51 to 75 of 187 GRC Jobs in England

digital risk frameworks, methodologies, and compliance requirements. Ability to interpret IT Risk regulatory requirements and translate them into actionable sales opportunities. Proficiency in risk management tools and platforms (e.g. GRC platforms), ideally with experience in implementing and/or optimizing these solutions. Proven strategic experience in leading risk assessments and developing and implementing risk mitigation strategies. Strong analytical and problem … Exceptional communication and presentation skills for executive reporting, stakeholder engagement, and internal team leadership. To qualify for the role you should have Extensive experience in digital risk management, IT governance, cybersecurity, or related fields; experience with AI would be an additional advantage. Professional certifications such as CISA, CISSP, or equivalent (preferred but not mandatory). Significant expertise in risk management More ❯

securing the NAO's digital future. We're on the lookout for passionate, curious, and collaborative security professionals across a wide range of specialisms. Whether your expertise lies in governance, engineering, threat detection, or cloud security, you'll find real scope to make an impact-both within InfoSec and across the wider organisation. Be part of a diverse and expanding … security baselines and configuration management using IaC tools like Biceps/Terraform and enforce with Azure policy. Improve SSDLC practices, support risk assessments, and ensure cloud services align with governance, risk, and compliance controls. Skills required: Key skills and competencies include: Designing secure applications and solutions (Practitioner) Supporting and supporting security support methodologies (Expert) Process analysis and optimization (Practitioner) Risk More ❯

impact in Cyber Security, this role is for you! Responsibilities: Ensure protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team … with scoping engagements and delivering valuable services to clients Skills/Must have: Extensive experience in Information Security Governance, Risk, and Compliance (GRC) Experience contributing to an Information Security Management System (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal More ❯

Job Title: Senior GRC & Compliance Manager (Business GRC role for SAP S/4HANA Transformation Programme) Location: London, UK Job Type: Permanent Working Arrangements: Hybrid (2-3 days a week in office) Job Summary: Join a leading pharmaceutical organisation as a Senior Governance, Risk & Compliance (GRC) Manager to drive compliance excellence across a major SAP S/4HANA transformation programme. … You will lead governance oversight, ensuring SAP Finance & Non-Finance systems meet stringent regulatory, corporate, and quality standards. This is a high-impact role working closely with senior stakeholders, finance, IT, and quality teams to deliver robust compliance in a regulated environment. Key Responsibilities: Lead governance, risk, and compliance for SAP Finance & Non-Finance systems. Ensure adherence to SOX, GxP … GDPR, and related regulatory requirements. Oversee implementation and maintenance of IT Quality Management Systems (QMS). Provide governance oversight during SAP S/4HANA implementations, upgrades, and integrations. Review and validate SAP design/configuration to meet financial governance standards. Collaborate with cross-functional teams to ensure alignment with corporate and regulatory frameworks. Skills, Experience, and Abilities Required: 10+ years More ❯

The post holder will need todevelop strong relationships with the rest of legal team, senior management andin particular key stakeholders in the SaaS Operations, SaaS Commercial andSales, Security, Privacy, Governance, Risk and Compliance and Finance teams. The post holder will be responsible forensuring the consistent application of the company internal policies and thatappropriate expert legal advice is applied to our More ❯

lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯

lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯

looking for a Security architect to expand their newly formed team. This offers a fantastic opportunity for someone stepping into their first Security Architecture role with a focus on GRC and technical security. This role is ideal for someone who enjoys contributing to business projects from an assurance perspective, while also driving continuous BAU activities! Experience of interest includes: • Implementing More ❯

of navigating material weakness or significant deficiency remediation is advantageous, but not essential. Some experience of significant finance transformation activities in ICFR or with ICFR impacts, such as a GRC implementation, global process owner deployment, an ERP implementation, or technology enablement of the annual ICFR cycle, is advantageous, but not essential. Experience of betting, gaming or online entertainment businesses is More ❯

of defense. Contribute to the evolution of the Technology and Cyber Risk and Control Framework through data-driven insights. Ensure alignment of analytics activities with regulatory expectations and internal governance standards. Drive continuous improvement in risk data quality, reporting processes, and analytics capabilities. The Requirements: Skills: Strong knowledge of risk management frameworks (e.g., NIST, ISO 27001, COBIT) and control environments. … general controls, cyber security principles, and technology risk domains. Proven experience in risk analytics, data visualization, and reporting (e.g., using Power BI, Tableau, or similar tools). Familiarity with GRC platforms and risk data management practices. Experience in a risk management, IT audit, or cyber security role within a financial services or regulated environment. Ability to interpret complex technical data More ❯

of defense. Contribute to the evolution of the Technology and Cyber Risk and Control Framework through data-driven insights. Ensure alignment of analytics activities with regulatory expectations and internal governance standards. Drive continuous improvement in risk data quality, reporting processes, and analytics capabilities. Qualifications The Requirements: Skills: Strong knowledge of risk management frameworks (e.g., NIST, ISO 27001, COBIT) and control … general controls, cyber security principles, and technology risk domains. Proven experience in risk analytics, data visualization, and reporting (e.g., using Power BI, Tableau, or similar tools). Familiarity with GRC platforms and risk data management practices. Experience in a risk management, IT audit, or cyber security role within a financial services or regulated environment. Ability to interpret complex technical data More ❯

implementation of data classification methodologies to ensure appropriate protection based on sensitivity and importance. The role will be based in Reading and will report directly to the Head of Governance, Risk and Compliance, working to deliver the company's goals for a fit-for-purpose critical asset and classification framework. This is a role that requires independence, a proactive approach … risk management practices. Desirable Technical Skills & Qualifications: Industry Certifications: Certifications such as CISSP, CISM, or CISA. Key Relationships & Interactions: CISO direct reports: Security Operations Manager, Security Architecture Manager, Security Governance Manager, Cyber Security Programme Manager, Cyber Resilience Manager CIO and CIO Direct Reports: Operational Technology, Enterprise Architects, PMO and Programme Delivery, Business Change and Engagement Key Business Stakeholders Service Owners More ❯

As a Senior Product Manager , your focus will be on our Governance, Risk and Compliance, (GRC) product , you will define and drive the end-to-end product vision and strategy for your area. You will work closely with customers to understand their needs and pain points and prioritize and sequence feature development and releases leading to significant and tangible business … What You'll Need Undergraduate degree or equivalent combination of education and experience in a related field 6 years of related experience in Product Management Experience within Audit or Governance, Risk & Compliance (GRC) Preferred qualifications A proven track record of leading the development of product vision and strategy Shipped products with great customer experience user reviews A self-starter mindset … to execute in a fast-paced environment with minimal direction An excellent understanding of product development and how web technologies work Working knowledge of Audit or Governance, Risk & Compliance (GRC) space or with related subject matter Strong Leadership skills - the ability to influence and inspire across multiple teams and job functions Strong analytical, problem solving, and prioritization skills Experience working More ❯

My client, an International Financial Services firm based in London, are looking for an IT Security Governance and Risk AVP to join their growing team. They would like individuals to come from Financial Services background. You have to be in the office two times per week.Feedback from the Hiring Manager on CV's he has seen so far:The CVs … security tools or policy strategy focused. About the IT Security Goverance and Risk AVP role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and … stakeholders Base level understanding of security risk management and taxonomy principles, to reduce risk to an acceptable level. Knowledge of vulnerability management and incident management practices. Ability to learn GRC tools and best practices. RSA Archer is preferred. Financial and/or Banking industry experience preferred. Ideally qualified in MSc Information Security, CICA, CRISC, CISM and/or Data analysis More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment with … wellness and employee assistance programmes, gymflex, buy and sell annual leave, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment with … wellness and employee assistance programmes, gymflex, buy and sell annual leave, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external More ❯

d love to hear from you. About You We'd love to hear from you if you can demonstrate expertise in at least one of the following areas : Security governance, risk and compliance (GRC), aligned with HMG cybersecurity and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding More ❯

future. We use data to help clients become more efficient, increase profitability and give more customers an amazing experience. Want to be part of it? Reporting to the Senior Governance, Risk & Compliance Officer, the Information Security Officer will assist in strengthening the organisation's security posture within a large, complex, and fast-paced environment. This role supports the development and … implementation of GRC policies, risk management frameworks, and control processes to ensure the confidentiality, integrity, and availability of Keyloop's information assets. The Information Security Officer will work cross-functionally with stakeholders across diverse teams and departments to embed strong information security practices throughout the business. The role also includes identifying and tracking risks within the supply chain and supporting … the organisation's broader information security governance, risk, and compliance efforts. A critical part of this role is helping to promote a strong risk-aware culture and embedding positive security behaviours across the organisation. Role & Responsibility : The job holder will be responsible for assisting and supporting in a range of activities across the Governance, Risk and Compliance function. The job More ❯

broader enterprise technology goals. Cyber Security and IdAM Partner with Cyber Security stakeholders to design and implement secure authentication mechanisms (e.g., MFA, SSO). Drive the rollout of identity governance solutions and ensure integration with enterprise-wide access management systems. Ensure all programs comply with security best practices, regulatory requirements (e.g., GDPR), and internal security policies. Oversee change management and … CISM, AWS Security Specialty, or Certified Identity and Access Manager (CIAM). Agile (Scrum Master, SAFe) and cloud (AWS Cloud Practitioner) certifications. Experience in security assessments, threat modeling, or governance/risk/compliance (GRC) tooling. Benefits Pension company contribution = 3% Incentive scheme up to 10% of annual salary , based on company performance. Your wellbeing is paramount so you can More ❯

broader enterprise technology goals. Cyber Security and IdAM Partner with Cyber Security stakeholders to design and implement secure authentication mechanisms (e.g., MFA, SSO). Drive the rollout of identity governance solutions and ensure integration with enterprise-wide access management systems. Ensure all programs comply with security best practices, regulatory requirements (e.g., GDPR), and internal security policies. Oversee change management and … CISM, AWS Security Specialty, or Certified Identity and Access Manager (CIAM). Agile (Scrum Master, SAFe) and cloud (AWS Cloud Practitioner) certifications. Experience in security assessments, threat modeling, or governance/risk/compliance (GRC) tooling. Pension company contribution = 3% Incentive scheme up to 10% of annual salary , based on company performance. Your wellbeing is paramount so you can get More ❯

Appropriate applicants will have: A strong sales track record against quotas, with a new business sales edge. Experience selling investment technology solutions. Although regtech/regulatory/compliance/GRC technology sales experience would of course be interesting to our client, it's by no means a pre-requisite as buy side technology sales track record and personal attributes are More ❯

operations. You've built or significantly scaled a compliance function and know what "good" looks like across tools, processes, and reporting Comfort with tooling-whether that's configuring a GRC system, querying a database, or collaborating on automated workflows Exceptional communication skills-you can explain complex regulatory topics clearly and influence stakeholders across functions A bias for action: you take More ❯

Experience leveraging partner ecosystems for co-selling (Channels/SIs) An innate ability to challenge the status quo and evangelize new approaches Bonus Skills: Familiarity with cybersecurity, cyber risk, GRC, or compliance platforms Background in early-stage or high-growth SaaS companies If you're passionate about cyber risk, thrive in a fast-paced environment, and want to be part More ❯

Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, risk management and compliance. We work across public and private sector and have over 250k customers across the UK across 20 different sectors including construction, transport, retail, hospitality education, facility and property management, manufacturing, local and central More ❯

to reduce manual intervention and operational burden. Champion observability best practices (metrics, traces, logs) and error budget tracking. Promote DevOps culture and continuous feedback loops between engineering and operations. Governance, Risk & Compliance: Ensure operational processes comply with security, privacy, and regulatory requirements (e.g., SOC 2, ISO 27001). Manage operational risks, service continuity plans, and audit readiness. If you feel More ❯