1 to 25 of 53 GRC Jobs in London

purpose Implementing Information and Cybersecurity outcomes across a diverse portfolio of S&R project offerings Advising clients across cyber transformation, security strategy, governance, operating model, risk & compliance, maturity assessments, resilience and architecture Conducting threat modelling, impact analysis, architecture and assurance reviews, defining appropriate remediation actions Supporting implementation of cybersecurity controls ...

financial markets, FMIs and CSD operations is an advantage Experience with tools like ServiceNow, Excel, and basic security testing platforms. Experience with ServiceNow GRC is an advantage Certification such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH, etc. is an advantage. Strong communication and coordination skills, with the ability ...

financial markets, FMIs and CSD operations is an advantage Experience with tools like ServiceNow, Excel, and basic security testing platforms. Experience with ServiceNow GRC is an advantage Certification such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH, etc. is an advantage. Strong communication and coordination skills, with the ability ...

languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge of AI security risks and frameworks (e.g. ISO 42001). Security qualifications or certifications ...

improve efficiency, consistency, and scalability Preferred A blend of consulting and in-house industry experience Experience implementing enterprise-grade integrated risk management or GRC solutions Professional certifications such as CISM, CRISC, CISA, CISSP Please send me a copy of your CV if you meet the requirements ...

security risk assessment experience (AWS experience a must) Familiarity with ISO 27001, NIST, SOC 2, PCI-DSS Comfortable engaging technical and non-technical stakeholders GRC tooling experience, consulting background, CISM/CRISC/CISSP This is an URGENT role so please apply ASAP. ...

firm’s enterprise application environment, comprising centrally governed, firmwide systems that support legal service delivery, financial and matter management, document and information governance, client intake and risk compliance, knowledge and collaboration, talent operations, and enterprise reporting. The role focuses on ensuring the availability, security, performance, and integration stability of these ...

Position: GRC Analyst - Cyber Security Type: Permanent Location: Remote, UK-based Salary: £50-60K We're seeking a GRC Analyst to strengthen pour client's governance, risk and compliance capability. The organisation is committed to maintaining robust security standards and regulatory compliance across its operations. This is a fully … remote role offering real visibility and the opportunity to influence security maturity across a diverse environment. The Role As a Cyber Security GRC Analyst, you will support and enhance the organisation's security governance framework, risk management processes, and compliance activities. Working closely with IT, security and business stakeholders ...

GRC Analyst – 3-month contract – Fully Remote My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current … essential. Knowledge of the requirements of the above standards in relation to contracts and vendor relationships is essential. Key Skills & Experience from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks ...

reports that provide senior stakeholders with meaningful insight into the organisation's third-party cyber risk posture. Embed third-party security controls into vendor governance processes, working closely with Procurement, Legal, Technology, and Risk. Monitor compliance with industry frameworks such as CIS Controls, NIST, GDPR, and sector-specific guidance. Support … best practice. Provide data, commentary, and risk metrics for divisional or organisational IT risk reporting. Escalate material risks or emerging issues to the Cyber Governance Manager and BISO leadership when required. Performance Objectives Build a comprehensive understanding of the organisation's supplier landscape and existing vendor governance controls, taking full ...

reports that provide senior stakeholders with meaningful insight into the organisation's third-party cyber risk posture. Embed third-party security controls into vendor governance processes, working closely with Procurement, Legal, Technology, and Risk. Monitor compliance with industry frameworks such as CIS Controls, NIST, GDPR, and sector-specific guidance. Support … best practice. Provide data, commentary, and risk metrics for divisional or organisational IT risk reporting. Escalate material risks or emerging issues to the Cyber Governance Manager and BISO leadership when required. Performance Objectives Build a comprehensive understanding of the organisation's supplier landscape and existing vendor governance controls, taking full ...

About the Company Headquartered in Denmark and backed by a leading European private equity investor, our partner is a fast-growing European GRC (Governance, Risk & Compliance) SaaS company. Trusted by Tier 1 clients across highly regulated industries, they are experiencing a phase of significant and exciting growth. With strong recurring … revenues and rapidly increasing enterprise contract values, governance, information security, and commercial discipline are central to long-term value creation. The Role Reporting directly to the Head of Operations, the Contracts & Compliance Manager will take ownership of the contracts and compliance function within a growing, regulated environment. This ...

enhancing Urenco’s cyber security portfolio to protect the organisation, its customers, and the public. The CISO team is structured across three core areas: Governance, Risk & Compliance (GRC) Operational Technology (OT) Cyber & Cyber Assurance Threat Defence This opportunity sits within the Cyber Assurance Team , reporting directly to the Head … Communicate effectively with stakeholders to embed secure-by-design principles 2. Security Risk Assessment & Control Assurance Produce formal security risk assessments in collaboration with GRC, architects, and IT teams Define and agree risk mitigations and compensating controls Assure implementation and effectiveness of technical controls Translate business strategy into secure architecture ...

work, and expand client accounts. Innovation & Vision: Help define the consultancy's technical roadmap, aligning emerging technology with client needs and long-term growth. Governance & Risk Management: Ensure compliance, risk mitigation, and technical quality across all programmes under your remit. Thought Leadership: Represent the organisation externally—whether through industry events ...

work, and expand client accounts. Innovation & Vision: Help define the consultancy's technical roadmap, aligning emerging technology with client needs and long-term growth. Governance & Risk Management: Ensure compliance, risk mitigation, and technical quality across all programmes under your remit. Thought Leadership: Represent the organisation externally—whether through industry events ...

teams * Engage with internal audit and risk stakeholders where required What they are looking for Experience in technology risk, IT risk, IT controls or GRC * Exposure to regulated environments, financial services preferred but not essential * Strong stakeholder management and influencing skills * Comfortable working without formal authority * Practical mindset focused ...

very useful. You will be accountable for Infrastructure, User support, Cyber Security standards, Cloud and On Prem hybrid environment, Disaster recovery, service delivery, Governance, Risk and Compliance. There will be an element of travel required each week, so a full UK driving license is required. You will travel as needed ...

resolution. Monitor performance, optimise systems, and coordinate upgrades and patches. Maintain vendor relationships to ensure ongoing support coverage. Own documentation, configurations, and support procedures. Governance, Risk & Compliance Implement best practices across development, testing, and deployment. Ensure adherence to regulatory, security, and audit requirements. Support business continuity and disaster recovery planning. ...

management Must have legal right to work as an independent contractor in Ireland or the United Kingdom Preferred Experience selling cybersecurity, compliance, audit, GRC, or infrastructure tools Familiarity with SOC 2, ISO 27001, or security frameworks Experience selling to startups or high-growth tech companies Growth Opportunity Clear pathway ...

meet SOX and internal compliance requirements. Providing 2nd Line of Defence oversight for IT control compliance and control owner attestation. Maintaining performance visibility in GRC dashboards and reporting tools. Training IT and business teams on IT Risk and Control concepts. Preparing management reporting on Information Security risk, control performance, and … 4+ years of IT experience within Information Security, IT Risk, or similar domains. Proficiency in English. Hands‐on SAP experience (ECC, S/4, GRC) including user access management, authorisations, and SOX control analysis. Experience managing and executing SOX IT General Controls, with strong capability in SAP control performance. ...

Security Administrator, Access Management & Governance/IAM forms a key role within the Security Administration, Governance Risk & Compliance IAM Team supporting the identity & access management function, secondarily supporting the GRC team and the CISO in delivery of high quality governance reporting and access administration. You will have solid experience … both business and IT with a strong understanding of security administration and access management. This role forms a key part of the Security Administration, Governance Risk & Compliance Team, supporting the identity and access management function, secondarily supporting the GRC team and the CISO in delivery of high-quality governance reporting ...

qualifications are key for this role, make sure to check you have the preferable soft skills before applying if required. Job Title: Risk & AI Governance Consultant Location: Remote Basic Salary: £75,000 - £90,000 Summary: An exciting opportunity to join a leading enterprise business as an AI Governance Consultant. This … systems are developed and deployed responsibly, ethically, and in line with regulatory and organisational standards. You’ll play a key part in embedding governance frameworks, managing risks, and supporting compliance with evolving AI regulations across the UK and EU. Objectives: Drive the development and implementation of AI governance and risk ...

compliance-based checklist to a dynamic, risk-based operation. We are looking for a Senior Policy Administrator to lead the modernization of our governance framework.This is not a clerical role. You will not just be formatting Word documents. You will be a strategic partner to our Security Architecture and Engineering … enforceable standards. You will serve as the bridge between "What the Framework says" (NIST/TPN) and "What the Architecture does." Key Responsibilities 1. Governance Framework Architecture Build the Engine: Design and maintain the comprehensive hierarchy of Information Security documents ( Policy \to Standard \to Procedure \to Guideline ). Ensure ...

observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance and cost controls Experience & Skills This ...

Security Architect with 10+ years of experience to drive the security strategy for major global clients. You will bridge the gap between high-level governance (ISO27001, GRC) and technical cloud implementation. Key Responsibilities: Design & Strategy: Define security architectures, infrastructure cost models, and roadmaps. Technical Leadership: Oversee requirements for Firewalls, SIEM ...