51 to 75 of 110 GRC Jobs in England

effective Risk and Control Management, this role will play a crucial part in supporting the development and implementation of robust risk management practices. The organisation does not yet have Governance, Risk, and Compliance (GRC) tooling in place, so the analyst will need to work closely with various departments to ensure that technology controls are effectively designed and implemented to safeguard More ❯

risk and enterprise risk registers Familiarity with frameworks like NIST, ISO 27001 or NCSC CAF Confident presenting to technical and exec audiences Skilled with reporting tools (Excel, Power BI, GRC platforms) Organised, proactive, and a clear communicator Whats on offer 30 days holiday plus bank holidays, flexible leave options, and family-friendly policies Up to 15% bonusand a generous employer More ❯

Success or similar roles within enterprise software, preferably in security or systems integration. Proven experience managing strategic and enterprise-level customers with measurable success. Strong understanding of network security, governance, audit, risk, and compliance practices. Customer-first mindset, highly proactive, and comfortable with client-facing engagements (calls/visits). Excellent consulting, project management, and data-driven decision-making skills. More ❯

Exposure to multiple programming languages and data storage technologies Experience managing performance reviews, setting objectives, and giving feedback Active participation in technology communities and knowledge-sharing initiatives Understanding of governance, risk, and compliance in technical delivery Benefits Competitive salary and comprehensive benefits package Flexible working arrangements Opportunities to work on impactful, large-scale digital transformation projects Supportive environment focused on More ❯

lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯

lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯

design and delivery of enterprise-wide cyber strategies and transformation programmes Advising senior stakeholders, including board-level executives, on managing cyber risk and enabling digital growth Shaping operating models, governance frameworks, and risk-based roadmaps for resilience and compliance Managing diverse delivery teams across complex client environments Building long-term client relationships and acting as a trusted advisor Contributing to … cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence at C-suite and board level Track record of leading large-scale More ❯

looking for an Information Security Analyst to join their team. This is an excellent opportunity to play a key role in advancing the company's security posture by delivering Governance, Risk, and Compliance (GRC) initiatives and embedding the NIST Cyber Security Framework (CSF) across the business. Key skills/responsibilities: Deliver day-to-day GRC activities, including designing and implementing … reviews and updates to ensure controls remain effective against evolving threats Essential skills: Minimum 2 year's experience in information security, with a solid understanding of security control and governance frameworks Experience in developing security controls catalogue in a financial services environment (highly desirable) Proven experience in delivering security projects within a federated organisation Desirable skills: Knowledge of NIST CSF More ❯

Salary: £45,000 - £60,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments … experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well … being. Take the next step in your career as a GRC Specialist/Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management More ❯

Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments … experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary, remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well … being. Take the next step in your career as a GRC Specialist/Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management More ❯

Cyber Consultant - Governance, Risk & Compliance (MOD/Defence - SC) Location: Remote/Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi More ❯

We are seeking a PMO Analyst/Project Manager to join the programme’s Governance, Risk & Compliance (GRC) function, with a specific focus on project and enterprise risk. This role will work closely with the Risk Lead to support the effective management of risks across the programme, ensuring robust tracking, analysis, and reporting. The successful candidate will have a PMO … P3M background with demonstrable experience in risk management, ideally within large or complex programmes. Key Responsibilities Support the implementation and ongoing management of programme-wide risk frameworks within the GRC function. Manage the day-to-day operation of project and programme risk registers, ensuring risks are accurately logged, categorised, and updated with appropriate mitigations. Conduct detailed risk assessments at project … and workstream level, escalating critical risks as required. Produce clear and concise risk reporting and dashboards to inform programme governance and senior stakeholder decision-making. Facilitate risk workshops, engaging delivery teams to capture risks and build stronger risk awareness across the programme. Provide practical recommendations on risk treatment, control measures, and contingency planning. Deputise for the Risk Lead where required More ❯

Job summary We are seeking an Information Governance & Cyber Security Manager to lead the second line of defence across Information Governance, Cyber Security, Quality, and Digital Clinical Safety. In this role, you will oversee the operational delivery of InHealths management systems, ensuring compliance, accountability, and consistency across the business. You will provide strong leadership, manage a dedicated team, and play … a key part in driving governance priorities that protect our patients, staff, and services. This is a pivotal position for someone who is enthusiastic, motivated, and passionate about embedding high standards of quality and security across a healthcare organisation. This is a full-time permanent role, working remotely. There will be travel to InHealth sites as part of the role. … Main duties of the job Information Governance: Oversee policy frameworks, DPIAs, DSAs, and regulatory compliance, and lead the Data Security Protection Toolkit return. Cyber Security: Manage security policies, lead ISO 27001 certification, embed data security practices, and oversee incident response. Digital Clinical Safety: Maintain digital clinical safety policies (DCB0129/0160), ensure training compliance, and support safety case documentation. Quality More ❯

remediation, certification readiness, and continual improvement. You'll input and collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of information security governance, risk management, and compliance Key Responsibilities Supporting ISO 27001 implementation projects from initial assessment through to certification Conduct gap analysis tailored to private sector risk profiles and commercial priorities Facilitate risk assessments More ❯

remediation, certification readiness, and continual improvement. You'll input and collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of information security governance, risk management, and compliance Key Responsibilities Supporting ISO 27001 implementation projects from initial assessment through to certification Conduct gap analysis tailored to private sector risk profiles and commercial priorities Facilitate risk assessments More ❯

This VP Sales role is working for a rapidly-growing SaaS business within the GRC (Governance, Risk & Compliance) space, which (despite how it may sound) is an increasingly exciting, evolving & growing sector. Your primary responsibility will be to manage & grow their UK sales team (both AE's & Account Managers) in a typical Sales Leader role. Alongside managing the current personnel … new approaches (i.e. they don't have any alliance/channel partnerships) Key Experience Must have led & scaled a SaaS sales team, ideally within a fast-paced, scaleup environment GRC experience would be a definite advantage, but not a prerequisite. Ideally, you'll be well versed with managing Enterprise, Mid Market & SMB Account Executives You'll have a track record More ❯

and care system and to provide advice which empowers health and care staff to share information appropriately and securely to deliver care. The JCU is comprised of two divisions: Governance, Risk and Compliance - cyber and information governance, system engagement, system compliance, system supply chain, system risk management and internal JCU business operations. Strategy and Policy - development and implementation of national More ❯

for the Principal Security Architect, and represent security in wider forums. Support and develop the Enterprise Security Architecture team through career progression, coaching, and collaboration with Security Operations and GRC functions. Who we are looking for Extensive experience in Enterprise Security Architecture, hands-on technical security, and the design and implementation of security solutions Proficient in security modelling, frameworks, and … tools (e.g., SparxEA, Archi) with deep knowledge of security principles, methodologies, and industry standards (NIST, ISO 27001, PCI-DSS, GDPR) Skilled in threat and risk modelling, governance, and aligning security controls with business strategy, regulation, and technical constraints Stakeholder engagement and communication skills, with experience in both Agile and Waterfall environments; holds or is pursuing certifications such as SABSA, CISSP More ❯

What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to achieve and maintain compliance with PCI, GDPR, SOC2, and ISO27001. Vendor Security : Spearheading due diligence and monitoring of third parties, integrated with our … Vendor Governance Forum. Policies & Assurance : Defining and enforcing security standards, collaborating with IT Ops and Platform Engineering on execution, and providing assurance to stakeholders, customers, and regulators. Risk Management : Escalating material risks directly to the CTO and other risk functions. Culture & Training : Promoting a secure-by-design culture through training, awareness, and best practices across the company. What we're … program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a Security Operations function, managing monitoring, incident response, and vulnerability management. Driving GRC : You're an expert in managing compliance frameworks such as PCI, GDPR, SOC2, and ISO 27001, and you're skilled at preparing for audits. Vendor Security : You have led vendor More ❯

us as a Senior Manager for Cyber Policies and Controls and help shape the future of cybersecurity across Vodafone. In this global role, you'll lead the development and governance of our Cyber and Information Security policies, standards, and control frameworks-ensuring they reflect industry best practices and align with our risk appetite. You'll collaborate with senior stakeholders across … Your leadership will extend to our Cyber education and awareness programme, where you'll champion a strong security culture through engaging training, testing, and communications.As part of the Cyber Governance, Risk and Control (GRC) leadership team, you'll also help shape the strategic direction of both GRC and the wider Cyber function, contributing to our long-term roadmap and technology … priorities. Role title: Senior Manager, Cyber Policies and Controls Function: Group Technology Band: F Department: Cyber Security Reports to: Global Head of Cyber Governance, Risk & Controls Location: Newbury/Paddington Who you are We're looking for someone who brings: Broad technical knowledge of cybersecurity and controls, ideally with exposure to cloud and telecoms security Deep expertise in policy, control More ❯

Main Purpose: To act as a Subject Matter Expert (SME) in AI and Digital Resilience within Financial Services, delivering advisory and managed services across risk modelling, fraud detection, AI governance, compliance, and operational resilience. Key Responsibilities: AI in Financial Services Design and implement AI-driven solutions for risk modelling, financial fraud detection, AI governance, and regulatory compliance. Advise clients on … responsible AI adoption, model validation, and regulatory obligations. Support AI governance frameworks ensuring ethical, explainable, and compliant use of AI across financial services. Digital Operational Resilience (DORA) Deliver gap assessments, compliance roadmaps, and incident response readiness programmes aligned to the EU Digital Operational Resilience Act (DORA). Advise financial institutions on resilience testing, regulatory reporting, and ICT risk management. Support … Financial Services consulting or advisory roles. Strong understanding of AI applications in finance, particularly in fraud detection, credit risk, and regulatory compliance. Experience with AI governance frameworks, model risk management, and compliance standards. Knowledge of operational resilience frameworks, including DORA, PRA/FCA resilience requirements, or similar regulations. Track record of delivering gap assessments, resilience testing, and regulatory readiness programmes. More ❯

Main Purpose: To act as a Subject Matter Expert (SME) in AI and Digital Resilience within Financial Services, delivering advisory and managed services across risk modelling, fraud detection, AI governance, compliance, and operational resilience. Key Responsibilities: AI in Financial Services Design and implement AI-driven solutions for risk modelling, financial fraud detection, AI governance, and regulatory compliance. Advise clients on … responsible AI adoption, model validation, and regulatory obligations. Support AI governance frameworks ensuring ethical, explainable, and compliant use of AI across financial services. Digital Operational Resilience (DORA) Deliver gap assessments, compliance roadmaps, and incident response readiness programmes aligned to the EU Digital Operational Resilience Act (DORA). Advise financial institutions on resilience testing, regulatory reporting, and ICT risk management. Support … Financial Services consulting or advisory roles. Strong understanding of AI applications in finance, particularly in fraud detection, credit risk, and regulatory compliance. Experience with AI governance frameworks, model risk management, and compliance standards. Knowledge of operational resilience frameworks, including DORA, PRA/FCA resilience requirements, or similar regulations. Track record of delivering gap assessments, resilience testing, and regulatory readiness programmes. More ❯

security, including catalogs, groups, spaces, pages, and troubleshooting authorization issues. Gathering security requirements from process, development, and functional teams and incorporating them into design, build, and testing. Using access governance tools like SAP Identity Access Governance (IAG) and GRC. Understanding business role concepts in IAG/GRC to design business roles. Embedding segregation of duties requirements and risk rules into More ❯

to Incident Response where needed. There will also be opportunities to define and lead other areas of cyber security. What youll be doing Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO/IEC 27001, NCSC CAF, and PCI DSS. Lead independent assurance , review and test … Chartered status (or demonstrable readiness to achieve this in the near term). Significant experience in cyber security consulting or assurance, ideally within the public sector. Deep knowledge of GRC frameworks and standards ( e.g. CAF, ISO/IEC 27001, PCI DSS). Strong client-facing skills , able to communicate complex issues clearly to technical and non-technical audiences. Proven track … and influencing decision-making. Excellent written and verbal communication, including the ability to produce polished consultancy reports. Desirable certifications: ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CRISC, CCP (GRC), or equivalent. Driving license and willingness to travel to client sites across the UK as required . Why join 4C Strategies? Work with a growing cyber team in a respected More ❯

implement Oracle controls for a wide range of clients across multiple industries. This includes applying knowledge of Oracle Cloud emerging technology such as AI Agents and leveraging Oracle Risk Management & Compliance GRC modules to drive improvements throughout the control lifecycle from assessing risks to implementing, monitoring and assessing controls. As a Senior Consultant focussing on technology controls in out Controls … across areas including: business process controls, application security/role based access controls, segregation of duties, IT general controls, programme management controls, etc; Assessing, designing and implementing Oracle Risk Management and Compliance (RMC) modules; Applying your risk and controls experience to support clients in meeting specific requirements e.g. SOX, UK corporate reform; Guiding, managing and leading team members within an More ❯