101 to 125 of 175 GRC Jobs in the UK

and meet strategic goals. Facilitate recurring international meetings by setting agendas, tracking actions, managing time zone/holiday scheduling, and maximising participation. Drive the standardisation of threat intelligence processes, governance, and tooling. Prepare and deliver high-quality executive reports and presentations. Ensure alignment with compliance, risk, and regulatory requirements across multiple jurisdictions. Track progress, identify risks, implement mitigation, and communicate … tools such as MS Project, Jira, Confluence, Teams, SharePoint, Asana, Trello. Expertise in report-writing and analytics platforms such as Power BI, Tableau, and advanced Excel. Experience working with governance/compliance tools (e.g., ServiceNow, Archer GRC). Collaborative leadership style, with strong analytical and problem-solving skills. Ready to shape the future of global threat intelligence project management? Apply More ❯

and meet strategic goals. Facilitate recurring international meetings by setting agendas, tracking actions, managing time zone/holiday scheduling, and maximising participation. Drive the standardisation of threat intelligence processes, governance, and tooling. Prepare and deliver high-quality executive reports and presentations. Ensure alignment with compliance, risk, and regulatory requirements across multiple jurisdictions. Track progress, identify risks, implement mitigation, and communicate … tools such as MS Project, Jira, Confluence, Teams, SharePoint, Asana, Trello. Expertise in report-writing and analytics platforms such as Power BI, Tableau, and advanced Excel. Experience working with governance/compliance tools (e.g., ServiceNow, Archer GRC). Collaborative leadership style, with strong analytical and problem-solving skills. Ready to shape the future of global threat intelligence project management? Apply More ❯

and meet strategic goals. Facilitate recurring international meetings by setting agendas, tracking actions, managing time zone/holiday scheduling, and maximising participation. Drive the standardisation of threat intelligence processes, governance, and tooling. Prepare and deliver high-quality executive reports and presentations. Ensure alignment with compliance, risk, and regulatory requirements across multiple jurisdictions. Track progress, identify risks, implement mitigation, and communicate … tools such as MS Project, Jira, Confluence, Teams, SharePoint, Asana, Trello. Expertise in report-writing and analytics platforms such as Power BI, Tableau, and advanced Excel. Experience working with governance/compliance tools (e.g., ServiceNow, Archer GRC). Collaborative leadership style, with strong analytical and problem-solving skills. Ready to shape the future of global threat intelligence project management? Apply More ❯

certifications such as CISSP, CISM, CCP, CISA or ITIL. Experience with MOD, HMG, SCADA, ICS or critical infrastructure is highly desirable. This role focuses on selling Information Assurance and Governance, Risk & Compliance (GRC) services, not traditional IT infrastructure or products. It’s a consultative, value-led approach that helps clients navigate complex regulatory environments, manage cyber risks, and embed resilience More ❯

certifications such as CISSP, CISM, CCP, CISA or ITIL. Experience with MOD, HMG, SCADA, ICS or critical infrastructure is highly desirable. This role focuses on selling Information Assurance and Governance, Risk & Compliance (GRC) services, not traditional IT infrastructure or products. It’s a consultative, value-led approach that helps clients navigate complex regulatory environments, manage cyber risks, and embed resilience More ❯

IT Security & GRC Manager Permanent - £48k - £52k + strong benefits Location: Hybrid - Bristol Your new company I am looking to recruit an IT Security & GRC Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this … to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be running the IT Security and GRC department, reporting into the Head of IT. Key parts of the role include: Shape and steer the direction of IT security governance, ensuring alignment with business strategy, HMG requirements, and … landscape affecting IT systems and information. Prioritise risk treatment and resources based on impact, human factors, and cost-effectiveness. Assurance and compliance oversight and management Manage the IT Security, Governance, Risk and Compliance team, ensuring clear direction, support, and professional development. What you'll need to succeed At least one of the following, ideally 2 of CISM/CISA/ More ❯

IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities … Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices Ensure continuous monitoring, evidence collection, and audit readiness for internal and external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance More ❯

and remediation; threat hunting; security monitoring; continual improvement and providing technical assurance for solution design and changes. This will include maintaining and improving our security posture in tandem with GRC practices and policies as they evolve to align with current and future standards and frameworks, such as SOC 2, ISO 27001, as well as applicable legislation, including GDPR and UK … Incident Response and Threat Intelligence, to ensure these are executed consistently to our standards, as well as supporting Continual Security Improvement and being the Tech Ops representative in the GRC working group. As a fast growing organisation, with multiple offices across the globe, we are on a journey to standardize our security tools and infrastructure across the group, and this More ❯

or our case studies with Women in Tech . We are looking for an experienced Product Security Engineer to join our growing Security Engineering team, working closely with the GRC team and the various Engine Technology teams to make sure security is at the heart of all our technical processes. Your place within the team will depend on your individual … security best practices, vulnerability mitigation, and secure design patterns Translate regulatory requirements (PCI DSS, SOC 2, ISO 27001) into concrete technical controls and implementation plans in collaboration with the GRC team Lead incident response efforts, including investigation and remediation of security breaches Support our internal security awareness and training programs and advocating the DevSecOps mindset that we have created across More ❯

team members. Participate in the full software development lifecycle (SDLC), including requirements gathering, design, development, testing, deployment, and maintenance. Ensure solutions are scalable, reliable, and maintainable. Adhere to IT governance and security policies. Proactively identify and mitigate potential risks. Contribute to the continuous improvement of ServiceNow processes and procedures. Important: Whilst a deep technical understanding of the platform is required … to spend the majority of their time in meetings with project teams and business stakeholders, creating design documentation to meet the business objectives and supporting projects through the mandatory governance processes. There will be little hands-on development work outside of the occasional proof-of-concept or analysis work. Connect to your skills and professional experience Required: Proven ServiceNow experience … this is not a developer role) Certified Master Architect (CMA)/Certified Technical Architect (CTA) or equivalent Implementation Specialist Certification or Equivalent for two or more products (ITSM, HRSD, GRC, SecOPS, ITOM, ITAM, SPM) Connect to your business - Enabling Functions Collaboration is central to everything we do at Deloitte. From IT to HR, marketing and more, our teams help to More ❯

IT Risk & Resilience Lead Location: Hybrid/London Employment Type: Full-Time | Permanent Department: Risk, Governance & Compliance Level: Manager/Senior Manager The Opportunity Our client is looking for an experienced IT Risk & Resilience Lead to drive enterprise-wide initiatives in IT governance, risk, compliance, and operational resilience. In this strategic role, you'll help shape how our client anticipates … be responsible for designing, maintaining, and evolving our IT risk frameworks, ensuring they meet both business needs and regulatory expectations. Your work will span seven key areas: 1. IT Governance & Compliance You'll advise governance forums, monitor compliance across internal policies and regulatory standards (e.g., DORA, GDPR, FCA, BaFin), and ensure our digital resilience strategy is fully embedded across the … risk training initiatives that build resilience awareness across staff and partners, reinforcing policy adherence. 7. Innovation & Emerging Risk (AI Focus) Support development of the firm's approach to AI governance, implementation, and risk mitigation as new technologies are adopted. What You'll Bring Extensive experience in IT operational risk within financial services or a similarly regulated environment. Strong understanding of More ❯

IT Risk & Resilience Lead Location: Hybrid/London Employment Type: Full-Time | Permanent Department: Risk, Governance & Compliance Level: Manager/Senior Manager The Opportunity Our client is looking for an experienced IT Risk & Resilience Lead to drive enterprise-wide initiatives in IT governance, risk, compliance, and operational resilience. In this strategic role, you'll help shape how our client anticipates … be responsible for designing, maintaining, and evolving our IT risk frameworks, ensuring they meet both business needs and regulatory expectations. Your work will span seven key areas: 1. IT Governance & Compliance You'll advise governance forums, monitor compliance across internal policies and regulatory standards (e.g., DORA, GDPR, FCA, BaFin), and ensure our digital resilience strategy is fully embedded across the … risk training initiatives that build resilience awareness across staff and partners, reinforcing policy adherence. 7. Innovation & Emerging Risk (AI Focus) Support development of the firm's approach to AI governance, implementation, and risk mitigation as new technologies are adopted. What You'll Bring Extensive experience in IT operational risk within financial services or a similarly regulated environment. Strong understanding of More ❯

to work for one of the UK's largest charities? British Heart Foundation (BHF) is undergoing a digital transformation and we are seeking a skilled and motivated Information Security GRC Analyst to support us in this development and play a crucial in ensuring our organisation meets regulatory and industry standards. Working within BHF involves ensuring that GRC principles are comprehensively … flexible way to unlock your best work for our cause. About you With strong knowledge of various regulatory frameworks and industry standards you'll also have familiarity with Azure governance and cloud security best practices you'll have previous experience working in a GRC Analyst, risk management, or information security role, alongside this you'll have experience developing ISMS documentation … and implementing governance structures With excellent communication and stakeholder engagement skills you'll be able to think on your feet and provide innovative solutions to complex problems. About us At BHF, we are focused on the urgent need to fund more research into heart and circulatory diseases like heart diseases, stroke, vascular dementia and the conditions that cause them, to More ❯

to Apply Please apply in strict confidence by sending your CV to Kate Morgan at CV Screen . Alternate Job Titles Compliance Analyst Risk Officer Information Security Compliance Specialist Governance, Risk and Compliance (GRC) Analyst CV Screen Ltd acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job More ❯

Analyse usage data, feedback and performance metrics to continually refine strategy and drive measurable improvements in data utility, product performance and cost optimisation. Drive governance, data quality standards, risk management and compliance alignment across data touchpoints. Act as a subject matter expert on onboarding and KYC data flows, influencing decision-making and promoting best practice across teams. Ensure strong stakeholder More ❯

Analyse usage data, feedback and performance metrics to continually refine strategy and drive measurable improvements in data utility, product performance and cost optimisation. Drive governance, data quality standards, risk management and compliance alignment across data touchpoints. Act as a subject matter expert on onboarding and KYC data flows, influencing decision-making and promoting best practice across teams. Ensure strong stakeholder More ❯

globally renowned financial organisation based near St Paul's in London. Your new role Seeking a hands-on Enterprise Solution Architect to join a newly established team within the Governance, Risk, and Compliance (GRC) function of a leading financial organisation. This strategic department is focused on enhancing the organisation's GRC capabilities by identifying architectural gaps and designing robust, scalable … lifecycle, collaborating closely with cross-functional teams to ensure architectural decisions are aligned with business goals and regulatory requirements. Your expertise will be instrumental in shaping the future of GRC and Operational Risk architecture, leveraging your deep understanding of regulatory frameworks to develop solutions that span multiple compliance mandates.You will bring hands-on experience in building or implementing products and … financial services, including cloud platform integration and data platform design. Experience in architecture design and proof-of-concept delivery is essential. What you'll need to succeed Experience with GRC tools such as MetricStream, which is planned for implementation/Familiarity with other GRC platforms such as ServiceNow, RSA Archer, SAP GRC, IBM OpenPages, or LogicGate etc is fine too. More ❯

processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing … Service-Now GRC Applications/Modules with working knowledge of its built-in capabilities including Plug-ins, Workflows, UI elements, tables, dictionaries, integrations and dependencies. Experience of working on Scripting in ServiceNow. Skills Certified ServiceNow IRM/SecOps administrator/consultant (this is mandatory) Must have concluded at least 1 lifecycle of ServiceNow IRM/SecOps implementation. Experience in JavaScript … API, Web Services Working knowledge of Vulnerability Mgmt. process & tools ISO/CISA/CISM/CISSP/CRICS (preferred) PLATFORM/TOOL EXPERTISE ServiceNow GRC & SecOps More ❯

processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing … Service-Now GRC Applications/Modules with working knowledge of its built-in capabilities including Plug-ins, Workflows, UI elements, tables, dictionaries, integrations and dependencies. Experience of working on Scripting in ServiceNow. Skills Certified ServiceNow IRM/SecOps administrator/consultant (this is mandatory) Must have concluded at least 1 lifecycle of ServiceNow IRM/SecOps implementation. Experience in JavaScript … API, Web Services Working knowledge of Vulnerability Mgmt. process & tools ISO/CISA/CISM/CISSP/CRICS (preferred) PLATFORM/TOOL EXPERTISE ServiceNow GRC & SecOps More ❯

processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing … Service-Now GRC Applications/Modules with working knowledge of its built-in capabilities including Plug-ins, Workflows, UI elements, tables, dictionaries, integrations and dependencies. Experience of working on Scripting in ServiceNow. Skills Certified ServiceNow IRM/SecOps administrator/consultant (this is mandatory) Must have concluded at least 1 lifecycle of ServiceNow IRM/SecOps implementation. Experience in JavaScript … API, Web Services Working knowledge of Vulnerability Mgmt. process & tools ISO/CISA/CISM/CISSP/CRICS (preferred) PLATFORM/TOOL EXPERTISE ServiceNow GRC & SecOps More ❯

processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing … Service-Now GRC Applications/Modules with working knowledge of its built-in capabilities including Plug-ins, Workflows, UI elements, tables, dictionaries, integrations and dependencies. Experience of working on Scripting in ServiceNow. Skills Certified ServiceNow IRM/SecOps administrator/consultant (this is mandatory) Must have concluded at least 1 lifecycle of ServiceNow IRM/SecOps implementation. Experience in JavaScript … API, Web Services Working knowledge of Vulnerability Mgmt. process & tools ISO/CISA/CISM/CISSP/CRICS (preferred) PLATFORM/TOOL EXPERTISE ServiceNow GRC & SecOps More ❯

processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous control monitoring. Create & execute test plans and participate in client UAT & production migration Manage GRC Use-stories in agile team and lead the iterations from delivery perspective Understand Observables, Indicators of Compromise (IOC) and IoC Look Ups Good to have experience with configuring and implementing … Service-Now GRC Applications/Modules with working knowledge of its built-in capabilities including Plug-ins, Workflows, UI elements, tables, dictionaries, integrations and dependencies. Experience of working on Scripting in ServiceNow. Skills Certified ServiceNow IRM/SecOps administrator/consultant (this is mandatory) Must have concluded at least 1 lifecycle of ServiceNow IRM/SecOps implementation. Experience in JavaScript … API, Web Services Working knowledge of Vulnerability Mgmt. process & tools ISO/CISA/CISM/CISSP/CRICS (preferred) PLATFORM/TOOL EXPERTISE ServiceNow GRC & SecOps More ❯

organisation's portfolio of change initiatives. Reporting to the Head of Change Delivery, you'll lead the development and implementation of PMO strategies, standards, and processes to ensure effective governance and delivery of IT and business change projects.You'll facilitate governance sessions, support project managers and the Head of Change Delivery on a day-to-day basis. You will ensure … and hands-on role, offering the opportunity to influence how change is delivered across the organisation. What you'll need to succeed Proven experience in PMO lead activities and project governance Strong understanding … of project management methodologies and tools Ability to communicate effectively with technical and non-technical stakeholders Experience managing small projects and supporting complex portfolios Familiarity with IT governance, risk management, and compliance standards A collaborative mindset aligned with the organisation's values of teamwork, integrity, and inclusivity What you'll get in return You'll join a high-performing, inclusive More ❯

identify and assess risks related to software and infrastructure lifecycle or currency issues. Continuously review and recommend improvements or “ever-greening” of systems and solutions. Collaborate on the use and governance of Secrets Management solutions , ensuring alignment with enterprise risk appetite and compliance standards. Required Skills and Experience Proven experience as a Solution Architect or Systems Engineer within large-scale … ability to simplify complex information and present it in a clear and compelling manner. Experience engaging with Enterprise, Security, Data, and Infrastructure architecture stakeholders. Familiarity with Architectural Governance, Risk Management, and Compliance processes . Prior experience within a Cyber Defence or Security Operations environment is highly desirable. More ❯

identify and assess risks related to software and infrastructure lifecycle or currency issues. Continuously review and recommend improvements or “ever-greening” of systems and solutions. Collaborate on the use and governance of Secrets Management solutions , ensuring alignment with enterprise risk appetite and compliance standards. Required Skills and Experience Proven experience as a Solution Architect or Systems Engineer within large-scale … ability to simplify complex information and present it in a clear and compelling manner. Experience engaging with Enterprise, Security, Data, and Infrastructure architecture stakeholders. Familiarity with Architectural Governance, Risk Management, and Compliance processes . Prior experience within a Cyber Defence or Security Operations environment is highly desirable. More ❯