you will work as a part of our professional service team to drive all aspects of a client project from inception to deployment. This may include supporting our RMIS, GRC, EHS, and/or Healthcare products. You will work cross-functionally to ensure all projects are completed on-time and on-budget, interfacing with client stakeholders, internal Origami teams andMore ❯
The post holder will need todevelop strong relationships with the rest of legal team, senior management andin particular key stakeholders in the SaaS Operations, SaaS Commercial andSales, Security, Privacy, Governance, RiskandComplianceand Finance teams. The post holder will be responsible forensuring the consistent application of the company internal policies and thatappropriate expert legal advice is applied to our More ❯
lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯
lifecycle from planning to deployment. Collaboration & Communication Partner with Product, Operations, and Executive teams to align technical strategy with company vision. Translate business needs into innovative, practical engineering solutions. Governance & Risk Ensure compliance with regulatory, security, and operational standards. Proactively manage technical risks and drive architectural decisions. Innovation & Technical Excellence Stay ahead of emerging technologies and recommend tools or frameworks More ❯
of navigating material weakness or significant deficiency remediation is advantageous, but not essential. Some experience of significant finance transformation activities in ICFR or with ICFR impacts, such as a GRC implementation, global process owner deployment, an ERP implementation, or technology enablement of the annual ICFR cycle, is advantageous, but not essential. Experience of betting, gaming or online entertainment businesses is More ❯
City of London, London, England, United Kingdom Hybrid / WFH Options
WTW
of defense. Contribute to the evolution of the Technology and Cyber Riskand Control Framework through data-driven insights. Ensure alignment of analytics activities with regulatory expectations and internal governance standards. Drive continuous improvement in risk data quality, reporting processes, and analytics capabilities. The Requirements: Skills: Strong knowledge of riskmanagement frameworks (e.g., NIST, ISO 27001, COBIT) and control environments. … general controls, cyber security principles, and technology risk domains. Proven experience in risk analytics, data visualization, and reporting (e.g., using Power BI, Tableau, or similar tools). Familiarity with GRC platforms andrisk data management practices. Experience in a riskmanagement, IT audit, or cyber security role within a financial services or regulated environment. Ability to interpret complex technical data More ❯
of defense. Contribute to the evolution of the Technology and Cyber Riskand Control Framework through data-driven insights. Ensure alignment of analytics activities with regulatory expectations and internal governance standards. Drive continuous improvement in risk data quality, reporting processes, and analytics capabilities. Qualifications The Requirements: Skills: Strong knowledge of riskmanagement frameworks (e.g., NIST, ISO 27001, COBIT) and control … general controls, cyber security principles, and technology risk domains. Proven experience in risk analytics, data visualization, and reporting (e.g., using Power BI, Tableau, or similar tools). Familiarity with GRC platforms andrisk data management practices. Experience in a riskmanagement, IT audit, or cyber security role within a financial services or regulated environment. Ability to interpret complex technical data More ❯
As a Senior Product Manager , your focus will be on our Governance, RiskandCompliance, (GRC) product , you will define and drive the end-to-end product vision and strategy for your area. You will work closely with customers to understand their needs and pain points and prioritize and sequence feature development and releases leading to significant and tangible business … What You'll Need Undergraduate degree or equivalent combination of education and experience in a related field 6 years of related experience in Product Management Experience within Audit or Governance, Risk & Compliance (GRC) Preferred qualifications A proven track record of leading the development of product vision and strategy Shipped products with great customer experience user reviews A self-starter mindset … to execute in a fast-paced environment with minimal direction An excellent understanding of product development and how web technologies work Working knowledge of Audit or Governance, Risk & Compliance (GRC) space or with related subject matter Strong Leadership skills - the ability to influence and inspire across multiple teams and job functions Strong analytical, problem solving, and prioritization skills Experience working More ❯
impact in Cyber Security, this role is for you! Responsibilities: Ensure protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party RiskManagement (TPRM) including vendor security reviews Assist the Sales Team … with scoping engagements and delivering valuable services to clients Skills/Must have: Extensive experience in Information Security Governance, Risk, andCompliance (GRC) Experience contributing to an Information Security Management System (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal More ❯
Join our Cyber Security Team as a Governance, RiskandCompliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment with … wellness and employee assistance programmes, gymflex, buy and sell annual leave, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, andrisk assessments Assist with internal audits and help prepare for external More ❯
Winchester, Hampshire, United Kingdom Hybrid / WFH Options
Arqiva
Join our Cyber Security Team as a Governance, RiskandCompliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment with … wellness and employee assistance programmes, gymflex, buy and sell annual leave, travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, andrisk assessments Assist with internal audits and help prepare for external More ❯
Appropriate applicants will have: A strong sales track record against quotas, with a new business sales edge. Experience selling investment technology solutions. Although regtech/regulatory/compliance/GRC technology sales experience would of course be interesting to our client, it's by no means a pre-requisite as buy side technology sales track record and personal attributes are More ❯
operations. You've built or significantly scaled a compliance function and know what "good" looks like across tools, processes, and reporting Comfort with tooling-whether that's configuring a GRC system, querying a database, or collaborating on automated workflows Exceptional communication skills-you can explain complex regulatory topics clearly and influence stakeholders across functions A bias for action: you take More ❯
Experience leveraging partner ecosystems for co-selling (Channels/SIs) An innate ability to challenge the status quo and evangelize new approaches Bonus Skills: Familiarity with cybersecurity, cyber risk, GRC, or compliance platforms Background in early-stage or high-growth SaaS companies If you're passionate about cyber risk, thrive in a fast-paced environment, and want to be part More ❯
technical account management – ideally in a fast-paced or early-stage environment where you’ve helped shape how things are done. Experience working with financial institutions, regulatory environments, or GRC/RegTech tools. Strong project management skills with an ability to coordinate across teams and timelines. Excellent communication skills – you're able to explain complex systems clearly and persuasively. Hands More ❯
technical account management – ideally in a fast-paced or early-stage environment where you’ve helped shape how things are done. Experience working with financial institutions, regulatory environments, or GRC/RegTech tools. Strong project management skills with an ability to coordinate across teams and timelines. Excellent communication skills – you're able to explain complex systems clearly and persuasively. Hands More ❯
and logging infrastructure, ensuring effective SIEM (Security Information and Event Management) operations. Support security audits for PCI, SOC2, ISO, and other compliance frameworks, gathering evidence and collaborating with Engineering, GRCand the broader Security Division. Proactively enhance security operations by developing and deploying new detections, security tooling and rigorously managing key security partners. Work on security investigations, incidents, and urgent More ❯
Are you looking for an exciting new opportunity? Join a trusted security andcompliance partner offering comprehensive services including GRC consulting, CREST-accredited penetration testing, and an industry-leading vulnerability management service. As the number one Global Service Partner of Vanta, the company has a proven track record of helping hundreds of businesses from tech startups to global industry leaders More ❯
for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define and shape what governanceandrisk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third … years in roles covering riskmanagement, architecture, engineering, or vulnerability management. Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow. For more details, please reach out to Mary Pearson on – mary.pearson@sandersonplc.com. More ❯
for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define and shape what governanceandrisk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third … years in roles covering riskmanagement, architecture, engineering, or vulnerability management. Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow. For more details, please reach out to Mary Pearson on - . Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse andMore ❯
for Senior Cyber Security Risk Analyst to join their dynamic team. This role is an exciting opportunity to be a part of really helping to define and shape what governanceandrisk assurance looks like for the organisation. This will include areas such as building out and developing their education and awareness programme as well as taking ownership over third … years in roles covering riskmanagement, architecture, engineering, or vulnerability management. Relevant certifications and tools knowledge, such as CRISC, CISSP, CGEIT, and experience with platforms like UpGuard, AuditBoard, SAP GRC, and ServiceNow. For more details, please reach out to Mary Pearson on - mary.pearson@sandersonplc.com . Reasonable Adjustments: Respect and equality are core values to us. We are proud of the More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Pertemps
implementation of data classification methodologies to ensure appropriate protection based on sensitivity and importance. The role will be based in Reading and will report directly to the Head of Governance, RiskandCompliance, working to deliver the company's goals for a fit-for-purpose critical asset and classification framework. This is a role that requires independence, a proactive approach … riskmanagement practices. Desirable Technical Skills & Qualifications: Industry Certifications: Certifications such as CISSP, CISM, or CISA. Key Relationships & Interactions: CISO direct reports: Security Operations Manager, Security Architecture Manager, Security Governance Manager, Cyber Security Programme Manager, Cyber Resilience Manager CIO and CIO Direct Reports: Operational Technology, Enterprise Architects, PMO and Programme Delivery, Business Change and Engagement Key Business Stakeholders Service Owners More ❯
securing the NAO's digital future. We're on the lookout for passionate, curious, and collaborative security professionals across a wide range of specialisms. Whether your expertise lies in governance, engineering, threat detection, or cloud security, you'll find real scope to make an impact-both within InfoSec and across the wider organisation. -Be part of a diverse and expanding … purpose, and maintaining them in line with ISO27001 requirements, NCSC best practise, and alignment with HMG standards. o Support in develop and implement a Product Assurance framework with the GRC team. Own the process to deliver meaningful assurance as we integrate new products into the environment. o Reviewing and managing the Information Asset Inventory assessments, assessing the technical control performance … across our technology estate. o Supporting in training requirements across the organisation. o Ownership of regular reporting for senior stakeholders. o Supporting GRC in driving NIST maturity, taking ownership of assigned areas. Technical o Own the Data Loss Prevention controls developing new controls and refining existing. o Facilitate eDiscovery activities. o Own InfoSec's DR Incident Response plans and testing More ❯
deliver on engagements, managing multiple internal and external stakeholders. Projects will vary and may include internal audits, implementation or review of internal and financial control frameworks, enterprise riskmanagement, governanceriskand control (GRC), Sarbanes-Oxley (SoX) implementations or reviews, riskand control automation, and performance improvement. Support the execution and daily deliverables of a portfolio of client projects, ensuring More ❯
Bath, Somerset, United Kingdom Hybrid / WFH Options
Bmt Defence Services LTD
d love to hear from you. About You We'd love to hear from you if you can demonstrate expertise in at least one of the following areas : Security governance, riskandcompliance (GRC), aligned with HMG cybersecurity and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding More ❯