1 to 25 of 95 Remote GRC Jobs in England

you possess the following?: Proven related experience in cybersecurity risk management in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯

you possess the following?: Proven related experience in cybersecurity risk management in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯

you possess the following?: Proven related experience in cybersecurity risk management in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯

you possess the following?: Proven related experience in cybersecurity risk management in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯

a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building out a brand-new Governance, Risk, and Compliance (GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will … own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership: Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy … on cybersecurity at the board and executive level. Communicate risk posture, security investments, and incident updates clearly and confidently. Team Building: Build and lead a high-performing security and GRC team. Provide leadership, mentoring, and continuous development. Security Architecture & Technology: Guide the evaluation, adoption, and deployment of security tools and technologies that support the company’s security strategy. Security Culture More ❯

a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building out a brand-new Governance, Risk, and Compliance (GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will … own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership: Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy … on cybersecurity at the board and executive level. Communicate risk posture, security investments, and incident updates clearly and confidently. Team Building: Build and lead a high-performing security and GRC team. Provide leadership, mentoring, and continuous development. Security Architecture & Technology: Guide the evaluation, adoption, and deployment of security tools and technologies that support the company’s security strategy. Security Culture More ❯

a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building out a brand-new Governance, Risk, and Compliance (GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will … own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership: Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy … on cybersecurity at the board and executive level. Communicate risk posture, security investments, and incident updates clearly and confidently. Team Building: Build and lead a high-performing security and GRC team. Provide leadership, mentoring, and continuous development. Security Architecture & Technology: Guide the evaluation, adoption, and deployment of security tools and technologies that support the company’s security strategy. Security Culture More ❯

energy and the security of private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated Information Security Governance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our information security governance and risk management framework. This role is essential in ensuring the organisation … internal compliance communications Job Requirements Previous progressive experience in information security risk management, risk management, or compliance Strong understanding of information security frameworks (e.g., ISO 27001, NIST) Experience with GRC tools/platforms Excellent organisational, communication, and documentation skills Ability to work independently and cross-functionally in a fast-paced environment Industry certifications such as CISA, CRISC, CISSP, CISMis preferred More ❯

a SOC environment. - Familiarity with risk management frameworks?(e.g. ISO 27005, NIST RMF). - Excellent communication and reporting skills. - Relevant certifications (e.g. CISSP, CISM, CRISC, CEH). - Experience with GRC tools and risk registers. - Knowledge of regulatory requirements and data protection laws. This is a full time role on a temporary basis. If you are interested in the role please More ❯

verbal communication abilities, with a focus on clear reporting and stakeholder engagement. Possession of industry-recognised certifications such as CISSP, CISM, CRISC, or CEH would be preferred. Familiarity with Governance, Risk, and Compliance (GRC) platforms and maintaining structured risk registers. Understanding of applicable regulations and data protection legislation, including GDPR and other industry-specific mandates. What you'll get in More ❯

INFORMATION SECURITY GRC SPECIALIST Buckinghamshire | Hybrid Working (Flexible Days) Contract: Permanent Salary: Up to £65,000 + BONUS Reports to: GRC Manager Individual Contributor Role – No Direct Reports Are you a security governance expert looking to play a crucial role in an evolving and high-impact environment? We are seeking an Information Security GRC Specialist to join our InfoSec Governance … Risk and Compliance (GRC) team. In this role, you’ll help protect the confidentiality, integrity, and availability of our information assets by embedding best-in-class governance practices, assessing risk, and ensuring compliance with key industry standards like ISO27001. You'll work across the business as a trusted security advisor, helping teams understand and manage their risk profile and compliance … obligations. What You’ll Bring A strong understanding of the current threat landscape, security risks, and compliance standards. Extensive experience in information security, ideally within a GRC or risk management role. Experience delivering risk assessments and managing compliance against standards like ISO27001. Skilled in writing and implementing security policies, standards, and procedures. Working knowledge of frameworks such as ISF, NIST More ❯

AVP, IT Security Specialist - RSA Archer, NIST, GRC - London - Hybrid Join a leading security governance and risk team as an AVP, IT Security Specialist . You'll play a key role in ensuring robust security controls, compliance, and continuous risk reduction across a regulated enterprise environment. Key Responsibilities: Maintain and evolve security policy, standards, procedures, and frameworks Align security practices … stakeholders Key Skills & Experience: Minimum 2 years' experience in Information or Cyber Security, ideally in financial services Solid understanding of security risk management principles and taxonomy Working knowledge of GRC platforms - RSA Archer preferred Familiarity with NIST CSF , NIST 800-53 , ISO 27001 , SOC 1 & 2 Good written and verbal communication skills for technical and non-technical stakeholders Strong documentation More ❯

d love to hear from you. About You We'd love to hear from you if you can demonstrate expertise in at least one of the following areas : Security governance, risk and compliance (GRC), aligned with HMG cybersecurity and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding More ❯

such as ISO 27005, NIST RMF , or similar. Available to start immediately or within short notice . Bonus Points For: Certifications: CISSP, CISM, CRISC, CEH or equivalent. Experience using GRC tools and managing risk registers. Understanding of UK GDPR and data protection best practices. Interested? Apply now or message me directly to discuss. More ❯

such as ISO 27005, NIST RMF , or similar. Available to start immediately or within short notice . Bonus Points For: Certifications: CISSP, CISM, CRISC, CEH or equivalent. Experience using GRC tools and managing risk registers. Understanding of UK GDPR and data protection best practices. Interested? Apply now or message me directly to discuss. More ❯

line team member, you will collaborate closely with the Information Security Manager to safeguard the organisation against cyber, information, physical, and technical security risks. Your expertise will drive robust governance frameworks, policy management, and compliance with industry standards, ensuring the protection of our systems, suppliers, and people. You’ll play a key role in ensuring the systems, suppliers, and people More ❯

and confirm effectiveness. Assess IT controls of third-party vendors and serviceproviders, ensuring compliance with contractual andregulatory obligations. Support vendor risk management activities by evaluatingthird-party cybersecurity and IT governance controls. Document findings and control weaknesses, ensuring theyare communicated clearly to relevant stakeholders. Work with control owners and process teams to developand track remediation plans for identified deficiencies,ensuring timely … environments,DevSecOps practices, and digital payment platforms. Proven ability to perform test of controls (design andoperating effectiveness) Strong understanding of operational processes, riskframeworks, and regulatory requirements. Proficiency in using governance, risk, and compliance(GRC) tools and control testing platforms. Familiarity with IT control frameworks such as NISTCybersecurity Framework, ISO 27001, and COBIT. Proficiency with GRC platforms and testing tools (e.g. More ❯

Role Overview: Join a dynamic, international team of Information Security and IT professionals at Spirax Group plc as a Group IT Assurance Manager . Reporting to the Group IT GRC Manager and leading a small team, you will play a pivotal role in ensuring IT compliance across global operations. This permanent position is central to the delivery of the Group … s Corporate Governance Code reforms, known as G3 for IT, and will support the business in meeting its compliance, privacy, and risk reduction goals. Your objectives and responsibilities will focus on Leading the delivery of IT General Controls (G3 for IT) testing and assurance reporting. Managing the testing schedule using GRC audit tools (e.g., TeamMate) and prioritising control assessments. Providing … and frameworks such as ISO 27001, NIST CSF, CIS Controls, or SCF. Understanding of cloud security, third-party risk, and regulatory standards (e.g., GDPR, UK DPA2018). Experience using GRC tools for internal and third-party risk management. Desirable certifications such as ISACA CISA or CRISC. To be successful in this role you will Demonstrate Company Core Values at all More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

heart of the global economy! The Department for Business and Trade ('DBT') and Inspire People are partnering together to bring you an exciting opportunity for the Head of Cyber Governance, Risk and Compliance playing a pivotal role in shaping the success of the Cyber function and service. Salary between £71,738 to £93,864 (including allowances) plus excellent Civil Service … dependent on location and technical skills as assessed at interview. Flexible, hybrid working from London, Cardiff, Darlington, Belfast, Birmingham, Salford and Edinburgh. About the role As Head of Cyber Governance, Risk and Compliance (GRC) you will be playing a pivotal role in shaping the success of the Cyber function and service by ensuring that cyber security risks are monitored and … lead a team of security specialists, sharing best practice widely across government, the public sector, and wider industry. The role holder will ensure the effective delivery of a Security Governance Risk and Compliance function for a complex delivery environment, with numerous third-party suppliers providing our technical services and will be responsible for setting the vision and strategy for cyber More ❯

can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of … and expand consulting capabilities in line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through … the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A commitment to knowledge sharing, with the ability to mentor and uplift team capabilities. Excellent communication More ❯

can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of … and expand consulting capabilities in line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through … the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A commitment to knowledge sharing, with the ability to mentor and uplift team capabilities. Excellent communication More ❯

Job Title: Senior IT Governance Analyst Location: Hybrid – 3 Days Onsite (Leeds or Manchester) Salary: £50,000 – £60,000 + Benefits About the Role: We're working with a growing organisation seeking an experienced Senior IT Governance Analyst to join their Information Security team. This is a key role responsible for overseeing IT governance processes, managing audit activity, and ensuring … risk controls are in place and effective. You'll work across the business to coordinate internal and external audits, support compliance efforts, and maintain a strong governance framework in line with recognised standards. Key Responsibilities: Lead the coordination of IT-related audits – internal and external, including audit readiness, stakeholder engagement, and managing action plans. Maintain and update IT risk assessments … internal controls, and associated governance documentation. Provide expert feedback to control owners, supporting remediation efforts and assessing mitigation strategies. Review control deficiencies and guide the development of effective, sustainable solutions. Partner with stakeholders across IT and the business to embed good governance and risk practices. Own and evolve the IT Risk Management Framework, working closely with the Enterprise Risk team. More ❯