26 to 50 of 101 GRC Jobs in London

about CyberArk , visit our CyberArk blogs or follow us on X , LinkedIn or Facebook . Job Description About the Role: We are seeking a highly motivated and detail-oriented GRC Compliance Expert to join our Governance, Risk, and Compliance team. This role is pivotal in supporting customer security assessments during RFx processes, driving compliance initiatives including DORA , NIS2 , and other … regulatory frameworks, and assisting with broader GRC activities across the organization. The ideal candidate is a self-starter with strong communication skills, who thrives in a fast-paced environment and is passionate about cybersecurity, regulatory compliance, and risk management. Please note that this is a hybrid role located in our office in London. We ask to come to the office … to compliance initiatives such as DORA , NIS2 , and other applicable standards and frameworks (e.g., ISO 27001, SOC 2, GDPR). Assist in the development, maintenance, and improvement of internal GRC processes, policies, and documentation. Collaborate with cross-functional teams (Security, Legal, IT, Product, etc.) to gather information and ensure compliance obligations are met. Participate in risk assessments, control testing, and More ❯

Information Security Analyst - 6-Month FTC Governance, Risk and Compliance Location: London/Hybrid Contract Type: Fixed Term (6 months) Salary: Competitive A global professional services firm is seeking a proactive Information Security Analyst to support the delivery of robust security and privacy policies across its global operation. This role is ideal for someone with hands-on experience in information More ❯

or advisory work in support of a highly technical environment. 3+ years of experience in performing and/or participating in technical assessments of complex IT architecture • Experience with Governance, Risk, and Compliance tools and technology. Hands-on experience working successfully in a very fast-paced, rapidly evolving, results-oriented environment • Experience in working directly with auditors/regulators in More ❯

up to 15% bonus + 10% pension + guaranteed annual salary increases Are you passionate about Cyber Security Risk and ready to play a key role in shaping a GRC function from the ground up? If so, this is a brilliant opportunity to join a business that’s right at the beginning of its cyber journey. With offices in both … auditing role. It’s hands-on, it’s strategic, and it’s a chance to truly influence how cyber risk is approached across the business. Working closely with the GRC Manager, you’ll be instrumental in embedding risk awareness into the business and ensuring technology and threat considerations are front and centre. The best part? This role has space to … and KRI metrics across IS teams, prepare regulatory submissions, and track compliance. ISMS Support: Maintain the Information Security Management System (ISMS) in line with ISO 27001/27002. Manage governance forums, minutes, and documentation. Policies & Standards: Develop GRC policies, standards, and procedures. Track exceptions, monitor risk, and report on performance and compliance. Controls Framework: Strengthen the IT controls environment. Understand More ❯

Head of Cyber Governance, Risk and Complience Join to apply for the Head of Cyber Governance, Risk and Complience role at Gespreksleider Jacobs Head of Cyber Governance, Risk and Complience 1 day ago Be among the first 25 applicants Join to apply for the Head of Cyber Governance, Risk and Complience role at Gespreksleider Jacobs Join a team at the … heart of the global economy! The Department for Business and Trade ('DBT') and Inspire People are partnering together to bring you an exciting opportunity for the Head of Cyber Governance, Risk and Compliance playing a pivotal role in shaping the success of the Cyber function and service. Salary between £71,738 to £93,864 (including allowances) plus excellent Civil Service … dependent on location and technical skills as assessed at interview. Flexible, hybrid working from London, Cardiff, Darlington, Belfast, Birmingham, Salford and Edinburgh. About The Role As Head of Cyber Governance, Risk and Compliance (GRC) you will be playing a pivotal role in shaping the success of the Cyber function and service by ensuring that cyber security risks are monitored and More ❯

Join to apply for the Head of Risk & Compliance role at DAZN Get AI-powered advice on this job and more exclusive features. Department: 61-543 - Technology Operations - Technology Governance Location: UK - Leeds Description Are you ready to take the challenge to educate all employees in a young and ambitious organisation about their role in making information security a core … part of their modus operandi and conduct to appropriate behaviour change? DAZN is looking to hire an experienced Head of Risk & Compliance to join their Technology Governance team as a Fixed Term 14-month maternity cover role. Leading a team overseeing the global strategic implementation of DAZN's information security management system (ISMS), the chosen candidate will be responsible for … them in the Information Security Risk Register. Coordinating security education and awareness initiatives for all employees, including role-based training. You'll have: A strong background in information security governance, risk, and compliance. Practical experience achieving ISO27001 and PCI DSS 4.0 certification/attestation. Understanding of business continuity, data protection, and risk management standards, including ISO22301 and ISO27005. Excellent communication More ❯

Security Engineer, Governance, Risk and Compliance Create the future of travel with us Whether it's to visit the people closest to us, starting an exciting adventure, or a career-defining business trip, travel is an essential part of our lives. Yet we've all experienced the aches and pains of getting to our destination. Today, more than 4 billion … as we scale globally. What you'll do As a Security Engineer on our Foundations team, you will play a crucial role in establishing and maintaining a robust security governance framework. Your work will be instrumental in ensuring the organisation's compliance with industry standards and regulations, safeguarding our data and systems and building trust with key partners. You will … Monitor and maintain compliance with regulations, third-party requirements, and internal security policies, identifying and proactively addressing potential gaps. Partner with Engineering, Product, and Legal to implement robust data governance solutions, encompassing data labelling, access control, audit trails, de-identification, and data lifecycle management. Develop and execute internal audit programs, and effectively respond to external audits and due diligence requests. More ❯

data stored on the firms AI products. Manage the data encryption and access control mechanisms implemented on the firms AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR … and ethical guidelines. Standardise a control framework for any AI products produced by the firm, ensuring consistent security practices across all environments. Oversee the undertaking of any Governance, Risk, and Compliance (GRC) tasks or activities related to AI products, such as responding to queries or requests from external parties or auditors pertaining to AI products. Collaborate with legal teams to … legal sector organisations. Certifications in AI ethics, data privacy (e.g., CIPP/E, CIPM), or risk management (e.g., CRISC). Experience with AI auditing, algorithmic impact assessments, or model governance platforms. Knowledge of legal technology tools and platforms (e.g., legal research AI, contract analytics, generative AI). Ability to lead cross-functional initiatives in a complex, multinational environment. What we More ❯

on the firm's AI products. Manage the data encryption and access control mechanisms implemented on the firm's AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR … and ethical guidelines. Standardise a control framework for any AI products produced by the firm, ensuring consistent security practices across all environments. Oversee the undertaking of any Governance, Risk, and Compliance (GRC) tasks or activities related to AI products, such as responding to queries or requests from external parties or auditors pertaining to AI products. Collaborate with legal teams to … legal sector organisations. Certifications in AI ethics, data privacy (e.g., CIPP/E, CIPM), or risk management (e.g., CRISC). Experience with AI auditing, algorithmic impact assessments, or model governance platforms. Knowledge of legal technology tools and platforms (e.g., legal research AI, contract analytics, generative AI). Ability to lead cross-functional initiatives in a complex, multinational environment. What we More ❯

will be influenced by your own breadth of experience and can encompass a wide spectrum of tasks, from crafting robust security architectures to offering guidance on GRC (governance, risk management, and compliance) activities. Your responsibilities may also involve: Offering your security expertise in support of significant system procurements and Agile programs, ensuring the secure delivery of solutions. Identifying, analysing, and More ❯

staff & a focus on technical excellence? If so, we are looking for an experienced Security Engineer to join our growing Security Ops team, working closely with the wider GRC & policy team, DevOps teams, Dev’ team & internal IT teams to make sure security is at the heart of all our technical process'. This role will cover a wide array of More ❯

staff & a focus on technical excellence? If so, we are looking for an experienced Security Engineer to join our growing Security Ops team, working closely with the wider GRC & policy team, DevOps teams, Dev’ team & internal IT teams to make sure security is at the heart of all our technical process'. This role will cover a wide array of More ❯

Security GRC Consultant - Contract Location: Remote, UK based - occasional trips to London office needed About the Role We’re partnering with a leading cyber security consultancy to find a Security GRC Consultant who can play a pivotal role in strengthening their clients’ security posture. This is an exceptional opportunity for a GRC professional who thrives on shaping policy, embedding governance … alignment between security and business objectives. As a Security GRC Consultant, you’ll act as the crucial link between central security teams and business units, ensuring robust governance, risk management, and compliance practices are not only adopted but embedded across complex environments. What You’ll Do - Act as the primary liaison between security functions and key business stakeholders, ensuring security … requirements are aligned to business priorities.- - Champion the integration of governance, risk, and compliance controls across projects, processes, and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. More ❯

programmes which provide security oversight over internal IT and Business projects and external suppliers. Act as the Information Security SME to support the Bank's delivery of the new GRC solution, ensuring that existing solutions and services which deliver risk assessments, and third party supplier assurance assessments, are successfully transitioned over to the new GRC solution. Track and advise on … security trends and their implications. Determine the Information Security risk vision and strategy. Provide expert Information Security consultancy and advice to Senior Management as well as the Bank's governance mechanisms i.e. Risk and Executive Committees, Board. Interface with first line (IT Security) and work closely with the CISO to provide oversight and assurance over key first-line activities, in More ❯

solutions that automate evidence gathering and real-time compliance monitoring across frameworks such as NIST 800-53, HITRUST, PCI-DSS, and FedRAMP. - Collaborate Across Teams: Partner with cloud engineering, GRC, and program teams to align internal tooling with evolving compliance needs and operational goals. Qualifications (Text Only) Required Qualifications: - Demonstrated experience deploying automation for security operations (SOAR platforms, script-based More ❯

third-party vendors and internal stakeholders to ensure smooth project execution Develop and maintain project documentation, risk logs, and reports for senior stakeholders Ensure projects adhere to regulatory and governance frameworks Skills and Experience Proven track record delivering cyber security or information security projects in large, complex organisations Strong understanding of cyber risk, threat management, and technical security controls Excellent … stakeholder management and communication skills Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure/AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications More ❯

Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in information security governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for crafting innovative More ❯

delivery , introduce AI agents to support internal users, and create self-healing, self-service tools that minimize Service Desk load. You will also play a critical role in IT governance, compliance, and operational excellence -especially as we prepare for increased regulatory scrutiny and business scale. As a lean team, we work smart. You'll need to be comfortable working with … internal self-service portals, virtual agents , and automated workflows to reduce Service Desk load. Drive the adoption of modern DevOps practices and tools to support rapid, high-quality delivery. Governance, Risk & Compliance Define and uphold IT governance and regulatory compliance standards (FSA, EBA, DORA, PCI-DSS, ISO 27001). Implement robust risk management and documentation processes to ensure audit-readiness … service enablement. Demonstrated ability to work with external partners to extend internal capabilities. Exceptional communication skills -clear, concise, and confident across technical and non-technical audiences. Deep understanding of governance, compliance, and IT service management best practices. Comfortable with rapid context switching and balancing competing priorities in a lean, fast-growing team. Fluency in English is required; additional languages are More ❯

Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the Information Security team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process is governed effectively, to ensure … that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that meet the clients defined policies and standards … for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at delivering high quality, robust, resilient, responsive and secure enterprise-wide IT More ❯

Please visit our careers site to find out more about working at Ki Job Details: Technology Governance Analyst Full details of the job. Vacancy Name: Technology Governance Analyst Employment Type: Permanent Location: London Role Details How insurance is underwritten here hasn't changed in 300 years - until now. At Ki, we are genuinely solving problems that haven't been solved … a risk taxonomy and reference library. Incident & Event Management - Review, analyse, and document internal/external risk events; support risk assessments, control testing, and vendor assurance processes. Risk Controls & Governance - Develop and maintain governance frameworks, policies, and IT controls; manage compliance procedures and support the GRC platform. Technology Service Governance - Operate service interfaces, track governance decisions, analyse performance metrics, and … facilitate audits/certifications. Reporting & Documentation - Prepare reports on technology risk and governance performance; maintain accurate documentation and explore new risk visualisations. Collaboration & Learning - Drive awareness campaigns, support compliance training, research advancements in technology risk, and contribute to team development. Required skills & experience: Experience in Enterprise technology services, support or administration including ITIL and asset management Understanding of various types More ❯

and precise mindset with attention to detail in order to drive the development of cohesive and comprehensive action plans and responses to audits and examinations, in addition to documenting governance processes and procedures. WHAT YOU'LL BE DOING: Develop, implement, operate, embed, maintain and oversee procedures to govern and oversee technology-related issues, audit and regulatory findings. Leading a team … both internal and external stakeholders. Own strategic relationships and innovate partnerships with both internal and external audit teams. Develop and run the Engineering Exceptions & Risk Acceptance process, ensuing robust governance over risk acceptance. Includes reporting at divisional levels feeding into risk profiles. Oversight and coordination of regulatory-led assessments, examinations & enquiries, centrally across all Engineering divisions. Build and maintain central … register. Maintain Regulatory Obligations Register. Monitor and report compliance with regulations. Present updates and reporting to senior leadership, providing details around impacts to the organisation and solutions where required. Governance and oversight of Client Audits and other Non-Standard Due-Diligence requests - e.g. TLPT Governance and Oversight of other External/Customer-Contractual/Legal/Regulator-Driven Assessments (e.g. More ❯

risk frameworks across daily processes. Execute regular risk assessments, documenting key exposures and tracking mitigation strategies. Develop and deliver real-time risk dashboards and MI for senior leadership and governance committees. Conduct control testing and assurance activities on design and operational effectiveness. Drive root cause analysis of operational incidents and ensure control enhancements are implemented. Collaborate with internal audit, compliance … effectiveness. Strong grasp of post-trade processes, settlements, reconciliations, and trade lifecycle risk points. Track record of supporting or managing regulatory reviews and internal/external audits. Familiarity with GRC tools or risk technology platforms and a data-driven approach to reporting. Strong stakeholder management and communication skills, including influence at senior level. Proactive mindset with the ability to challenge More ❯

levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure. AWS Security is looking for a GRC Specialist to contribute to the certification, accreditation, assurance, and authorisation activities across the security program. The successful candidate is a problem-solver, quick-study, with a broad understanding of the … regulatory landscape, cloud technologies, experience in security and compliance. Key job responsibilities - Serve as the GRC Specialist for designated (physical and/or logical) components within the cloud capability, to perform assurance and authorization activities to ensure adherence to standards and protocols. - Collaborate with internal teams and customers to establish baselines and level-set the security requirements, security controls, and … 4+ years experience working in areas related to security assurance, such as cybersecurity, auditing, security architecture, regulatory affairs or public sector agencies involved in cybersecurity management. - Experience working with governance, risk and compliance programs that directly involve interaction with regulatory bodies. - Proficient with government security frameworks, policies and standards (e.g. PSPF, ISM, DSPF. ASD Essential Eight) - Experience working with cloud More ❯

data looking for themes, oddities and quality enhancements. Deliver on specific risk related projects in response to business needs. Support the implementation and drive adoption of an industry leading GRC Tool across the Company (AuditBoard). ABOUT YOU: 8 years ofEnterprise Risk Management Experience - Experience and knowledge of risk management framework methodology and practices gained in global corporate organisations or More ❯

experience: Technical Foundation: At least 3-5 years of IT/security experience in the Defence Sector Demonstrable experience of one or more of the following areas: MoD Security GRC/Assurance Processes: Secure by Design and RMADs/Risk Assessment Cloud security architecture documentation, s ecurity controls mapping and c ompliance checking automation MoD Cyber Operations: SOC tool evaluation … are embedded in our DNA. Read more about our commitment to a fair work environment for all. Atos is a recognized leader in its industry across Environment, Social and Governance (ESG) criteria. Find out more on our CSR commitment. More ❯