11 of 11 GRC Jobs in Scotland

optimise revenue retention and growth. Change & Transformation: Drive fundamental change initiatives and lead on associated transformation projects. Embedding modern ways of including AI, automation, and data-led process improvements Governance & Risk Ensure compliance with all financial regulations, tax obligations, and statutory requirements. Implement strong internal controls, risk management frameworks, and scalable financial processes. Manage relationships with external stakeholders, including auditors More ❯

optimise revenue retention and growth. Change & Transformation: Drive fundamental change initiatives and lead on associated transformation projects. Embedding modern ways of including AI, automation, and data-led process improvements Governance & Risk Ensure compliance with all financial regulations, tax obligations, and statutory requirements. Implement strong internal controls, risk management frameworks, and scalable financial processes. Manage relationships with external stakeholders, including auditors More ❯

optimise revenue retention and growth. Change & Transformation: Drive fundamental change initiatives and lead on associated transformation projects. Embedding modern ways of including AI, automation, and data-led process improvements Governance & Risk Ensure compliance with all financial regulations, tax obligations, and statutory requirements. Implement strong internal controls, risk management frameworks, and scalable financial processes. Manage relationships with external stakeholders, including auditors More ❯

optimise revenue retention and growth. Change & Transformation: Drive fundamental change initiatives and lead on associated transformation projects. Embedding modern ways of including AI, automation, and data-led process improvements Governance & Risk Ensure compliance with all financial regulations, tax obligations, and statutory requirements. Implement strong internal controls, risk management frameworks, and scalable financial processes. Manage relationships with external stakeholders, including auditors More ❯

ongoing attestation for Suppliers and Third Parties. Collaborate with Legal to ensure that contractual SLAs/KPIs include security requirements and be involved in remediation where gaps exist. Reporting & Governance Maintain risk registers, control libraries and test plans; provide CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with … ICS risk and understanding of SCADA/PI/EC interfaces. Skilled at stakeholder management and risk communication to senior audiences (clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP More ❯

Cyber Security Risk Manager required to join a globally recognised SaaS company in Edinburgh, leading the governance, risk, and compliance (GRC) function and helping shape cyber security strategy in a cutting edge environment. The Company This is a modern, globally recognised SaaS company operating at the forefront of data analytics. Their datasets are relied upon by clients to make very … a collaborative and transparent team that values open communication, shared success, and measurable impact. The Role As Cyber Risk Manager, you will lead the maturity and execution of the governance, risk, and compliance (GRC) function. You will ensure the business has clear visibility of its cyber risk exposure and the processes in place to respond effectively. You will oversee the … exceptions and ensure timely review, tracking, and remediation of risks. ** Drive SOC 2 readiness activities and collaborate with auditors and internal stakeholders to ensure compliance. ** Develop and enforce cybersecurity governance policies, standards, and procedures aligned with industry frameworks. ** Work with IT, SRE, Architecture, and Procurement teams to identify, assess, and mitigate technology and third party risks. ** Provide clear, actionable reporting More ❯

Cyber Security Risk Manager required to join a globally recognised SaaS company in Edinburgh, leading the governance, risk, and compliance (GRC) function and helping shape cyber security strategy in a cutting edge environment. The Company This is a modern, globally recognised SaaS company operating at the forefront of data analytics. Their datasets are relied upon by clients to make very … a collaborative and transparent team that values open communication, shared success, and measurable impact. The Role As Cyber Risk Manager, you will lead the maturity and execution of the governance, risk, and compliance (GRC) function. You will ensure the business has clear visibility of its cyber risk exposure and the processes in place to respond effectively. You will oversee the … exceptions and ensure timely review, tracking, and remediation of risks. ** Drive SOC 2 readiness activities and collaborate with auditors and internal stakeholders to ensure compliance. ** Develop and enforce cybersecurity governance policies, standards, and procedures aligned with industry frameworks. ** Work with IT, SRE, Architecture, and Procurement teams to identify, assess, and mitigate technology and third party risks. ** Provide clear, actionable reporting More ❯

experience in business and data analysis within a complex end-to-end architecture. Expertise in re engineering and owning data and process operating models. Demonstrated success in implementing new governance or operating models across large global teams or functions. Other highly valued skills also include: Senior level experience in data management, risk, and controls within a financial services organisation. Certification … and digital and technology, as well as job specific technical skills. This role is hybrid and based in Glasgow. Purpose of the role To enable effective data governance, risk management, and compliance within the bank, acting as a liaison between business units and the Data & Records Management (DRM) function, translating business needs into actionable strategies and ensuring efficient implementation of … stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to More ❯

scheme Life assurance Electric Vehicle Scheme About the Role This is a brilliant opportunity for an experienced Cyber Security Risk professional to take ownership of a global organisations risk management and compliance strategy. Youll be joining a forward-thinking cyber team thats investing heavily in maturing its Governance, Risk, and Compliance capability, giving you the chance to shape frameworks, influence … senior leaders, and make a real impact on how the business manages risk. Youll lead key initiatives around risk governance, audit readiness, and compliance, ensuring the business continues to meet and exceed industry standards. Working closely with teams across IT, Architecture, Procurement, and Business Operations, youll bring a balanced view that protects the organisation without holding innovation back. This is … and audits. About You Youll bring a mix of technical understanding, commercial awareness, and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes Excellent communication More ❯

Glasgow/Hybrid 3 days in office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate More ❯

Glasgow/Hybrid 3 days in office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate More ❯