26 to 50 of 190 GRC Jobs in England

to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team Skills/Must have: 5 years in a client-facing information/cyber security/GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience in auditing and implementing security standards such as ISO 27001/2, NIST CSF, and More ❯

Security GRC Consultant - Contract Location: Remote, UK based - occasional trips to London office needed About the Role We’re partnering with a leading cyber security consultancy to find a Security GRC Consultant who can play a pivotal role in strengthening their clients’ security posture. This is an exceptional opportunity for a GRC professional who thrives on shaping policy, embedding governance … alignment between security and business objectives. As a Security GRC Consultant, you’ll act as the crucial link between central security teams and business units, ensuring robust governance, risk management, and compliance practices are not only adopted but embedded across complex environments. What You’ll Do - Act as the primary liaison between security functions and key business stakeholders, ensuring security … requirements are aligned to business priorities.- - Champion the integration of governance, risk, and compliance controls across projects, processes, and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

CEH, GIAC Desirable to understand risk driven architecture such as Sherwood/SABSA/SANS Highly desirable to have exposure to DevSecOps functions. For clarification: This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation More ❯

CEH, GIAC Desirable to understand risk driven architecture such as Sherwood/SABSA/SANS Highly desirable to have exposure to DevSecOps functions. For clarification: This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation More ❯

CEH, GIAC Desirable to understand risk driven architecture such as Sherwood/SABSA/SANS Highly desirable to have exposure to DevSecOps functions. For clarification: This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation More ❯

CEH, GIAC Desirable to understand risk driven architecture such as Sherwood/SABSA/SANS Highly desirable to have exposure to DevSecOps functions. For clarification: This role is NOT GRC, neither is it a SOC role, rather it is more suited to a Security Engineer who has progress to a broader role engaging on multiple concurrent projects, influencing initial idealisation More ❯

Scope of Work for SAP GRC Consultant (Functional) Major duties and responsibilities of the successful candidate are to work with the Authority's system management team to: Recommend appropriate access rights for all projects that require access control in ES(Logs). Assign roles/access based on required authorisation. Validate assigned roles/responsibilities and conduct audits based on … including program, documentation and transport request). Support testing to address system obsolescence. Facilitate security clearance and provisioning of production access for third party contractor. Pre-requisite for SAP GRC Consultant (Functional) Education Qualification The candidate should possess a Degree in Computer Science, Information System, Engineering or Equivalent. Good knowledge of information technology, especially in the areas of SAP related … product and technology implementation. Good knowledge and hands-on experience in using the SAP Authorisation or GRC (Governance, Risk and Compliance) tool. Good knowledge of key integration points between SAP ERP modules. Good planning and coordination skills. Strong writing, verbal communication and presentation skills. Good team player, responsible and conscientious. Resourceful, independent, responsive and proactive. Good understanding of the data More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

Swift now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. We are looking for a GRC Specialist like you to join our growing Information Security Governance (ISG) team. In this role, you will: Develop and implement robust GRC frameworks to ensure compliance with increasingly stringent industry … regulations and standards. Support the reporting and presentation of our GRC activities to internal and external stakeholders, ensuring transparency and accountability. Collaborate with cross-functional security teams to maintain and communicate our Information Security Management System (ISMS). Maintain clear and accurate GRC documentation. Drive continuous improvement in our GRC processes, ensuring they meet regulatory expectations. Provide strategic insights to … senior leadership, enabling data-driven decision-making in a regulated environment. What to expect: You will join a great team of cyber security experts supporting SWIFT Global Security GRC practices. As part of our Governance function, you will work with diverse talented teams committed to excellence: you will work closely with business units, security teams, technology teams and other units. More ❯

testing, operational risk, internal audit, or compliance within a regulated FinTech or financial services environment. Expertise in controls related to financial operations, IT, AML, and data protection. Proficiency in governance, risk, and compliance tools, data analysis, and visualization platforms. Strong communication skills and experience managing regulatory audits. Ability to work across cultures and influence at senior levels. Bachelor's degree More ❯

Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in information security governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for crafting innovative More ❯

and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber Risk Management principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯

and Head of Function. Engage regularly with IT, Security, and Business stakeholders to align risk reporting with organizational objectives. What We’re Looking For: RSA Archer expertise or other GRC tooling Proven experience with NIST or other regulatory-aligned frameworks. Deep understanding of Cyber Risk Management principles. Exceptionally organized, with strong attention to detail and ability to manage multiple priorities. More ❯

indicators for third party relationships Preferred Skills CISSP, CISM, CISA, or CRISC certification preferred Experience in a consulting role or similar position within a technology or cybersecurity Mandatory Skills: GRC Consulting.Experience: 5-8 Years.Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need More ❯

Please visit our careers site to find out more about working at Ki Job Details: Technology Governance Analyst Full details of the job. Vacancy Name: Technology Governance Analyst Employment Type: Permanent Location: London Role Details How insurance is underwritten here hasn't changed in 300 years - until now. At Ki, we are genuinely solving problems that haven't been solved … a risk taxonomy and reference library. Incident & Event Management - Review, analyse, and document internal/external risk events; support risk assessments, control testing, and vendor assurance processes. Risk Controls & Governance - Develop and maintain governance frameworks, policies, and IT controls; manage compliance procedures and support the GRC platform. Technology Service Governance - Operate service interfaces, track governance decisions, analyse performance metrics, and … facilitate audits/certifications. Reporting & Documentation - Prepare reports on technology risk and governance performance; maintain accurate documentation and explore new risk visualisations. Collaboration & Learning - Drive awareness campaigns, support compliance training, research advancements in technology risk, and contribute to team development. Required skills & experience: Experience in Enterprise technology services, support or administration including ITIL and asset management Understanding of various types More ❯

compliance with U.S. and Global Regulations regarding Disaster Recovery and Operational Resilience. This role will interface with all Enterprise partners across the three lines of defense including Risk Management (GRC), Control Management and Operational Excellence, Audits, as well as Domestic and International regulators. The successful candidate will interface with colleagues around the company and around the globe in all functions. More ❯

solutions that automate evidence gathering and real-time compliance monitoring across frameworks such as NIST 800-53, HITRUST, PCI-DSS, and FedRAMP. - Collaborate Across Teams: Partner with cloud engineering, GRC, and program teams to align internal tooling with evolving compliance needs and operational goals. Qualifications (Text Only) Required Qualifications: - Demonstrated experience deploying automation for security operations (SOAR platforms, script-based More ❯

and provide end-to-end mitigation steps for resilience. Working closely with key stakeholders to ensure compliance with security policies, and promotion of strong information security culture. Provide weekly governance, risk and compliance reports utilising key risk and key performance indicators and metrics. Skills/Competencies Required: Experience developing information security policy, process and procedure design and implementation. Excellent troubleshooting More ❯

better place. A safer place. A more ethical place. A place where anyone, anywhere can have a voice. That's a serious impact. NAVEX is a global leader in GRC solutions and helps organisations strengthen their risk and compliance programs with a 360-degree view of enterprise, third party and ecosystem risk for enhanced regulatory compliance and proactive risk management. More ❯

including risk assessments. Using tools such as Nessus, Tenable, or Microsoft Defender to identify and prioritise vulnerabilities. Delivering clear, actionable security reports to technical and non-technical stakeholders. Supporting governance, risk, and compliance activities related to security findings. Collaborating with wider teams and contributing to security training and mentoring initiatives. Ideal candidate profile: 2-3 years' experience in vulnerability management More ❯

in security across our entire organisation What you'll have: A passion for security, a drive to make things better by harnessing technology Experience in, or knowledge of, automating GRC and other security processes to reduce manual work Strong analytical and problem-solving skills, with the ability to identify and mitigate security risks A good understanding of information security principles More ❯

following: ServiceNow technical experience A proven track record of implementing ServiceNow, delivering to deadlines and milestones ServiceNow Certified Administrator with ServiceNow CIS in one or more ServiceNow modules (ideally GRC and/or HR) Demonstrable evidence of delivering real and sustainable ServiceNow solutions Relevant professional experience, including for example previous work with a Big 4, global management consultancy firm, niche More ❯