101 to 125 of 193 GRC Jobs in England

Salary: £45,000 - £60,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments … experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well … being. Take the next step in your career as a GRC Specialist/Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management More ❯

Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments … experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well … being. Take the next step in your career as a GRC Specialist/Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management More ❯

Cyber Consultant - Governance, Risk & Compliance (MOD/Defence - SC) Location: Remote/Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi More ❯

into a pivotal role where your skills and insights will help shape the security posture of a leading energy distribution company. You'll report directly to the Cyber Security Governance, Risk & Compliance Manager and play a vital part in safeguarding essential business operations from evolving cyber threats. The role is dynamic and collaborative, involving close teamwork with a group of … GRC professionals and expert partners. You'll mentor less experienced analysts, offer guidance and training, and occasionally deputise for the GRC Manager, representing UK Power Networks at industry forums and regulatory working groups. Communication is at the heart of this position; you'll interact regularly with senior management across IT, IS, and the broader business, as well as with auditors … are also addressed. You'll produce management information and regulatory submissions, maintain compliance with major standards like ISO 27001/27002, and provide assurance for policy compliance. Establishing robust GRC policies and procedures, developing the IT controls framework, and supporting business continuity and disaster recovery planning will all fall under your remit. You'll operate and improve our information security More ❯

practice growth. What You’ll Be Doing Delivering cyber strategies, risk assessments, and maturity roadmaps aligned to client business goals Supporting clients through large-scale cyber transformation programmes Designing governance frameworks and operating models to improve resilience and compliance Managing multi-disciplinary delivery teams across complex environments Building trusted relationships with senior stakeholders and supporting client decision-making Mentoring junior … focus on cyber security strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

practice growth. What You’ll Be Doing Delivering cyber strategies, risk assessments, and maturity roadmaps aligned to client business goals Supporting clients through large-scale cyber transformation programmes Designing governance frameworks and operating models to improve resilience and compliance Managing multi-disciplinary delivery teams across complex environments Building trusted relationships with senior stakeholders and supporting client decision-making Mentoring junior … focus on cyber security strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

practice growth. What You’ll Be Doing Delivering cyber strategies, risk assessments, and maturity roadmaps aligned to client business goals Supporting clients through large-scale cyber transformation programmes Designing governance frameworks and operating models to improve resilience and compliance Managing multi-disciplinary delivery teams across complex environments Building trusted relationships with senior stakeholders and supporting client decision-making Mentoring junior … focus on cyber security strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

practice growth. What You’ll Be Doing Delivering cyber strategies, risk assessments, and maturity roadmaps aligned to client business goals Supporting clients through large-scale cyber transformation programmes Designing governance frameworks and operating models to improve resilience and compliance Managing multi-disciplinary delivery teams across complex environments Building trusted relationships with senior stakeholders and supporting client decision-making Mentoring junior … focus on cyber security strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

practice growth. What You’ll Be Doing Delivering cyber strategies, risk assessments, and maturity roadmaps aligned to client business goals Supporting clients through large-scale cyber transformation programmes Designing governance frameworks and operating models to improve resilience and compliance Managing multi-disciplinary delivery teams across complex environments Building trusted relationships with senior stakeholders and supporting client decision-making Mentoring junior … focus on cyber security strategy and transformation Knowledge of key frameworks and standards such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF Practical expertise in areas such as GRC, security architecture, threat management, or vulnerability management Excellent communication skills with the ability to influence a wide range of stakeholders Proven project management and delivery experience in complex client environments More ❯

We are seeking a PMO Analyst/Project Manager to join the programme’s Governance, Risk & Compliance (GRC) function, with a specific focus on project and enterprise risk. This role will work closely with the Risk Lead to support the effective management of risks across the programme, ensuring robust tracking, analysis, and reporting. The successful candidate will have a PMO … P3M background with demonstrable experience in risk management, ideally within large or complex programmes. Key Responsibilities Support the implementation and ongoing management of programme-wide risk frameworks within the GRC function. Manage the day-to-day operation of project and programme risk registers, ensuring risks are accurately logged, categorised, and updated with appropriate mitigations. Conduct detailed risk assessments at project … and workstream level, escalating critical risks as required. Produce clear and concise risk reporting and dashboards to inform programme governance and senior stakeholder decision-making. Facilitate risk workshops, engaging delivery teams to capture risks and build stronger risk awareness across the programme. Provide practical recommendations on risk treatment, control measures, and contingency planning. Deputise for the Risk Lead where required More ❯

Job summary We are seeking an Information Governance & Cyber Security Manager to lead the second line of defence across Information Governance, Cyber Security, Quality, and Digital Clinical Safety. In this role, you will oversee the operational delivery of InHealths management systems, ensuring compliance, accountability, and consistency across the business. You will provide strong leadership, manage a dedicated team, and play … a key part in driving governance priorities that protect our patients, staff, and services. This is a pivotal position for someone who is enthusiastic, motivated, and passionate about embedding high standards of quality and security across a healthcare organisation. This is a full-time permanent role, working remotely. There will be travel to InHealth sites as part of the role. … Main duties of the job Information Governance: Oversee policy frameworks, DPIAs, DSAs, and regulatory compliance, and lead the Data Security Protection Toolkit return. Cyber Security: Manage security policies, lead ISO 27001 certification, embed data security practices, and oversee incident response. Digital Clinical Safety: Maintain digital clinical safety policies (DCB0129/0160), ensure training compliance, and support safety case documentation. Quality More ❯

remediation, certification readiness, and continual improvement. You'll input and collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of information security governance, risk management, and compliance Key Responsibilities Supporting ISO 27001 implementation projects from initial assessment through to certification Conduct gap analysis tailored to private sector risk profiles and commercial priorities Facilitate risk assessments More ❯

remediation, certification readiness, and continual improvement. You'll input and collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of information security governance, risk management, and compliance Key Responsibilities Supporting ISO 27001 implementation projects from initial assessment through to certification Conduct gap analysis tailored to private sector risk profiles and commercial priorities Facilitate risk assessments More ❯

This VP Sales role is working for a rapidly-growing SaaS business within the GRC (Governance, Risk & Compliance) space, which (despite how it may sound) is an increasingly exciting, evolving & growing sector. Your primary responsibility will be to manage & grow their UK sales team (both AE's & Account Managers) in a typical Sales Leader role. Alongside managing the current personnel … new approaches (i.e. they don't have any alliance/channel partnerships) Key Experience Must have led & scaled a SaaS sales team, ideally within a fast-paced, scaleup environment GRC experience would be a definite advantage, but not a prerequisite. Ideally, you'll be well versed with managing Enterprise, Mid Market & SMB Account Executives You'll have a track record More ❯

and care system and to provide advice which empowers health and care staff to share information appropriately and securely to deliver care. The JCU is comprised of two divisions: Governance, Risk and Compliance - cyber and information governance, system engagement, system compliance, system supply chain, system risk management and internal JCU business operations. Strategy and Policy - development and implementation of national More ❯

for the Principal Security Architect, and represent security in wider forums. Support and develop the Enterprise Security Architecture team through career progression, coaching, and collaboration with Security Operations and GRC functions. Who we are looking for Extensive experience in Enterprise Security Architecture, hands-on technical security, and the design and implementation of security solutions Proficient in security modelling, frameworks, and … tools (e.g., SparxEA, Archi) with deep knowledge of security principles, methodologies, and industry standards (NIST, ISO 27001, PCI-DSS, GDPR) Skilled in threat and risk modelling, governance, and aligning security controls with business strategy, regulation, and technical constraints Stakeholder engagement and communication skills, with experience in both Agile and Waterfall environments; holds or is pursuing certifications such as SABSA, CISSP More ❯

What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to achieve and maintain compliance with PCI, GDPR, SOC2, and ISO27001. Vendor Security : Spearheading due diligence and monitoring of third parties, integrated with our … Vendor Governance Forum. Policies & Assurance : Defining and enforcing security standards, collaborating with IT Ops and Platform Engineering on execution, and providing assurance to stakeholders, customers, and regulators. Risk Management : Escalating material risks directly to the CTO and other risk functions. Culture & Training : Promoting a secure-by-design culture through training, awareness, and best practices across the company. What we're … program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a Security Operations function, managing monitoring, incident response, and vulnerability management. Driving GRC : You're an expert in managing compliance frameworks such as PCI, GDPR, SOC2, and ISO 27001, and you're skilled at preparing for audits. Vendor Security : You have led vendor More ❯

us as a Senior Manager for Cyber Policies and Controls and help shape the future of cybersecurity across Vodafone. In this global role, you'll lead the development and governance of our Cyber and Information Security policies, standards, and control frameworks-ensuring they reflect industry best practices and align with our risk appetite. You'll collaborate with senior stakeholders across … Your leadership will extend to our Cyber education and awareness programme, where you'll champion a strong security culture through engaging training, testing, and communications.As part of the Cyber Governance, Risk and Control (GRC) leadership team, you'll also help shape the strategic direction of both GRC and the wider Cyber function, contributing to our long-term roadmap and technology … priorities. Role title: Senior Manager, Cyber Policies and Controls Function: Group Technology Band: F Department: Cyber Security Reports to: Global Head of Cyber Governance, Risk & Controls Location: Newbury/Paddington Who you are We're looking for someone who brings: Broad technical knowledge of cybersecurity and controls, ideally with exposure to cloud and telecoms security Deep expertise in policy, control More ❯

Main Purpose: To act as a Subject Matter Expert (SME) in AI and Digital Resilience within Financial Services, delivering advisory and managed services across risk modelling, fraud detection, AI governance, compliance, and operational resilience. Key Responsibilities: AI in Financial Services Design and implement AI-driven solutions for risk modelling, financial fraud detection, AI governance, and regulatory compliance. Advise clients on … responsible AI adoption, model validation, and regulatory obligations. Support AI governance frameworks ensuring ethical, explainable, and compliant use of AI across financial services. Digital Operational Resilience (DORA) Deliver gap assessments, compliance roadmaps, and incident response readiness programmes aligned to the EU Digital Operational Resilience Act (DORA). Advise financial institutions on resilience testing, regulatory reporting, and ICT risk management. Support … Financial Services consulting or advisory roles. Strong understanding of AI applications in finance, particularly in fraud detection, credit risk, and regulatory compliance. Experience with AI governance frameworks, model risk management, and compliance standards. Knowledge of operational resilience frameworks, including DORA, PRA/FCA resilience requirements, or similar regulations. Track record of delivering gap assessments, resilience testing, and regulatory readiness programmes. More ❯

Main Purpose: To act as a Subject Matter Expert (SME) in AI and Digital Resilience within Financial Services, delivering advisory and managed services across risk modelling, fraud detection, AI governance, compliance, and operational resilience. Key Responsibilities: AI in Financial Services Design and implement AI-driven solutions for risk modelling, financial fraud detection, AI governance, and regulatory compliance. Advise clients on … responsible AI adoption, model validation, and regulatory obligations. Support AI governance frameworks ensuring ethical, explainable, and compliant use of AI across financial services. Digital Operational Resilience (DORA) Deliver gap assessments, compliance roadmaps, and incident response readiness programmes aligned to the EU Digital Operational Resilience Act (DORA). Advise financial institutions on resilience testing, regulatory reporting, and ICT risk management. Support … Financial Services consulting or advisory roles. Strong understanding of AI applications in finance, particularly in fraud detection, credit risk, and regulatory compliance. Experience with AI governance frameworks, model risk management, and compliance standards. Knowledge of operational resilience frameworks, including DORA, PRA/FCA resilience requirements, or similar regulations. Track record of delivering gap assessments, resilience testing, and regulatory readiness programmes. More ❯

Job Title: Governance, Risk & Compliance Specialist Type: Full Time & Permanent Location: Hybrid/Manchester Salary: £55,000 per annum About the Role: We are seeking an experienced GRC professional to strengthen information security and compliance posture. This role is ideal for someone with a strong background in governance frameworks, risk management, and regulatory compliance, who can work collaboratively across business … the highest standards of data protection and operational resilience. This is an opportunity to help a growing security department, intent on delivering services to the wider group. Key Responsibilities: Governance: Develop, implement, and maintain security and compliance policies aligned with business objectives. Risk Management: Identify, assess, and mitigate information security and operational risks across the enterprise. Compliance: Ensure ongoing compliance … Support internal and external audits, producing clear reports and recommendations. Awareness: Promote a culture of compliance and risk awareness through training and engagement initiatives. Essential Skills: Proven experience in governance, risk, and compliance within a technology-driven environment. Strong knowledge of ISO 27001, GDPR, and risk management methodologies. Ability to interpret and apply regulatory requirements to business processes. Excellent communication More ❯

Job Title: Governance, Risk & Compliance Specialist Type: Full Time & Permanent Location: Hybrid/Manchester Salary: £55,000 per annum About the Role: We are seeking an experienced GRC professional to strengthen information security and compliance posture. This role is ideal for someone with a strong background in governance frameworks, risk management, and regulatory compliance, who can work collaboratively across business … the highest standards of data protection and operational resilience. This is an opportunity to help a growing security department, intent on delivering services to the wider group. Key Responsibilities: Governance: Develop, implement, and maintain security and compliance policies aligned with business objectives. Risk Management: Identify, assess, and mitigate information security and operational risks across the enterprise. Compliance: Ensure ongoing compliance … Support internal and external audits, producing clear reports and recommendations. Awareness: Promote a culture of compliance and risk awareness through training and engagement initiatives. Essential Skills: Proven experience in governance, risk, and compliance within a technology-driven environment. Strong knowledge of ISO 27001, GDPR, and risk management methodologies. Ability to interpret and apply regulatory requirements to business processes. Excellent communication More ❯

Job Title: Governance, Risk & Compliance Specialist Type: Full Time & Permanent Location: Hybrid/Manchester Salary: £55,000 per annum About the Role: We are seeking an experienced GRC professional to strengthen information security and compliance posture. This role is ideal for someone with a strong background in governance frameworks, risk management, and regulatory compliance, who can work collaboratively across business … the highest standards of data protection and operational resilience. This is an opportunity to help a growing security department, intent on delivering services to the wider group. Key Responsibilities: Governance: Develop, implement, and maintain security and compliance policies aligned with business objectives. Risk Management: Identify, assess, and mitigate information security and operational risks across the enterprise. Compliance: Ensure ongoing compliance … Support internal and external audits, producing clear reports and recommendations. Awareness: Promote a culture of compliance and risk awareness through training and engagement initiatives. Essential Skills: Proven experience in governance, risk, and compliance within a technology-driven environment. Strong knowledge of ISO 27001, GDPR, and risk management methodologies. Ability to interpret and apply regulatory requirements to business processes. Excellent communication More ❯

Location: Hybrid - South West Office Location Salary: £65,000–£70,000 (dependant on experience) + benefits Start: ASAP We’re looking for an IT Assurance Officer to strengthen our governance, risk, and compliance capabilities across a complex, modern IT landscape. You’ll help design, test, and continuously improve the controls that keep our business secure, resilient, and audit-ready—working … performance, KRIs/KPIs, and risk posture. Champion awareness and continuous improvement across the organisation. What you’ll bring: 3–5+ years in IT assurance, audit, risk, or security governance (industry or Big 4/consulting). Hands-on experience testing/designing IT controls and managing remediation. Working knowledge of ISO 27001/2, NIST, COBIT, CIS Controls, and … skills; comfortable influencing at pace. Desirable certifications: CISA , ISO 27001 Lead Implementer/Auditor , CRISC , or similar. Nice to have: Experience in regulated or multi-site organisations. Exposure to GRC tooling (e.g., ServiceNow GRC, Archer) and audit management. SOX controls understanding and/or analytics/reporting (e.g., Power BI). What’s on offer: Competitive base + bonus, pension More ❯

Location: Hybrid - South West Office Location Salary: £65,000–£70,000 (dependant on experience) + benefits Start: ASAP We’re looking for an IT Assurance Officer to strengthen our governance, risk, and compliance capabilities across a complex, modern IT landscape. You’ll help design, test, and continuously improve the controls that keep our business secure, resilient, and audit-ready—working … performance, KRIs/KPIs, and risk posture. Champion awareness and continuous improvement across the organisation. What you’ll bring: 3–5+ years in IT assurance, audit, risk, or security governance (industry or Big 4/consulting). Hands-on experience testing/designing IT controls and managing remediation. Working knowledge of ISO 27001/2, NIST, COBIT, CIS Controls, and … skills; comfortable influencing at pace. Desirable certifications: CISA , ISO 27001 Lead Implementer/Auditor , CRISC , or similar. Nice to have: Experience in regulated or multi-site organisations. Exposure to GRC tooling (e.g., ServiceNow GRC, Archer) and audit management. SOX controls understanding and/or analytics/reporting (e.g., Power BI). What’s on offer: Competitive base + bonus, pension More ❯