elements of a global finance transformation programme, ensuring adherence to change control and governance frameworks. Monitor, test, and report on programme compliance with internal controls, highlighting control gaps or areas of non-compliance. Support the design and embedding of sustainable IT change control processes … plans. Collaborate with internal and external auditors as needed, providing evidence and insight into programme assurance activity. ABOUT THE PERSON: Experienced in project assurance, IT controls assurance, or programme governance – ideally within large, complex organisations. Strong understanding of change control frameworks - ICFR/SOX compliance would be advantageous. Able to interpret and apply policy and regulatory standards within a programme More ❯

at KPMG; a diverse business requires diverse personalities, characters, and perspectives. There really is a place for you here. Why Join KPMG as a Manager - IGH GRCS? KPMG's Governance, Risk and Compliance Services (GRCS) practice within IGH is an area of the firm with tremendous growth potential. GRCS is an integral part of our Enterprise Risk advisory practice. We … provide services relating to internal audit, internal control, corporate governance, risk management and related assurance projects. Clients are based in the public sector and our services deliver added value to clients using modern control assessment, risk management and audit techniques focusing on strategic, management and operational issues as well as financial management and reporting controls. We also work closely with … and co-sourced contractual basis • Managing and directly delivering individual and/or a programme of internal audit projects which includes planning, review, quality assurance and reporting • Risk management, governance and internal audit advisory services • Risk identification workshops and control reviews • Delivering control and risk training • Managing and reviewing internal control questionnaires • Compliance internal audits • Working with members of other More ❯