1 to 25 of 83 GRC Jobs in the North of England

Location: Leeds (Hybrid)/London also considered Salary: £40 - £50K (DOE) We have an exciting opportunity to join our GRC team as a Senior GRC Consultant at a time of rapid growth and innovation at Cognisys. Cognisys is a leading cybersecurity company specialising in Penetration Testing, GRC Consulting, and Managed Security services. We pride ourselves on our customer service, forward … to excellence. Our small but mighty team works with some of the best-known companies in the world, covering over 30 countries worldwide! About the Role At Cognisys, our Governance, Risk, and Compliance (GRC) team is central to our mission of ensuring our clients’ data is protected to the highest standards of security and compliance. Due to our continued expansion … we are excited to announce an opportunity to further build our GRC team with an experienced and driven individual. Your contribution will be essential to the future growth of this team. Key Responsibilities We are seeking a passionate, detail-oriented Senior GRC Consultant to join our team. In this pivotal role, you will ensure that our clients establish robust governance More ❯

impact in Cyber Security, this role is for you! Responsibilities: Ensure protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team … with scoping engagements and delivering valuable services to clients Skills/Must have: Extensive experience in Information Security Governance, Risk, and Compliance (GRC) Experience contributing to an Information Security Management System (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal More ❯

responsibilities will include, but are not limited to; Execute thorough risk assessments and gap analyses for clients. Provide in-depth control reviews, maturity ratings, and remediation actions based on Governance, Risk, and Compliance (GRC) frameworks such as Cyber Essentials, NIST, CIS, and ISO27001 Conduct comprehensive vulnerability assessments of client systems to identify potential security risks. Assist with the implementation of … security measures through TSG and partner-led services including Managed Detection and Response (MDR), Penetration and data loss prevention (DLP) programs. Provide guidance and recommendations on technical security governance, incident response, and security awareness training. Act as a trusted advisor on cyber and information security topics, helping clients implement and refine their security strategies. Prepare and present clear and concise … security services. Knowledge, Skills & Experience; Relevant professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Familiarity with GRC frameworks such as ISO27001, NIST, CIS benchmarks, and Cyber Essentials/Plus. Proven experience in a cybersecurity consultancy role, with a strong understanding of cybersecurity principles, protocols, and standards. Demonstrable More ❯

Ltd by 2x Get notified about new Head of Information Security jobs in Manchester Area, United Kingdom . Altrincham, England, United Kingdom 1 week ago Head of Cyber Security Governance, Risk and Compliance Manchester, England, United Kingdom 3 months ago Head of Cyber Security Governance, Risk and Compliance Manchester, England, United Kingdom 3 days ago Manchester, England, United Kingdom … months ago Manchester, England, United Kingdom 2 weeks ago Cyber Security Governance Senior Manager Manchester, England, United Kingdom 3 months ago Cyber Security Governance Senior Manager Manchester, England, United Kingdom 2 weeks ago Manchester, England, United Kingdom 2 days ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help More ❯

with your recruiter for more details. Base Pay Range Direct message the job poster from Maxwell Bond Head of Practice @ Maxwell Bond - Information/Cyber Security, IT Infrastructure & Cloud GRC/Governance/Risk/Compliance/Information Security/Infosec/ISO Senior Information Security Analyst (FTC 12 months) Location: Liverpool (Central) We are working with a growing organization … seeking a Senior Information Security Analyst for a 12-month fixed-term contract. Based in Liverpool, this hybrid role combines governance, risk & compliance with hands-on technical security work. Key Responsibilities: Serve as a trusted advisor across the organization, identifying and mitigating information security risks. Develop and maintain security frameworks, policies, and procedures aligned with industry standards and regulations. Lead … awareness and education throughout the organization. Represent the InfoSec team in meetings and support leadership when needed. Qualifications: Approximately 5 years of experience in cybersecurity, with a mix of GRC and technical roles. Strong knowledge of ISO 27001, NIST, or similar frameworks. Excellent communication skills, able to explain technical issues to non-technical stakeholders. Proven leadership and proactive risk management More ❯

to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team Skills/Must have: 5 years in a client-facing information/cyber security/GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience in auditing and implementing security standards such as ISO 27001/2, NIST CSF, and More ❯

to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team Skills/Must have: 5 years in a client-facing information/cyber security/GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience in auditing and implementing security standards such as ISO 27001/2, NIST CSF, and More ❯

Excellent communication skills, both verbal and written, with the ability to initiate and lead conversations with senior stakeholders Ability to prioritise and manage a varying workload Experience with using GRC solutions as part of a risk management programme. Understanding of cyber security best practices including knowledge of the general cyber threat landscape and common security controls architecture. Due to the More ❯

Social network you want to login/join with: Cyber Resilience & Metrics Manager, Wirral col-narrow-left Client: Unilever Location: Wirral, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 46e9b19ef1b9 Job Views More ❯

Position Summary As a Security Consultant, you will be responsible for delivering customer projects across a range of GRC services in line with your current capabilities, and future capabilities after suitable training/mentoring. You will be responsible for providing professional service delivery including but not limited to; consultancy services and audit/assessment services against multiple security compliance frameworks …/standards, and delivery of other GRC consultancy services as required to service our customers’ needs. This role will require additional activities as part of your job responsibilities to support the delivery of services which will include, but not limited to; customer scoping calls and scoping activities, quality assurance activities, customer project admin/planning, service development activities, internal collaboration … needs of our customers. Objectives and Key Results The Security Consultant is part of the Cyber Practice. The key objectives and results will be to:• Successful delivery of customer GRC projects across the range of the Cyber Practice GRC services, in line with both employee capabilities and business needs• Pursue customer satisfaction by delivering projects to a high standard, meeting More ❯

We’re looking for a Governance, Risk and Compliance (GRC) Analyst to join our Cyber Security and Risk team here at N Brown GroupThe Governance, Risk and Compliance team is responsible for the development and rollout of our security policies and procedures; for building an awareness programme to promote a strong security culture across the organisation; identifying and tracking risks … line risk to develop suitable controls and metrics to ensure the Digital Operations department is operating within risk appetite, and track remediation tasks when it is not. As a Governance, Risk and Compliance (GRC) Analyst you will work across all these areas of the team’s responsibilities and help to identify ways to improve simplicity and efficiency. Although this isn … t a technical role, you will be expected to have sufficient technical expertise to understand technology risks and controls to mitigate them What will you do as a Governance, Risk and Compliance (GRC) Analyst at N Brown? Support the risk management process by identifying and evaluating threats, and work with risk owners to understand the business impact and help develop More ❯

Governance, Risk and Compliance (GRC) Analyst Governance, Risk and Compliance (GRC) Analyst Get AI-powered advice on this job and more exclusive features. Sign in to access AI-powered advices Continue with Google Continue with Google Continue with Google Continue with Google Continue with Google Continue with Google Continue with Google Continue with Google Continue with Google Continue with Google … Continue with Google Continue with Google About We’re looking for a Governance, Risk and Compliance (GRC) Analyst to join our Cyber Security and Risk team here at N Brown Group About We’re looking for a Governance, Risk and Compliance (GRC) Analyst to join our Cyber Security and Risk team here at N Brown Group The Governance, Risk and … line risk to develop suitable controls and metrics to ensure the Digital Operations department is operating within risk appetite, and track remediation tasks when it is not. As a Governance, Risk and Compliance (GRC) Analyst you will work across all these areas of the team’s responsibilities and help to identify ways to improve simplicity and efficiency. Although this isn More ❯

Head of Cyber Governance, Risk and Compliance Join to apply for the Head of Cyber Governance, Risk and Compliance role at Department for Business and Trade Head of Cyber Governance, Risk and Compliance 1 day ago Be among the first 25 applicants Join to apply for the Head of Cyber Governance, Risk and Compliance role at Department for Business and … heart of the global economy! The Department for Business and Trade ("DBT") and Inspire People are partnering together to bring you an exciting opportunity for the Head of Cyber Governance, Risk and Compliance playing a pivotal role in shaping the success of the Cyber function and service. Salary between £71,738 to £93,864 (including allowances) plus excellent Civil Service … dependent on location and technical skills as assessed at interview. Flexible, hybrid working from London, Cardiff, Darlington, Belfast, Birmingham, Salford and Edinburgh. About the role As Head of Cyber Governance, Risk and Compliance (GRC) you will be playing a pivotal role in shaping the success of the Cyber function and service by ensuring that cyber security risks are monitored and More ❯

Job Title: Senior IT Governance Analyst Location: Hybrid – 3 Days Onsite (Leeds or Manchester) Salary: £50,000 – £60,000 + Benefits About the Role: We're working with a growing organisation seeking an experienced Senior IT Governance Analyst to join their Information Security team. This is a key role responsible for overseeing IT governance processes, managing audit activity, and ensuring … risk controls are in place and effective. You'll work across the business to coordinate internal and external audits, support compliance efforts, and maintain a strong governance framework in line with recognised standards. Key Responsibilities: Lead the coordination of IT-related audits – internal and external, including audit readiness, stakeholder engagement, and managing action plans. Maintain and update IT risk assessments … internal controls, and associated governance documentation. Provide expert feedback to control owners, supporting remediation efforts and assessing mitigation strategies. Review control deficiencies and guide the development of effective, sustainable solutions. Partner with stakeholders across IT and the business to embed good governance and risk practices. Own and evolve the IT Risk Management Framework, working closely with the Enterprise Risk team. More ❯

BAE Plc Providing constructive challenge and oversight of first line activities including policy compliance, control implementation and remediation Producing independent reporting and assurance opinions for stakeholders including Head of GRC, CISO and other cyber and protective security forums within BAE Plc Monitoring the cyber risk landscape and horizon-scan for emerging risks and regulatory developments including implications for control assurance … duplication Your skills and experiences: Extensive experience in cyber security assurance, risk oversight or internal audit within a regulated or government facing sector Excellent knowledge of working within Cybersecurity GRC, specifically working with national and global cyber security standards and regulatory/compliance frameworks e.g. NIST 800-53, ISO/IEC 27001, DEFSTAN, CIS, NCSC Guidance etc Deep understanding of … of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The GRC (Government, Risk and Compliance) team: BAE Systems are seeking an experienced and strategically minded Head of Cyber Security - Assurance & Compliance to lead our second line of defence cyber assurance function. More ❯

Quality, Risk and Security, including OGC and HR, fostering effective communication and collaboration. Ensure ownership and monitoring of a privacy risk register , integrating it with the rollout of a GRC tool for comprehensive risk and compliance management. Support the development of privacy governance for data risks in AI initiatives across KPMG, including assessments and monitoring of risk, mitigations strategies, development … a consistently high standard Good understanding of inter relationships between systems, architecture, platforms and security Knowledge of information security measures required by the UK GDPR Some experience working with GRC tools to manage privacy risks is advantageous Understanding of a 3 lines of defence model (risk management). Be highly motivated and confident to work independently with support from experienced More ❯

BAE Plc Providing constructive challenge and oversight of first line activities including policy compliance, control implementation and remediation Producing independent reporting and assurance opinions for stakeholders including Head of GRC, CISO and other cyber and protective security forums within BAE Plc Monitoring the cyber risk landscape and horizon-scan for emerging risks and regulatory developments including implications for control assurance … duplication Your skills and experiences: Extensive experience in cyber security assurance, risk oversight or internal audit within a regulated or government facing sector Excellent knowledge of working within Cybersecurity GRC, specifically working with national and global cyber security standards and regulatory/compliance frameworks e.g. NIST 800-53, ISO/IEC 27001, DEFSTAN, CIS, NCSC Guidance etc Deep understanding of … of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The GRC (Government, Risk and Compliance) team: BAE Systems are seeking an experienced and strategically minded Head of Cyber Security - Assurance & Compliance to lead our second line of defence cyber assurance function. More ❯

grow in maturity and size Qualifications As Head of Information Security, your responsibilities will include among others Define and lead S&Ws Information Security Strategy, policy, and execution Oversee governance, risk, and compliance (GRC) programmes including ISO 27001, NIST and other relevant standards Build, mentor, and lead a high-performing security team Provide regular updates to the Executive leadership on More ❯

Email Telephone Address Cover Note Upload CV Vacancy Description Incident Response & Continuity Planning: Participate in cyber incident exercises, business continuity, and disaster recovery planning to strengthen resilience. Security Awareness & Governance: Manage security awareness programs, phishing simulations, and contribute to cyber governance, GDPR compliance, and policy development. Audits & Compliance: Conduct internal/external audits, assess supplier security risks, and ensure adherence … hands-on training and active-learning models that increase retention rates by 75% so that cyber apprentices can prepare for real-world challenges. Support an organisation's formal security governance, regulatory and compliance (GRC) and interact with risk assessments and risk mitigations. Tools and technologies learned: Apprentices will learn to use Project Ares, Python, Microsoft Azure, Microsoft PowerShell, Linux, and More ❯

Kingdom 2 weeks ago Manchester, England, United Kingdom 1 week ago Manchester, England, United Kingdom 2 weeks ago Manchester, England, United Kingdom 1 day ago Head of Cyber Security Governance, Risk and Compliance Manchester, England, United Kingdom 3 months ago Head of Cyber Security Governance, Risk and Compliance Manchester, England, United Kingdom 3 days ago Leyland, England, United Kingdom … month ago Senior Technology Risk Advisory Manager (Financial Services) Manchester, England, United Kingdom 5 days ago Manchester, England, United Kingdom 6 days ago Associate Director, Risk and Control Governance (Bangkok Based, Relocation Support Provided) Manchester, England, United Kingdom 2 weeks ago Manchester, England, United Kingdom 1 day ago Technology Risk Internal Audit Cloud Associate Director Manchester, England, United Kingdom More ❯

legal and regulatory compliance, health and safety In order to succeed in this role, you will need to have: A recognised accountancy qualification Expert knowledge of charity finance, law and governance Effective leadership skills and experience of successfully leading multi-disciplinary teams such as IT, Health & Safety Facilities, Housekeeping and Catering Excellent communication and interpersonal skills with the ability to … reporting processes across all areas of the hospice. Develop and deliver model business cases withincorporate services and across the wider organisation. Oversee and be responsible for financial controls,risk management, and compliance with regulatory standards including (but notlimited to) VAT, Gift Aid, NI, corporation and income taxation. Ensure accurate and timely production of managementaccounts and statutory financial statements. Advise the … Finance and InvestmentSub-Committee. Corporate Services Lead, manage and develop high-performing corporateservices functions, including: - IT and digital transformation - Estates and facilities management (includingfacilities, catering and housekeeping) - Procurement and contract management - Governance & risk, policies, and compliance - Business continuity and Health & Safety Lead on capital projects and maintenance of Hospicebuildings and property to ensure legal and regulatory compliance, health andsafety. Governance More ❯

Department: The Product Security Assurance Principal Engineer will be a focal point for security and information risk matters within the Engineering Product Assurance Department (EPAD). They will have Governance, Risk and Compliance (GRC) subject matter expertise and will be responsible for development of the strategy within the scope of EPAD. The Principal Engineer will be able to apply their More ❯

We are currently recruiting for a Governance Senior Manager , reporting to the Head of Governance, Risk and Compliance, to lead our Cybersecurity Governance Team at Tunstall and ensure we have the proper governance of security across all Tunstall regions, entities, and business areas. This is an incredibly exciting time to join Tunstall as we embark on an exciting period of … in the UK). Please can you ensure your CV is uploaded in English so the team can review. What will you be doing in this role? As our Governance Senior Manager , you will build a highly engaged and trained team with the required capabilities and competencies to ensure proper governance of our security function, use of the right framework … that the outcome and achievements of the team are aligned with the overall information security strategy and business objectives. Leading the development and implementation of a comprehensive corporate cybersecurity governance framework, ensuring it is current, relevant, and communicated effectively is key to the success of this role. The Ideal candidate: To be successful in this role you will have significant More ❯

Identify and communicate current and emerging information security threats Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement and notify requirements to address security deficiencies Governance, Risk & Compliance Report audit findings, including corrective action suggestions, Conducts follow up remediation and track findings from previous audits through to closure and work closely together with technical architects to More ❯

the Digital & Technology environment adheres to control framework, regulatory requirements and industry standards. The role will focus on assessing, testing, and improving technology controls to provide assurance over risk management and compliance posture. What’s in it for you Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our … of the technology control environment. Who you are regulatory requirements (e.g. SOX, GDPR). Strong understanding and knowledge of key technologies (Infrastructure, Cloud, Network etc.) Experience of using and deploying GRC tooling Change agent, with the ability to embed new ways of working and drive cultural improvements Strong communication and relationship skills with the ability to engage and collaborate with More ❯