1 to 25 of 46 GRC Jobs in London

improve efficiency, consistency, and scalability Preferred A blend of consulting and in-house industry experience Experience implementing enterprise-grade integrated risk management or GRC solutions Professional certifications such as CISM, CRISC, CISA, CISSP Please send me a copy of your CV if you meet the requirements ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

practice/standards. Proven experience managing relationships with internal and external auditors, business and technology stakeholders and leading large-scale assessment programmes. Experience with GRC tools and data analytics to enhance efficiency and insight. Strong understanding of IT risk and control frameworks Experience with cloud and on-premises technology environments ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

GRC Analyst – 3-month contract – Fully Remote My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current … essential. Knowledge of the requirements of the above standards in relation to contracts and vendor relationships is essential. Key Skills & Experience from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks ...

GRC Analyst – 3-month contract – Fully Remote My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current … essential. Knowledge of the requirements of the above standards in relation to contracts and vendor relationships is essential. Key Skills & Experience from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks ...

Position: GRC Analyst - Cyber Security Type: Permanent Location: Remote, UK-based Salary: £50-60K We're seeking a GRC Analyst to strengthen pour client's governance, risk and compliance capability. The organisation is committed to maintaining robust security standards and regulatory compliance across its operations. This is a fully … remote role offering real visibility and the opportunity to influence security maturity across a diverse environment. The Role As a Cyber Security GRC Analyst, you will support and enhance the organisation's security governance framework, risk management processes, and compliance activities. Working closely with IT, security and business stakeholders ...

reports that provide senior stakeholders with meaningful insight into the organisation's third-party cyber risk posture. Embed third-party security controls into vendor governance processes, working closely with Procurement, Legal, Technology, and Risk. Monitor compliance with industry frameworks such as CIS Controls, NIST, GDPR, and sector-specific guidance. Support … best practice. Provide data, commentary, and risk metrics for divisional or organisational IT risk reporting. Escalate material risks or emerging issues to the Cyber Governance Manager and BISO leadership when required. Performance Objectives Build a comprehensive understanding of the organisation's supplier landscape and existing vendor governance controls, taking full ...

teams * Engage with internal audit and risk stakeholders where required What they are looking for Experience in technology risk, IT risk, IT controls or GRC * Exposure to regulated environments, financial services preferred but not essential * Strong stakeholder management and influencing skills * Comfortable working without formal authority * Practical mindset focused ...

Title: Risk & AI Governance Consultant Location: Remote Basic Salary: £75,000 - £90,000 Summary: An exciting opportunity to join a leading enterprise business as an AI Governance Consultant. This role will focus on ensuring AI systems are developed and deployed responsibly, ethically, and in line with regulatory and organisational standards. … play a key part in embedding governance frameworks, managing risks, and supporting compliance with evolving AI regulations across the UK and EU. Objectives: Drive the development and implementation of AI governance and risk frameworks. Ensure compliance with regulatory, ethical, and internal governance standards. Provide guidance to technical and non-technical ...

observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance and cost controls Reusable Assets & Consulting ...

and lead the organisation's information security function. This role is responsible for defining and executing the information security strategy, ensuring robust governance, risk, and compliance practices, and protecting the organisation's information assets within a regulated environment. Key Responsibilities Lead and manage the organisation's cyber and information security … across a medium to large enterprise environment Develop, implement, and continuously improve the information security strategy, roadmap, and supporting programs Establish and maintain strong Governance, Risk, and Compliance (GRC) frameworks aligned to business objectives Oversee information security risk management, including risk identification, assessment, treatment, and reporting Manage ISO27001 compliance, including ...

and lead the organisation's information security function. This role is responsible for defining and executing the information security strategy, ensuring robust governance, risk, and compliance practices, and protecting the organisation's information assets within a regulated environment. Key Responsibilities Lead and manage the organisation's cyber and information security … across a medium to large enterprise environment Develop, implement, and continuously improve the information security strategy, roadmap, and supporting programs Establish and maintain strong Governance, Risk, and Compliance (GRC) frameworks aligned to business objectives Oversee information security risk management, including risk identification, assessment, treatment, and reporting Manage ISO27001 compliance, including ...

Inside IR35) Start date: ASAP. Overview We are seeking a skilled, proactive, and analytical Cyber Risk Analyst to support the Governance, Risk and Compliance (GRC) function of my client. You will be responsible for identifying, assessing, and helping to mitigate Cyber, Information Security, and OT security risks across the organisation. … recognised Cyber Risk management frameworks and methodologies such as: ISO 27005 Or other structured cyber risk quantification approaches Strong understanding of Information Security principles, Governance, and Risk Management practices. Proven experience maintaining compliance documentation aligned to industry standards, regulations, and legislative requirements, including but not limited to: NIS Directive - Cyber ...

Information Security GRC Consultant Location: Hybrid - 3 days per week in the officeSalary: Up to £105,000 Basic Salary OverviewWe are working with a leading organisation that is undergoing a significant transformation of its security and assurance function. As part of this journey, they are looking to hire an experienced … Information Security Governance, Risk & Compliance (GRC) Consultant to help reshape the organisation's security posture and drive key strategic initiatives.Key Responsibilities* Lead and enhance cyber security awareness tools and controls across the organisation* Drive the automation and optimisation of the GRC toolset* Design, implement, and improve risk management frameworks and ...

safe by: Implementing evaluation frameworks for accuracy, coverage interpretation, decision consistency and bias Designing monitoring, logging and tracing suitable for regulated insurance environments Applying governance, risk and compliance principles (eg audit trails, explainability, access controls) Supporting controlled releases and operational handover into insurer IT and operations teams Ensuring reliability, reproducibility ...

safe by: Implementing evaluation frameworks for accuracy, coverage interpretation, decision consistency and bias Designing monitoring, logging and tracing suitable for regulated insurance environments Applying governance, risk and compliance principles (eg audit trails, explainability, access controls) Supporting controlled releases and operational handover into insurer IT and operations teams Ensuring reliability, reproducibility ...

Security Operations (SOC) function. This is a hands-on, operational role focused on improving detection, response, and incident readiness - not a compliance or GRC-led position. You'll manage a small SOC team, own the relationship with a Managed Detection & Response (MDR) provider, and drive continuous improvement across security operations … Operational, detection-and-response-led security environment What This Role Is Not Not GDPR-, ISO-, or risk-framework-led Not a pure compliance or GRC role Not policy- or audit-heavy This role is about real-world security operations and outcomes . Experience & Skills Proven experience managing or leading Security ...

protecting client data, intellectual property, and business operations while enabling secure innovation. Through four key pillars Digital Trust, Technical Assurance, Security Operations, and Governance, Risk and Compliance (GRC) the team delivers comprehensive security solutions that align with our firms strategic objectives as well as client and regulatory requirements. Our integrated … workable, mature and optimized function and service. This role requires extensive experience across all Identity and Access Management core disciples including identity management, identity governance and administration, privileged access, and conditional access and in particular, machine identities. It also requires deep technical skills in the DevSecOps. This role will support ...

Security Architect with 10+ years of experience to drive the security strategy for major global clients. You will bridge the gap between high-level governance (ISO27001, GRC) and technical cloud implementation. Key Responsibilities: Design & Strategy: Define security architectures, infrastructure cost models, and roadmaps. Technical Leadership: Oversee requirements for Firewalls, SIEM ...

enjoys driving practical improvements and embedding risk management into day-to-day operations. Key Responsibilities You will: Contribute to the operation, enhancement, and governance of the security risk management framework, ensuring alignment with business goals, regulatory needs, and recognised industry practices. Conduct detailed security risk assessments and support the creation … will have: Hands-on experience in security risk management within a dynamic, high-growth, or highly regulated environment. A background designing, maintaining, or enhancing governance processes and procedures, ideally related to security or technology risk. Strong experience performing risk assessments across cloud environments and modern technology stacks. Good understanding ...

safeguard Experian's assets. You will automate the review of security controls by reducing manual effort and increasing assessment efficiency. You will blend cybersecurity governance, risk and compliance (GRC) and automation engineering to improve evidence collection and control validation crucial for supporting the security organization's control assurance program. … integrations and scripting (e.g. Python, PowerShell, JavaScript). Experience with IT Service Management, DevOps, Identity and access management, ERP systems (e.g., SAP, Oracle) and GRC tools. Experience leveraging automation, data driven testing techniques and generative AI to gain efficiency in control assurance. Additional Information Benefits package includes: Great compensation package ...

information and cyber security across the organisation Manage and optimise third-party security relationships , including suppliers, MSPs, and assurance partners Oversee security governance, risk management, and compliance activities Provide leadership and direction to a small internal team , supported by external vendors Engage with senior stakeholders to translate security risk into ...

best practice. This is a newly created position in a rapidly growing business. A brilliant opportunity! The following skills/experience are essential: Strong GRC background Governance, Risk and Compliance background Experience in conducting risk assessments PCI DSS, ISO 27001, NIS 2 and the UK telecom Security Act Good understanding … skills Salary: Up to £95,000 + bonus + package Location: London (good work from home options available) If you are interested in this Governance Risk and Compliance Lead position and meeting the above requirements please apply immediately. ...

impressive multinational Telecoms business is looking for an accomplished Senior GRC Manager to join its team based in London. Please note, this role is hybrid so you will be required to work in the office 3 days per week. The Senior Governance, Risk & Compliance (GRC) Manager will be responsible … establishing, operating, and continuously improving the organisations enterprise-wide compliance, risk, and security governance frameworks. This senior leadership role requires deep expertise across regulatory, industry, and cybersecurity standards specifically the UK Telecom Security Act, PCI DSS, ISO 27001, and NIS2. You will act as the organisations authoritative subject-matter expert ...