21 of 21 GRC Jobs in the Thames Valley

Security Consultant – GRC (Governance, Risk & Compliance) Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE) Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre of Excellence.This is … a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries. Key … Responsibilities Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out. Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security. Translate complex security and compliance requirements into actionable business solutions. Build trusted relationships with clients at both technical and senior management levels. Skills More ❯

packaging solutions, paper products and recycling services in more than 30 different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and … risk register, tools, process, reporting and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T GRC scope, delegated and assigned by the Head of I&T GRC. Key Accountabilities Engage with More ❯

willing to work at customer premises, sometimes requiring some degree of travel. Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

willing to work at customer premises, sometimes requiring some degree of travel. Demonstrated professional consulting experience of 4 or more years with Enterprise IT-security, Information and Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as More ❯

Security Consultant (Governance, Risk, Compliance) Reading, UK (Hybrid with some travel) £30.00–£40.00 per hour (Inside IR35) 6-month contract. Potential to extend up to 2 years We are seeking an experienced Cyber Security Consultant (GRC) to join a leading global technology organization as part of their expanding Cyber Security practice. The successful candidate will deliver a range of Governance … Risk, and Compliance (GRC) consulting engagements for large enterprise clients, supporting the full project lifecycle from scoping to delivery and reporting. You’ll work closely with senior stakeholders, from technical teams through to directors, providing expert advisory support to strengthen cyber security frameworks and ensure compliance with global standards. Key Responsibilities Deliver end-to-end Cyber GRC consulting projects for … emerging technology risk management. Collaborate with internal and client teams to enhance cyber resilience and compliance maturity. About You Minimum of 4+ years’ experience in IT Security, Information Security Governance, Technology Risk Management, or Cyber Compliance. Strong consulting background with demonstrable client-facing experience. Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or CISMP. A solid understanding of Cloud More ❯

achieved through clear strategic partnerships and technical expertise. Responsibilities will cover both technical (working with vendors, quality assurance, requirements analysis, technical L3 work) and non-technical (line management, mentoring, governance, roadmap, risk, and compliance). Someone who isn't afraid to get their sleeves rolled up and get into the detail will be a key trait. No two days will More ❯

and flexibility to support the demands of a FTSE 100 business.Supporting Head of Information Security Architecture and Assurance as well as working closely with key stakeholders including Head of Governance, Risk and Compliance, Digital Security, IT and business teams you will focus on core areas such as risk management and security due-diligence reviews ensuring compliance with legal, regulatory and More ❯

GRC Cyber Security Analyst Our client, who is a Times Top 100 employer, is urgently looking for an experienced GRC Cyber Security Analyst to join their team on a permanent basis. Please note, the role is remote, with travel required to an office once a month on average. You will work on security consultancy and risk activities with external and … posture and compliance. You will also support a security transformation programme, by delivering initiatives. Our client is looking for someone who can shape change and has an experience in GRC, security architecture, consultancy and identity management. You will be rewarded with an excellent salary, as well as a brilliant benefits package including remote working, annual leave, pension scheme, discounts off … tech (laptops, phones, televisions), training & progression any many, many more perks! GRC Cyber Security Analyst – Key Skills: Excellent understanding and experience around Governance, Risk and Compliance (GRC) within a Cyber Security setting Experience and knowledge around the ISO27000 family – know the differences between each and able to implement each Cyber Essentials Plus Certification The following are all nice to have More ❯

skills, experience + tasks will include: ServiceNow Architect with TSOM (Telecoms Service Operations Management) implementation projects. Design + implementation of ServiceNow modules including: TSOM, ITSM, ITOM, ITAM, HRSD, CSM, GRC, SecOps + custom applications. Designing + implementing CMDB and Discovery. Proven expertise in ServiceNow integrations involving: REST, SOAP, APIs, and MID Servers. ServiceNow scripting (JavaScript, Glide, Flow Designer) and ServiceNow More ❯

good understanding of security frameworks and regulatory requirements. In addition, this role requires you to have experience of Information Security. The role will report directly to the Head of Governance, Risk and Compliance, with whom you will work to deliver the goals of the company to have a fit-for-purpose security standards framework. This is a role that requires … Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS-R). Review and update standards regularly in response to emerging threats and regulatory changes. Governance & Compliance: Oversee the exception management framework, including reporting, approvals and reviews prior to expiry. Monitor compliance with security policies and standards across digital and business teams. Act as the primary … regulations, technologies and industry best practices to ensure standards remain current and effective. What you should bring to the role: Essential Experience: Experience in information security or a related governance role. Experience applying security frameworks and regulatory requirements (CIS, GDPR, NIS-R). Experience collaborating across multiple business areas and functional teams. Proven ability to work independently, with strong stakeholder More ❯

ability to manage third-party vendors, define SOWs, and oversee service delivery Ability to analyse access-related risks and respond effectively during security incidents Experience in developing and enforcing governance, risk, and compliance (GRC) frameworks Nice to Have Skills: Familiarity with multi-factor authentication (MFA), role-based access control (RBAC), and orphan account mitigation Knowledge of cybersecurity audits, regulatory regimes … with at least 3 years focused on IAM leadership roles Hands-on experience managing IAM systems in complex, multi-site environments Demonstrated success in developing strategic security roadmaps and governance frameworks Other Requirements: Willingness to collaborate across departments, including IT, HR, Data Privacy, and Compliance Ability to work in a fast-paced environment, balancing multiple priorities Experience working with external More ❯

ability to manage third-party vendors, define SOWs, and oversee service delivery Ability to analyse access-related risks and respond effectively during security incidents Experience in developing and enforcing governance, risk, and compliance (GRC) frameworks Nice to Have Skills: Familiarity with multi-factor authentication (MFA), role-based access control (RBAC), and orphan account mitigation Knowledge of cybersecurity audits, regulatory regimes … with at least 3 years focused on IAM leadership roles Hands-on experience managing IAM systems in complex, multi-site environments Demonstrated success in developing strategic security roadmaps and governance frameworks Other Requirements: Willingness to collaborate across departments, including IT, HR, Data Privacy, and Compliance Ability to work in a fast-paced environment, balancing multiple priorities Experience working with external More ❯

Role Overview Our client is seeking an experienced, hands on Senior Information Security Analyst to support both their technical security work and governance, risk and compliance (GRC). You will assess risks, review supplier and project security, respond to security questionnaires and tenders, support incident investigations, and help maintain compliance with Cyber Essentials Plus, ISO 27001, DSPT and GDPR. Responsibilities … to policy updates. Provide clear security advice to projects and senior stakeholders. What you'll need to succeed Proven experience in information security, with a blend of technical and GRC responsibilities. Strong understanding of cloud and network security, ideally within Microsoft ecosystems (e.g., Azure, M365, Defender suite, DLP, Conditional Access). Skilled in evaluating supplier security through questionnaires, procurement documents More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

Slough, UK with offices in Chennai, Milan & Aberdeen with teams across Europe and India. See www.agcapps.com for more details. Position We are looking for a talented SAP Security and GRC Lead ideally with exposure in the Oil and Gas/Energy Natural Resources sector/Automobile sector with a very strong demonstrable experience of working on full life cycle ECC … and S/4 HANA projects. Skills and Qualifications: 10 + years of SAP Security and GRC experience Strong experience in ECC & S/4HANA Role Design, Administration & Maintenance Strong knowledge of Security & Authorization tables in ECC, S/4HANA and GRC Strong knowledge of GRC ARA, ARM, EAM, BRM modules Strong Excel skills & ability to carry out complex analysis … on Excel Good working knowledge of configuration and administration of GRC 10.x onwards Good understanding for GRC BC sets, Workflow customization and Ruleset customization Good knowledge of SAP Security concepts, landscape, transports system and version compatibilities Knowledge of Risk Remediation & Process Controls Basic understanding of different functional tables and transactions Understanding of the primary Business Processes Good verbal, written and More ❯

end-to-end, driving remediation outcomes with customers and internal teams. Optimise the Microsoft Security Stack: Sentinel, Defender (for Endpoint/Identity), Purview, and XDR. Support Zero Trust adoption, GRC initiatives, and audit/compliance reporting (ISO27001, NIST, SOC2, CE+). Centralise and improve visibility of security events by unifying logs across cloud, on-prem, applications, and endpoints. Integrate new … advanced threat detection. Career pathways into senior engineering, incident response leadership, or architecture roles. Ongoing funded training and certification investment. Opportunity to cross-train into wider InfoSec disciplines including GRC, Zero Trust, and compliance. Training to CISSP in year one. More ❯

/day (Outside IR35) ServiceNow Architect needed for a 6 Month Contract. TSOM (Telecom Service & Operations Management) project experience with ITSM i.e other modules (TSOM, ITOM, ITAM, HRSD, CSM, GRC, SecOps). A chance to work with a global IT Consultancy on a ServiceNow project for an external client. Hybrid working - working 2-3 days/week remotely from home … skills, experience + tasks will include: Experienced needed TSOM (Telecom Service & Operations Management) implementation project toLead the design and implementation of ServiceNow modules, including ITSM, ITOM, ITAM, HRSD, CSM, GRC, SecOps and custom applications. Strong experience ServiceNow ITSM and other modules i.e (TSOM, ITOM, ITAM, HRSD, CSM, GRC, SecOps). Experience designing and implementing CMDB and Discovery. Proven expertise in More ❯

our long term aspirations can be achieved through clear strategic partnerships and spend control. Responsibilities will cover both sourcing (working with vendors, quality assurance, requirements analysis) and non-technical (governance, risk, and compliance). Someone who isn't afraid to get their sleeves rolled up and get into the detail will be a key trait. No two days will be … with IT and business leaders to understand requirements and align procurement strategy with goals Analyse spend data and trends to identify opportunities for cost optimisation & risk reduction Ensure effective governance, contract management and risk mitigation across the supply base Support broader procurement initiatives The skills and experience you need for this role: Proven experience in procurement and category management, with … with the ability to prioritise cost savings and quality Stakeholder engagement, with the ability to influence at all levels of the organisation Experience in supplier performance management and contract governance Analytical and data driven approach, with strong problem solving skills Understanding of procurement best practices, compliance and risk management frameworks Professional procurement qualifications (e.g., CIPS) – desirable Must drive and hold More ❯

Role Overview Our client is seeking an experienced, hands on Senior Information Security Analyst to support both their technical security work and governance, risk and compliance (GRC). You will assess risks, review supplier and project security, respond to security questionnaires and tenders, support incident investigations, and help maintain compliance with Cyber Essentials Plus, ISO 27001, DSPT click apply for More ❯