1 to 25 of 132 GRC Jobs in London

Health support. Switched On - scheme providing discount on hundreds of retailers' products. Discounted gym membership. Employee Assistance Programme. Job Purpose The Senior Governance Risk and Compliance (GRC) Analyst will support the Cyber Security GRC Manager in developing IT governance, risk management, and compliance strategies across UK Power Networks information applications … and 3rd Party: Engage, interact and ensure 3rd party supplies are meeting cyber security expectations. Gather evidence and assurance, risk assess and create reports and governance metrics for measuring the ongoing risk and impact that 3rd party suppliers present to UKPN. Nature and Scope The Information Systems Department works across … and operational control capabilities that are important to safeguarding UKPN information assets, business services and operations. Knowledge: We ask that you understand governance, risk management, and compliance principles, in addition to a knowledge of relevant laws, regulations, and industry standards. We are looking for a detailed knowledge and practical expertise More ❯

Senior Information Security GRC Analyst Senior Information Security GRC Analyst Locations: London, United Kingdom; Manassas, United States Posted on: 4 Days Ago ABOUT US We're the world's leading provider of secure financial messaging services, headquartered in Belgium. We are the way the world moves value - across borders, through … in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. Are you passionate about security Governance, Risk and Compliance (GRC)? Do you thrive in a dynamic environment where your experience and your security expertise can shape the future of our organization … We are looking for a GRC Specialist like you to join our growing Information Security Governance team. In this role, you will: Develop and implement robust GRC frameworks to ensure compliance with increasingly stringent industry regulations and standards. Lead the reporting and presentation of our GRC activities to internal and More ❯

scope of your responsibilities. It can encompass a wide spectrum of tasks, from crafting robust security architectures to offering guidance on GRC (governance, risk management, and compliance) activities. Your responsibilities may also involve: Offering your security expertise in support of significant system procurements and Agile programs, ensuring the secure delivery More ❯

GRC Lead – Cybersecurity (Financial Services) London | Competitive Package We're partnering with a leading global financial services firm to appoint a Governance, Risk, and Compliance (GRC) Lead into their high-performing Information Security function. This is an exciting opportunity to join a fast-paced, globally recognised institution with a mature … cyber programme and significant investment in its security posture. As a trusted search partner, we’re looking for an experienced and strategic GRC professional who can bring deep subject matter expertise across third-party risk, regulatory compliance, audit readiness, and awareness training. You’ll play a pivotal role in helping … Opportunity Sitting within a dynamic global InfoSec team, you’ll be responsible for: Leading third-party risk assessments and driving continuous improvement of vendor governance processes. Owning client due diligence responses, ensuring the business meets external compliance and assurance requirements. Developing and delivering enterprise-wide awareness training, phishing simulations, and More ❯

GRC Lead – Cybersecurity (Financial Services) London | Competitive Package We're partnering with a leading global financial services firm to appoint a Governance, Risk, and Compliance (GRC) Lead into their high-performing Information Security function. This is an exciting opportunity to join a fast-paced, globally recognised institution with a mature … cyber programme and significant investment in its security posture. As a trusted search partner, we’re looking for an experienced and strategic GRC professional who can bring deep subject matter expertise across third-party risk, regulatory compliance, audit readiness, and awareness training. You’ll play a pivotal role in helping … Opportunity Sitting within a dynamic global InfoSec team, you’ll be responsible for: Leading third-party risk assessments and driving continuous improvement of vendor governance processes. Owning client due diligence responses, ensuring the business meets external compliance and assurance requirements. Developing and delivering enterprise-wide awareness training, phishing simulations, and More ❯

TRM Leader, outside Client Technology: collaborates with other EY organizations working on risk management, such as Global Risk Management (GRM) for strategic direction on governance, risk, compliance and Infosec (IS) for security management. more specifically, partners closely with the Technology Assurance Risk and Policy (TARP) team, part of Infosec, to More ❯

years' varied experience in information security, data protection, and security architecture roles, with a focus on cloud security, and compliance. Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53/CSF, NIS/NIS2, DORA, UK CNI/OT/IIOT compliance. Hands More ❯

Role Title: Roles & GRC Access Control Manager Location: Remote – travel for workshops in the UK on adhoc basis once a month Contract duration: 6 months Deloitte: Working with the Deloitte Associate (Contractor) Programme means we can offer you the opportunity to work on a variation of industry and client related … are seeking an experienced Manager (with UK Security Clearance ) to join our Controls Advisory team. You will support variety of SAP Security Operations and Governance, Risk and Compliance (GRC) initiates for a Government and public sector client. You will have experience with SAP Security architecture and implementation, SAP GRC solutions … Access Control, Identity Access Governance) and experience of complex SAP implementations and security risk assessments. The programme objective is to create a new shared service operation for HR, finance, and procurement, providing services to 3 public sector departments, operating from a single technology platform. Reporting to the Associate Director of More ❯

Role Title: Roles & GRC Access Control Manager Location: Remote – travel for workshops in the UK on adhoc basis once a month Contract duration: 6 months Deloitte: Working with the Deloitte Associate (Contractor) Programme means we can offer you the opportunity to work on a variation of industry and client related … are seeking an experienced Manager (with UK Security Clearance ) to join our Controls Advisory team. You will support variety of SAP Security Operations and Governance, Risk and Compliance (GRC) initiates for a Government and public sector client. You will have experience with SAP Security architecture and implementation, SAP GRC solutions … Access Control, Identity Access Governance) and experience of complex SAP implementations and security risk assessments. The programme objective is to create a new shared service operation for HR, finance, and procurement, providing services to 3 public sector departments, operating from a single technology platform. Reporting to the Associate Director of More ❯

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status More ❯

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status More ❯

third-party vendors and partners. Establish and enforce third-party security standards and monitor compliance. Manage security reviews during vendor onboarding and contract renewals. Governance, Risk, and Compliance Ensure compliance with relevant regulations (e.g., PCI DSS, GDPR, SOC 2, ISO 27001) and internal policies. Maintain up-to-date knowledge of More ❯

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status More ❯

security of thousands of users globally, including the world's largest freight forwarders. We are dedicated to delivering efficiency, transparency, and confidence through our Governance, Risk, and Compliance (GRC) framework. The Opportunity: We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Analyst with expertise in managing acquisitions, integrating … operations. The role requires a keen understanding of regulatory compliance, risk management, and a strategic mindset to ensure smooth and efficient integration processes. The GRC Analyst will play a critical role in enhancing our overall GRC posture and maintaining regulatory compliance for WiseTech Global. Key Responsibilities: Acquisition Assessment: Collaborate with … cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities. Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy. Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk More ❯

and respond to security threats and incidents using advanced security tools. What Excites Us Experience as a Senior Information Security Analyst in cybersecurity and GRC, ideally in a high-growth tech environment. Strong knowledge of cloud (AWS), application, infrastructure, and network security. Familiarity with payment security standards (PCI DSS) and More ❯

aligned to UK Government principles) and regulatory requirements (including GovAssure and NCSC Cyber Assurance Framework). What you'll be doing: Develop and execute GRC strategies that align with business objectives and inform appropriate supporting business processes Drive pragmatic and creative solutions to GRC challenges, applying agile methodologies to adapt … to new regulations, compliance requirements and business change Advise on and foster continuous improvement and effectiveness of GRC processes, driving improved management information to better allow appropriate prioritisation and risk based decisions Lead initiatives that build a culture of accountability and responsibility across engagements Enhance governance processes and advise on … on all matters relating to cyber security, information assurance, cyber risk, data privacy including regulatory and compliance considerations Lead the development and enhancement of governance, risk and compliance aligned to policy, standards and industry good practice Ensure that continuous assessment, identification, analysis and reporting of useful metrics to enable informed More ❯

required) Salary- up to £90K depending on experience . Permanent, full time About: Our client is a PE-backed global IT services companyin the Governance, Risk and Compliance market. They aremade up of several sub-companies operating in the legal, health and safety, employment law and cyber security spaces. They More ❯

can be picked up with training offered. This is an all-rounder role, which whilst it will have a technical focus, will also encompass GRC and compliance Key day to day responsibilities will include: Management of cyber incidents and liaison with the SOC provider Threat hunting using proactive methods Vulnerability More ❯

can be picked up with training offered. This is an all-rounder role, which whilst it will have a technical focus, will also encompass GRC and compliance Key day to day responsibilities will include: Management of cyber incidents and liaison with the SOC provider Threat hunting using proactive methods Vulnerability More ❯

The team you'll be working with: Security Consultant (GRC) NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We're looking for passionate, curious, and motivated individuals to join our team. What you'll be … doing: Using your background in Governance, Risk & Compliance, you will help our clients: Governance: directs, oversees, designs, implements or operates within the set of multi-disciplinary structures, policies, procedures, processes and controls implemented to manage cyber and information security at an enterprise level. Supporting an organisation's immediate and future … regulatory authorities. Providing remediation guidance and prepare management reports to track remediation activities. Continuous Improvement: Identify opportunities for process enhancements, driving initiatives to bolster governance framework and security posture. Assess and test the effectiveness of security controls, and document the compliance levels to identify risks and control gaps. What experience More ❯

Cantor Fitzgerald’s Global Information Security team is seeking a Governance, Risk, and Compliance (GRC) Lead with expertise on managing cyber risk, ensuring compliance with regulatory requirements, and maintaining corporate controls. This role will be primarily responsible for leading efforts related to third-party risk management, client due diligence, awareness … training, and regulatory compliance. The ideal candidate will have a strong grasp of cybersecurity threats and hands-on experience. Key Responsibilities Governance Risk and Compliance Advise project teams, application owners, infrastructure services, and other IT teams on information security controls, such as access management, incident handling, business continuity, system development … firm-wide communications. Transferred Employees: Maintain a workflow designed to review the access of transferred employees. Facilitate a risk acceptance program aimed at enhancing governance surrounding potential deviations from information security policies. Compliance & Auditing Demonstrated expertise in managing and addressing complex audits and compliance issues. Support organizational compliance by ensuring More ❯

Cantor Fitzgerald’s Global Information Security team is seeking a Governance, Risk, and Compliance (GRC) Lead with expertise on managing cyber risk, ensuring compliance with regulatory requirements, and maintaining corporate controls. This role will be primarily responsible for leading efforts related to third-party risk management, client due diligence, awareness … training, and regulatory compliance. The ideal candidate will have a strong grasp of cybersecurity threats and hands-on experience. Key Responsibilities Governance Risk and Compliance Advise project teams, application owners, infrastructure services, and other IT teams on information security controls, such as access management, incident handling, business continuity, system development … firm-wide communications. Transferred Employees: Maintain a workflow designed to review the access of transferred employees. Facilitate a risk acceptance program aimed at enhancing governance surrounding potential deviations from information security policies. Compliance & Auditing Demonstrated expertise in managing and addressing complex audits and compliance issues. Support organizational compliance by ensuring More ❯

and quality enhancements. Deliver on specific risk related projects in response to business needs. Support the implementation and drive adoption of an industry leading GRC Tool across the Company (AuditBoard). ABOUT YOU: 8 years of Enterprise Risk Management Experience - Experience and knowledge of risk management framework methodology and practices More ❯

a highly skilled Cybersecurity practitioner in primary skills associated with Network Security, as well as secondary skills in Technical areas such as IDAM, Engineering, GRC, and IOT/OT security. The successful candidate will support clients' security roadmap and compliance requirements through Assessments, Design reviews, and Upgrades. Your Responsibilities: Guide More ❯

including endpoint protection, access control, logging, and cloud security tools Maintain high standards of compliance, documentation, and reporting aligned with industry frameworks Contribute to governance, risk, and compliance initiatives by enforcing policy and best practice Required Skills & Experience: 3+ years of experience in a cybersecurity engineering or related technical role More ❯