1 to 25 of 61 Remote GRC Jobs in London

you possess the following?: Proven related experience in cybersecurity risk management in organizations of a similar scale. Experience in the identification and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber More ❯

a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building out a brand-new Governance, Risk, and Compliance (GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will … own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership: Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy … on cybersecurity at the board and executive level. Communicate risk posture, security investments, and incident updates clearly and confidently. Team Building: Build and lead a high-performing security and GRC team. Provide leadership, mentoring, and continuous development. Security Architecture & Technology: Guide the evaluation, adoption, and deployment of security tools and technologies that support the company’s security strategy. Security Culture More ❯

a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building out a brand-new Governance, Risk, and Compliance (GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will … own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership: Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy … on cybersecurity at the board and executive level. Communicate risk posture, security investments, and incident updates clearly and confidently. Team Building: Build and lead a high-performing security and GRC team. Provide leadership, mentoring, and continuous development. Security Architecture & Technology: Guide the evaluation, adoption, and deployment of security tools and technologies that support the company’s security strategy. Security Culture More ❯

a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building out a brand-new Governance, Risk, and Compliance (GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will … own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership: Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy … on cybersecurity at the board and executive level. Communicate risk posture, security investments, and incident updates clearly and confidently. Team Building: Build and lead a high-performing security and GRC team. Provide leadership, mentoring, and continuous development. Security Architecture & Technology: Guide the evaluation, adoption, and deployment of security tools and technologies that support the company’s security strategy. Security Culture More ❯

energy and the security of private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated Information Security Governance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our information security governance and risk management framework. This role is essential in ensuring the organisation … internal compliance communications Job Requirements Previous progressive experience in information security risk management, risk management, or compliance Strong understanding of information security frameworks (e.g., ISO 27001, NIST) Experience with GRC tools/platforms Excellent organisational, communication, and documentation skills Ability to work independently and cross-functionally in a fast-paced environment Industry certifications such as CISA, CRISC, CISSP, CISMis preferred More ❯

AVP, IT Security Specialist - RSA Archer, NIST, GRC - London - Hybrid Join a leading security governance and risk team as an AVP, IT Security Specialist . You'll play a key role in ensuring robust security controls, compliance, and continuous risk reduction across a regulated enterprise environment. Key Responsibilities: Maintain and evolve security policy, standards, procedures, and frameworks Align security practices … stakeholders Key Skills & Experience: Minimum 2 years' experience in Information or Cyber Security, ideally in financial services Solid understanding of security risk management principles and taxonomy Working knowledge of GRC platforms - RSA Archer preferred Familiarity with NIST CSF , NIST 800-53 , ISO 27001 , SOC 1 & 2 Good written and verbal communication skills for technical and non-technical stakeholders Strong documentation More ❯

such as ISO 27005, NIST RMF , or similar. Available to start immediately or within short notice . Bonus Points For: Certifications: CISSP, CISM, CRISC, CEH or equivalent. Experience using GRC tools and managing risk registers. Understanding of UK GDPR and data protection best practices. Interested? Apply now or message me directly to discuss. More ❯

and confirm effectiveness. Assess IT controls of third-party vendors and serviceproviders, ensuring compliance with contractual andregulatory obligations. Support vendor risk management activities by evaluatingthird-party cybersecurity and IT governance controls. Document findings and control weaknesses, ensuring theyare communicated clearly to relevant stakeholders. Work with control owners and process teams to developand track remediation plans for identified deficiencies,ensuring timely … environments,DevSecOps practices, and digital payment platforms. Proven ability to perform test of controls (design andoperating effectiveness) Strong understanding of operational processes, riskframeworks, and regulatory requirements. Proficiency in using governance, risk, and compliance(GRC) tools and control testing platforms. Familiarity with IT control frameworks such as NISTCybersecurity Framework, ISO 27001, and COBIT. Proficiency with GRC platforms and testing tools (e.g. More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of … and expand consulting capabilities in line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through … the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A commitment to knowledge sharing, with the ability to mentor and uplift team capabilities. Excellent communication More ❯

can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of … and expand consulting capabilities in line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through … the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A commitment to knowledge sharing, with the ability to mentor and uplift team capabilities. Excellent communication More ❯

About Agoda Agoda is an online travel booking platform for accommodations, flights, and more. We build and deploy cutting-edge technology that connects travelers with a global network of 4.7M hotels and holiday properties worldwide, plus flights, activities, and more. More ❯

that suit them best. You will achieve your mission as our Security Engineer by: Working with the Head of Engineering to develop the security strategy and ensure appropriate security governance is in place Operating and improving/implementing security infrastructure including SIEM, WAFs, Firewalls and EDR/AV Working with engineering teams to ensure best practices including secure development, security … our Cloud Security Posture, ensure appropriate IAM structures are in place, and review, triage and remediate (or coordinate remediation of) cloud infrastructure threats and findings Work closely with on Governance, Risk and Compliance to maintain certifications (e.g. ISO 27001), and identify opportunities for automation - improving efficiency and coverage. You may be right for this role if you: Have hands-on More ❯

ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it. As the first Audit Partner Manager - GRC & Compliance in EMEA at Vanta, you will elevate our approach to our auditor partnerships, partnering with our auditor partners to drive key Vanta customer metrics. Our audit partners are critical … us think critically about how we should continue to partner with auditors as we continue to scale our business. What you'll do as the first Audit Partner Manager - GRC & Compliance in EMEA at Vanta: Manage a subset of Vanta audit partners Become an expert on Vanta's auditor product so that you can train auditors on Vanta and also More ❯

Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the Information Security team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process is governed effectively, to ensure … that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that meet the clients defined policies and standards … for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at delivering high quality, robust, resilient, responsive and secure enterprise-wide IT More ❯

Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the Information Security team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process is governed effectively, to ensure … that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that meet the clients defined policies and standards … for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at delivering high quality, robust, resilient, responsive and secure enterprise-wide IT More ❯

IT Governance Officer FirstBank UK is a globally recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services/products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due to business requirements … we are now looking to acquire the services of an experienced IT Governance Officer. Please note that this is a hybrid role with 3 days in the office and 2 days working from home. Key Responsibilities: 1. Compliance and Governance: a. Oversee, and maintain compliance with Cyber Essentials Plus and ISO27001 requirements and other international standards as part of business … improvement initiatives for the IT Service Desk. c. Provide service desk performance MI Data in relation to closed and open tickets Key Skills/Experience: Proven experience in IT governance, risk management, and compliance. Has worked with auditors or in a 2nd line of defence role and assisted with audits. Experience in managing vendor relationships and ensuring compliance with SLAs. More ❯

IT Governance Officer FirstBank UK is a globally recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services/products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due to business requirements … we are now looking to acquire the services of an experienced IT Governance Officer. Please note that this is a hybrid role with 3 days in the office and 2 days working from home. Key Responsibilities: 1. Compliance and Governance: a. Oversee, and maintain compliance with Cyber Essentials Plus and ISO27001 requirements and other international standards as part of business … improvement initiatives for the IT Service Desk. c. Provide service desk performance MI Data in relation to closed and open tickets Key Skills/Experience: Proven experience in IT governance, risk management, and compliance. Has worked with auditors or in a 2nd line of defence role and assisted with audits. Experience in managing vendor relationships and ensuring compliance with SLAs. More ❯

experience: Technical Foundation: At least 3-5 years of IT/security experience in the Defence Sector Demonstrable experience of one or more of the following areas: MoD Security GRC/Assurance Processes: Secure by Design and RMADs/Risk Assessment Cloud security architecture documentation, s ecurity controls mapping and c ompliance checking automation MoD Cyber Operations: SOC tool evaluation … are embedded in our DNA. Read more about our commitment to a fair work environment for all. Atos is a recognized leader in its industry across Environment, Social and Governance (ESG) criteria. Find out more on our CSR commitment. More ❯

operations, IT systems, AML, and data protection. Ability to perform tests of controls (design and operating effectiveness). Understanding of operational processes, risk frameworks, and regulatory requirements. Proficiency with GRC tools and control testing platforms. Strong data analysis skills, including proficiency in Excel and visualization tools like Tableau or Power BI. Familiarity with risk management frameworks such as COSO, NIST More ❯

Job Title: OneTrust GRC Consultant Location: Hybrid (London-based) or Remote (UK-based) Job Type: Full-time or Part-time At Lex Dinamica , we’re more than a consultancy — we’re a mission-driven team helping organisations build trust through ethical, effective data practices. As a leading data privacy and governance firm, we empower clients to navigate regulatory complexity. We … are now looking for a OneTrust GRC Expert to join our growing team. This is a fantastic opportunity for someone who’s passionate about privacy, risk, and compliance technology — and who wants their work to have real-world impact. What You'll Do As a OneTrust GRC Consultant, you will: Lead the implementation, configuration, and optimisation of OneTrust GRC modules … e.g., Risk Management, Policy & Compliance, Audit, and Third-Party Risk). Guide clients through their governance journeys, from discovery to go-live, ensuring alignment with best practices and regulatory expectations (GDPR, ISO 27001, NIST, etc.). Translate complex risk and compliance needs into scalable, tech-enabled solutions using the OneTrust platform. Collaborate with cross-functional teams — from legal and privacy More ❯

Job Title: OneTrust GRC Consultant Location: Hybrid (London-based) or Remote (UK-based) Job Type: Full-time or Part-time At Lex Dinamica , we’re more than a consultancy — we’re a mission-driven team helping organisations build trust through ethical, effective data practices. As a leading data privacy and governance firm, we empower clients to navigate regulatory complexity. We … are now looking for a OneTrust GRC Expert to join our growing team. This is a fantastic opportunity for someone who’s passionate about privacy, risk, and compliance technology — and who wants their work to have real-world impact. What You'll Do As a OneTrust GRC Consultant, you will: Lead the implementation, configuration, and optimisation of OneTrust GRC modules … e.g., Risk Management, Policy & Compliance, Audit, and Third-Party Risk). Guide clients through their governance journeys, from discovery to go-live, ensuring alignment with best practices and regulatory expectations (GDPR, ISO 27001, NIST, etc.). Translate complex risk and compliance needs into scalable, tech-enabled solutions using the OneTrust platform. Collaborate with cross-functional teams — from legal and privacy More ❯

Job Title: OneTrust GRC Consultant Location: Hybrid (London-based) or Remote (UK-based) Job Type: Full-time or Part-time At Lex Dinamica , we’re more than a consultancy — we’re a mission-driven team helping organisations build trust through ethical, effective data practices. As a leading data privacy and governance firm, we empower clients to navigate regulatory complexity. We … are now looking for a OneTrust GRC Expert to join our growing team. This is a fantastic opportunity for someone who’s passionate about privacy, risk, and compliance technology — and who wants their work to have real-world impact. What You'll Do As a OneTrust GRC Consultant, you will: Lead the implementation, configuration, and optimisation of OneTrust GRC modules … e.g., Risk Management, Policy & Compliance, Audit, and Third-Party Risk). Guide clients through their governance journeys, from discovery to go-live, ensuring alignment with best practices and regulatory expectations (GDPR, ISO 27001, NIST, etc.). Translate complex risk and compliance needs into scalable, tech-enabled solutions using the OneTrust platform. Collaborate with cross-functional teams — from legal and privacy More ❯