101 to 125 of 159 GRC Jobs in the UK

Title: GRC Consultant (Governance, Risk, and Compliance) Location: Farnborough (Hybrid, minimum 3 days in the office) About Us: We are a growing Cyber Consultancy located in Farnborough, offering Managed Services and Consultancy engagements. Our team blends experienced cybersecurity experts with motivated new consultants to offer a fun and rewarding atmosphere ...

Assistant Manager – Cyber Advisory & GRC Location: Birmingham (Hybrid) The Role We are looking for a high-performing Cyber Advisory professional to join our client's newly-established team in Birmingham. At the Assistant Manager level, you are the engine of project delivery. You will transition from executing technical tasks … leading workstreams, acting as the primary point of contact for clients during onsite assessments and GRC implementations. Key Responsibilities Project Delivery: Lead the fieldwork for Cyber Maturity assessments (NIST, ISO 27001, Cyber Essentials Plus) and Third-Party Risk Management (TPRM) reviews Client Engagement: Manage day-to-day client relationships, ensuring ...

Head of Governance & Compliance Central London (Hybrid – 2 days in office) Up to £82,000 + benefits Housing Association | Permanent About the role This is a standout opportunity to join a respected Housing Association in a pivotal leadership role, reporting directly to the Executive Director of Finance and operating … Senior Management Team level. As Head of Governance & Compliance, you'll act as the organisation's regulatory focal point, ensuring strong governance, robust compliance frameworks and effective engagement with the Regulator of Social Housing. You'll also take on the formal responsibilities of Company Secretary, working closely with the Chief ...

GRC Analyst - Third Party Risk Management Fixed Term Contract, 12 months - 45k - 50k Location: Hybrid - Birmingham Your new company: I am looking to recruit a GRC Analyst, focusing on Third Party Risk Management, to join a leader in the hospitality space, with the role focusing on GRC activities, with … and relevant stakeholders. You will need: Strong understanding of GDPR, the UK Data Protection Act, and privacy and security control requirements. Experience working in GRC, information security, data protection, supplier assurance, or a related compliance role. Ability to interpret and assess technical and organisational controls. Strong analytical skills with excellent ...

engineering insights to architectural decisions. Collaborate with wider technology teams, business stakeholders, and programme partners to ensure solutions meet operational needs. Data Quality, Security & Governance: Implement engineering practices that ensure high data quality, including validation, monitoring, reconciliation, and automated testing. Embed secure by design, including encryption, access control, secure data … foundational cloud capabilities in a large, complex enterprise environment. Experience designing and implementing secure, scalable cloud patterns and guardrails. Ability to work within structured governance frameworks and contribute to platform engineering standards. Desirable: Excellent communication and stakeholder engagement skills. Ability to work collaboratively across technology, governance, risk, compliance, and finance ...

best practice. This is a newly created position in a rapidly growing business. A brilliant opportunity! The following skills/experience are essential: Strong GRC background Governance, Risk and Compliance background Strong TSA (Telecom Security Act) experience Experience with TSA submissions Experience in conducting risk assessments … + bonus + package Location: London (good work from home options available) If you are interested in this Head of GRC position and meeting the above requirements please apply immediately. ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

programmes. Your work will include: Conducting cyber security gap analyses and maturity assessments Supporting Cyber Essentials readiness and assessments Developing policies, risk registers, and governance frameworks Assisting with ISO 27001 and data protection compliance (GDPR) Contributing to security roadmaps and improvement strategies What We’re Looking … salary (depending on experience) 25 days holiday + bank holidays Fully remote-first environment (with hybrid options if preferred) Exposure to GRC, IR, and technical security projects A supportive, growth-focused culture The opportunity to see the real impact of your work over time Before You Apply This role ...

platform architecture across multiple client engagements Design scalable, secure, and future-proof ServiceNow solutions aligned with client business goals Define architectural standards, patterns, and governance models Translate complex business requirements into robust technical solutions Ensure solutions comply with ServiceNow best practices and upgrade-safe principles Client & Stakeholder Engagement … configurations, customisations, integrations, and data models Resolve complex technical issues and design challenges Collaborate closely with project managers, product owners, and business analysts Platform Governance & Optimisation Drive platform standardisation and reuse across clients where appropriate Ensure performance, security, and data integrity across implementations Support platform upgrades, version management, and technical ...

/HANA Security & GRC Senior Consultants (x 3), remote working with travel to Client when required. About the Role Lead and support implementation, configuration, and management of SA Identity Access Governance (IAG) solutions to ensure compliance and secure access. Responsibilities Design and manage roles, profiles, and authorizations in SAP systems … user guides. Train internal teams and clients on best practices in SAP security. Qualifications 3+ years of hands-on experience in SAP Security and Governance, Risk, and Compliance (GRC) solutions. Required Skills Proven experience with SAP Identity Access Governance (IAG) implementation, configuration, and administration. Deep understanding of SAP authorization concepts ...

Information Security Consultant (GRC/Technical) Overview Our client is a specialist cyber security consultancy delivering high-impact security work across enterprise environments. They have recently secured a major engagement with a FTSE 100 organisation in the energy sector and are looking to hire two Information Security Consultants to support … this work. This is a hands-on role combining governance, risk, and compliance with practical security delivery. It is not a purely advisory position. The Role You will work closely with client stakeholders, supporting the identification, assessment, and remediation of security risks within live environments. Key responsibilities include: Leading triage ...

Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through … least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure ...

+ Excellent Benefits We’re pleased to be supporting a growing, international organisation as they introduce a brand new GRC Coordinator role. This is a fantastic opportunity to take ownership of governance, risk, and compliance activity within a modern, people focused business that is scaling its global presence and digital … frameworks in motion — including ISO 27001, GDPR, HIPAA, and Cyber Essentials Plus — they now require a dedicated internal owner to: Maintain structure across all GRC activity Coordinate between teams and external advisors Keep audits, actions, and documentation progressing Support compliance awareness across the business You’ll be the person ...

Cyber Security Consultant | GRC| Information Assurance | Risk Management | Security Cleared Cyber Security Consultant required for a leading Cyber Security Consultancy with a specialism in the Defence & Central Government sectors. This is a full-time, permanent position based from home and in the Corsham client office 2-3 days a week … depending on project needs. They're looking for people highly skilled in Information Assurance, Compliance, Security frameworks, GRC & Secure by Design. Extra points if you have experience within Defence Digital. They're also looking for people with experience with the Defence/Government sectors either working directly for them ...

experience producing security design artefacts. Experience supporting audit, compliance, and penetration testing activities. Excellent stakeholder management and communication skills. Desirable Experience: Experience with SAP GRC Access Control or similar GRC tools. Working knowledge of NCSC guidance for enterprise and application security. Experience delivering SAP security within UK Government or highly ...

Purpose of Position As Information Security GRC Specialist (f/m/d) you will own and drive Awin’s global Information Security Risk Management capability end-to-end, ensuring the business not only understands its risks but takes measurable action to reduce them. You will be accountable for embedding … business processes so that risks are considered early and proactively, rather than retrospectively. As the most senior member of the team, mentor and develop GRC team members, building capability in risk management and assurance. Lead horizon scanning across emerging threats, regulatory changes, and industry developments, translating these into practical risk ...

business processes so that risks are considered early and proactively, rather than retrospectively. As the most senior member of the team, mentor and develop GRC team members, building capability in risk management and assurance. Lead horizon scanning across emerging threats, regulatory changes, and industry developments, translating these into practical risk … within an ISO 27001-certified ISMS environment Strong knowledge of frameworks such as ISO 27001 Experience designing, implementing, or improving control frameworks Experience with GRC platforms (e.g. Hyperproof) Confident communicator (with very good English skills) - able to build relationships and challenge/influence senior stakeholders Our Offer Flexi-Week and ...

cyber risks. Within this role you will also be involved in coordinating incident response, supporting audits and assurance activities, and contributing to reporting and governance forums. What They Are Looking For Experience in information security within a GRC focused role. Solid understanding of core security principles, including risk management, controls ...

high quality across schools and central teams. You'll balance operational oversight with strategic leadership across cyber security, infrastructure, cloud platforms, identity and access governance, and IT service management, while also driving transformation, AI adoption and future-focused investment planning. The remit spans governance and standards, risk management, policies and … consistent practice). Success in the role will come through strong stakeholder engagement and trusted partnerships working closely with senior leaders, headteachers, safeguarding and governance stakeholders to deliver solutions that directly support excellent education. You'll lead internal teams and third-party providers, embedding a customer-focused culture and continuous ...

delivery models that drive measurable business outcomes Defining and executing an ambitious AI strategy, unlocking value from LLMs and emerging technologies while ensuring governance, ethics, and IP protection Designing and overseeing an internal AI operations platform that integrates enterprise systems, automation workflows, and data assets Establishing robust AI governance frameworks … value of existing platforms, teams, and investments. At the same time, you will be navigating rapid technological change (particularly in AI) while maintaining stability, governance, and trust across a complex and regulated environment. What We re Looking For To be successful in this role, you must have/be: Deep ...

delivery models that drive measurable business outcomes Defining and executing an ambitious AI strategy, unlocking value from LLMs and emerging technologies while ensuring governance, ethics, and IP protection Designing and overseeing an internal AI operations platform that integrates enterprise systems, automation workflows, and data assets Establishing robust AI governance frameworks … value of existing platforms, teams, and investments. At the same time, you will be navigating rapid technological change (particularly in AI) while maintaining stability, governance, and trust across a complex and regulated environment. What We’re Looking For To be successful in this role, you must have/be: Deep ...

whole Infrastructure, network, cloud environment, business systems, and applications Budgets, forecasting and reporting of performance analytics Stakeholder communication Information security, cyber security, governance, risk and compliance Responsible for DR and backup strategy Identify and mitigate vulnerabilities and risks, communicate appropriately Formulate and deliver the technology roadmap Project management and delivery … oversee the SDLC and STLC Required skills and experience Cross‐functional senior strategic leadership Hands‐on experience in virtualisation, network administration, infrastructure, server maintenance Governance, risk and compliance, cyber security management RAID logs, ITIL, ITSM, SDLC, STLC, agile methodology Project management, performance reporting Desirable Experience working in regulated environments Experience ...

flow metrics, OKRs)Use insights to drive continuous improvement and inform decision-makingProvide visibility of delivery progress, risks, and dependencies at a portfolio level Governance, Risk & Compliance Identify and manage systemic risks across teams and domainsEnsure delivery aligns with regulatory, compliance, and responsible gambling standardsContribute to delivery frameworks and governance ...

world's leading off-price retailer. Job Description: Wh o we are The Enterprise Architecture team at TJX drives technology strategy , innovation, and governance across multiple technical domains to ensure all technology decisions align with business goals and enterprise standards. We are seeking a Senior Enterprise Architect with … ServiceNow experience to lead the design, architecture, and governance of our enterprise ServiceNow platform. You will define the strategic direction of the platform, ensure scalable and secure implementations, and partner with business and IT stakeholders to maximize the value of ServiceNow aligning with the overall TJX IT strategy and vision. ...

analytics, data science platforms) Improve overall cloud security posture, including CSPM and visibility of risks Identify and address gaps, particularly across data security and governance Work closely with stakeholders to build security awareness and improve overall security culture Ensure security is embedded into wider IT and business initiatives rather than … activity to real business impact, not just technical output Background in less regulated environments (retail, eCommerce, service-led businesses) is beneficial Some exposure to GRC is useful but not essential ...