101 to 125 of 275 GRC Jobs in the UK

delivery , introduce AI agents to support internal users, and create self-healing, self-service tools that minimize Service Desk load. You will also play a critical role in IT governance, compliance, and operational excellence -especially as we prepare for increased regulatory scrutiny and business scale. As a lean team, we work smart. You'll need to be comfortable working with … internal self-service portals, virtual agents , and automated workflows to reduce Service Desk load. Drive the adoption of modern DevOps practices and tools to support rapid, high-quality delivery. Governance, Risk & Compliance Define and uphold IT governance and regulatory compliance standards (FSA, EBA, DORA, PCI-DSS, ISO 27001). Implement robust risk management and documentation processes to ensure audit-readiness … service enablement. Demonstrated ability to work with external partners to extend internal capabilities. Exceptional communication skills -clear, concise, and confident across technical and non-technical audiences. Deep understanding of governance, compliance, and IT service management best practices. Comfortable with rapid context switching and balancing competing priorities in a lean, fast-growing team. Fluency in English is required; additional languages are More ❯

providing guidance and thought leadership on risk best practice and assurance to technical and non-technical stakeholders. Essential requirements Experience . Preferable 7+ years relevant work experience in security governance, risk, and compliance with at least 3 years of working as a senior expert or manager of a significant department. Experience of fulfilling similar role in a software publishing or More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

mindedSVP, Head of Security Ops, Risk & Controls to lead the structuredoversight, operational assurance, and continuous improvement of our SaaSplatform. This role will sit at the heart of our operational governance model, workingwith both new and existing clients, owning key pillars such as securityoperations, release governance, quality assurance, disaster recovery, auditcoordination, SLA conformance, and the definition of technical and operationalsecurity standards … across the SaaS business. Reporting to the CTO, SaaS, this role will partner closelywith Group-wide functions including GRC, Legal, Finance, QA, and Engineering toensure secure, resilient, and high-quality SaaS delivery. OPPORTUNITIES Operational Risk& Security Oversight Own the governance of operational security and threat readiness in partnership with the CISO. Define, maintain, and enforce security standards for the SaaS … are consistently implemented across product, platform, DevOps, and client delivery teams. Lead the development of risk-informed operational controls aligned to regulatory and enterprise risk frameworks. Release Management& Change Governance Govern the release and change management lifecycle to ensure structured risk reviews, approvals, traceability, and audit readiness. Partner with platform and engineering teams to embed control requirements into DevOps workflows More ❯

Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC Reports to: Global CISO Location: London Summary of Position: This position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The role will … the cyber security strategy Take overall responsibility of information security risk and compliance Assume responsibility for the BMS Information Security Control Framework Produce and maintain a the Information Security governance and oversight target operating model Produce policies and supporting governance material Take ownership for the Information Security Risk management processes Identify information security threats and work with technical teams to More ❯

Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC Reports to: Global CISO Location: London Summary of Position: This position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The role will … the cyber security strategy Take overall responsibility of information security risk and compliance Assume responsibility for the BMS Information Security Control Framework Produce and maintain a the Information Security governance and oversight target operating model Produce policies and supporting governance material Take ownership for the Information Security Risk management processes Identify information security threats and work with technical teams to More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC initiatives Requirements … 5+ years’ experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk and … control governance across a global environment. Please DM me or apply if you're interested. More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC initiatives Requirements … 5+ years’ experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk and … control governance across a global environment. Please DM me or apply if you're interested. More ❯

Job Title: Senior IT Governance Analyst Location: Hybrid – 3 Days Onsite (Leeds or Manchester) Salary: £50,000 – £60,000 + Benefits About the Role: We're working with a growing organisation seeking an experienced Senior IT Governance Analyst to join their Information Security team. This is a key role responsible for overseeing IT governance processes, managing audit activity, and ensuring … risk controls are in place and effective. You'll work across the business to coordinate internal and external audits, support compliance efforts, and maintain a strong governance framework in line with recognised standards. Key Responsibilities: Lead the coordination of IT-related audits – internal and external, including audit readiness, stakeholder engagement, and managing action plans. Maintain and update IT risk assessments … internal controls, and associated governance documentation. Provide expert feedback to control owners, supporting remediation efforts and assessing mitigation strategies. Review control deficiencies and guide the development of effective, sustainable solutions. Partner with stakeholders across IT and the business to embed good governance and risk practices. Own and evolve the IT Risk Management Framework, working closely with the Enterprise Risk team. More ❯

solutions that automate evidence gathering and real-time compliance monitoring across frameworks such as NIST 800-53, HITRUST, PCI-DSS, and FedRAMP. - Collaborate Across Teams: Partner with cloud engineering, GRC, and program teams to align internal tooling with evolving compliance needs and operational goals. Qualifications (Text Only) Required Qualifications: - Demonstrated experience deploying automation for security operations (SOAR platforms, script-based More ❯

third-party vendors and internal stakeholders to ensure smooth project execution Develop and maintain project documentation, risk logs, and reports for senior stakeholders Ensure projects adhere to regulatory and governance frameworks Skills and Experience Proven track record delivering cyber security or information security projects in large, complex organisations Strong understanding of cyber risk, threat management, and technical security controls Excellent … stakeholder management and communication skills Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure/AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications More ❯

ongoing maintenance and uplift of the cybersecurity posture within the project. This spans systems, subsystems, products and external interfaces, and may include a mixture of operational cybersecurity functions and governance, risk and compliance (GRC) activities. Key responsibilities include: Perform systems security risk management activities, including identifying security threats, analysing the risk exposure and presenting treatment options to mitigate security risk. More ❯

legal and regulatory compliance, health and safety In order to succeed in this role, you will need to have: A recognised accountancy qualification Expert knowledge of charity finance, law and governance Effective leadership skills and experience of successfully leading multi-disciplinary teams such as IT, Health & Safety Facilities, Housekeeping and Catering Excellent communication and interpersonal skills with the ability to … reporting processes across all areas of the hospice. Develop and deliver model business cases withincorporate services and across the wider organisation. Oversee and be responsible for financial controls,risk management, and compliance with regulatory standards including (but notlimited to) VAT, Gift Aid, NI, corporation and income taxation. Ensure accurate and timely production of managementaccounts and statutory financial statements. Advise the … Finance and InvestmentSub-Committee. Corporate Services Lead, manage and develop high-performing corporateservices functions, including: - IT and digital transformation - Estates and facilities management (includingfacilities, catering and housekeeping) - Procurement and contract management - Governance & risk, policies, and compliance - Business continuity and Health & Safety Lead on capital projects and maintenance of Hospicebuildings and property to ensure legal and regulatory compliance, health andsafety. Governance More ❯

and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve More ❯

with senior leadership and DTS teams to identify and address emerging threats. Represent the organisation in external networks and vendor relationships to share best practices and influence product development. Governance, Risk & Compliance Ensure technical security risks are documented and managed within the risk register. Own and manage services/processes in line with ITSM best practices. Maintain and review operational More ❯

with senior leadership and DTS teams to identify and address emerging threats. Represent the organisation in external networks and vendor relationships to share best practices and influence product development. Governance, Risk & Compliance Ensure technical security risks are documented and managed within the risk register. Own and manage services/processes in line with ITSM best practices. Maintain and review operational More ❯

Security and Compliance background. This candidate will be an innovative and forward thinking individual who possess in-depth knowledge and will be identifying Information Security compliance risks, drive Security Governance, Security Assurance and Risk Management efforts, manage regional regulatory compliance and contribute to emerging regulations and technology standards globally, partnering with Security Experts of Global Amazon Information Security teams. Your … . Also, create and maintain a trusted relationship with regulators and industry forums About the team The objective of Payments Security Compliance (PSC) is to oversee & manage Information Security Governance, Risk and Compliance (IS-GRC) for the Payments entities globally as part of Amazon's WW SRC team. The tenets for Payments Security Compliance team (Unless you know better ones More ❯

Governance, Risk and Compliance Manager. (GRC Manager) About the Role: The GRC Manager is a senior role within the Information Security team, responsible for maintaining and improving governance and risk frameworks for IT Services. You will define risk and governance processes, including how process owners are identified and the activities to ensure that the process is governed effectively, to ensure … that IT systems and information assets are adequately protected. You will be responsible for identifying, evaluating and reporting on governance and compliance risks and issues in a manner that meets the clients regulatory and legal requirements. The GRC Manager works proactively with the various departments, business units and suppliers to implement practices that meet the clients defined policies and standards … for information risk management, governance and compliance. About You: You will have a significant level of specialist expertise in IT Governance, Risk and Compliance, with proven responsibility for, and experience of, executing a robust risk and governance process and frameworks in a complex environment. You will be successful at delivering high quality, robust, resilient, responsive and secure enterprise-wide IT More ❯

ServiceNow GRC/SecOps Consultant Hybrid – London (2-3 days onsite per week) Contract | 6 Months | Competitive Outside IR35 Chapman Tate Associates is proud to be partnering with a leading organisation seeking an experienced ServiceNow GRC/SecOps Consultant to join them on a critical transformation project. This is a fantastic opportunity to work on a high-profile assignment focused … on improving governance, risk, compliance, and security operations within a complex environment. Key Responsibilities: Lead the implementation and configuration of ServiceNow GRC and SecOps modules. Collaborate with security, risk, and compliance teams to understand requirements and translate them into ServiceNow solutions. Develop workflows, automation, and reporting dashboards tailored to GRC and SecOps needs. Conduct stakeholder workshops, design sessions, and documentation. … Ensure integration with existing systems and adherence to security policies. Skills & Experience: Proven track record delivering ServiceNow GRC and/or SecOps solutions. Deep understanding of ServiceNow architecture and best practices. Experience working in hybrid enterprise environments. Strong stakeholder management and communication skills. Ability to work independently and meet project milestones. Nice to Have: ServiceNow certifications (e.g., CSA, CIS-GRC More ❯

ServiceNow GRC/SecOps Consultant Hybrid – London (2-3 days onsite per week) Contract | 6 Months | Competitive Outside IR35 Chapman Tate Associates is proud to be partnering with a leading organisation seeking an experienced ServiceNow GRC/SecOps Consultant to join them on a critical transformation project. This is a fantastic opportunity to work on a high-profile assignment focused … on improving governance, risk, compliance, and security operations within a complex environment. Key Responsibilities: Lead the implementation and configuration of ServiceNow GRC and SecOps modules. Collaborate with security, risk, and compliance teams to understand requirements and translate them into ServiceNow solutions. Develop workflows, automation, and reporting dashboards tailored to GRC and SecOps needs. Conduct stakeholder workshops, design sessions, and documentation. … Ensure integration with existing systems and adherence to security policies. Skills & Experience: Proven track record delivering ServiceNow GRC and/or SecOps solutions. Deep understanding of ServiceNow architecture and best practices. Experience working in hybrid enterprise environments. Strong stakeholder management and communication skills. Ability to work independently and meet project milestones. Nice to Have: ServiceNow certifications (e.g., CSA, CIS-GRC More ❯

Please visit our careers site to find out more about working at Ki Job Details: Technology Governance Analyst Full details of the job. Vacancy Name: Technology Governance Analyst Employment Type: Permanent Location: London Role Details How insurance is underwritten here hasn't changed in 300 years - until now. At Ki, we are genuinely solving problems that haven't been solved … a risk taxonomy and reference library. Incident & Event Management - Review, analyse, and document internal/external risk events; support risk assessments, control testing, and vendor assurance processes. Risk Controls & Governance - Develop and maintain governance frameworks, policies, and IT controls; manage compliance procedures and support the GRC platform. Technology Service Governance - Operate service interfaces, track governance decisions, analyse performance metrics, and … facilitate audits/certifications. Reporting & Documentation - Prepare reports on technology risk and governance performance; maintain accurate documentation and explore new risk visualisations. Collaboration & Learning - Drive awareness campaigns, support compliance training, research advancements in technology risk, and contribute to team development. Required skills & experience: Experience in Enterprise technology services, support or administration including ITIL and asset management Understanding of various types More ❯

and precise mindset with attention to detail in order to drive the development of cohesive and comprehensive action plans and responses to audits and examinations, in addition to documenting governance processes and procedures. WHAT YOU'LL BE DOING: Develop, implement, operate, embed, maintain and oversee procedures to govern and oversee technology-related issues, audit and regulatory findings. Leading a team … both internal and external stakeholders. Own strategic relationships and innovate partnerships with both internal and external audit teams. Develop and run the Engineering Exceptions & Risk Acceptance process, ensuing robust governance over risk acceptance. Includes reporting at divisional levels feeding into risk profiles. Oversight and coordination of regulatory-led assessments, examinations & enquiries, centrally across all Engineering divisions. Build and maintain central … register. Maintain Regulatory Obligations Register. Monitor and report compliance with regulations. Present updates and reporting to senior leadership, providing details around impacts to the organisation and solutions where required. Governance and oversight of Client Audits and other Non-Standard Due-Diligence requests - e.g. TLPT Governance and Oversight of other External/Customer-Contractual/Legal/Regulator-Driven Assessments (e.g. More ❯

risk frameworks across daily processes. Execute regular risk assessments, documenting key exposures and tracking mitigation strategies. Develop and deliver real-time risk dashboards and MI for senior leadership and governance committees. Conduct control testing and assurance activities on design and operational effectiveness. Drive root cause analysis of operational incidents and ensure control enhancements are implemented. Collaborate with internal audit, compliance … effectiveness. Strong grasp of post-trade processes, settlements, reconciliations, and trade lifecycle risk points. Track record of supporting or managing regulatory reviews and internal/external audits. Familiarity with GRC tools or risk technology platforms and a data-driven approach to reporting. Strong stakeholder management and communication skills, including influence at senior level. Proactive mindset with the ability to challenge More ❯

perform periodic control testing Engage with stakeholders across BISL functions to develop risk metrics that will enable effective risk and control monitoring Compile management information on risks to existing governance and oversight bodies, including the Board Support, periodic risk assessments across various business processes Map out processes and identify key dependencies, risks, controls, and issues as well as rank them … with input from BISL management, based on impact and probability Manage risk related information in the firm's GRC tool Help with the creation of Risk Committee materials and meeting minutes Coordinate and contribute to the review of BISL policies and procedures and the drafting of new ones as required Support the development and delivery of risk management training Collaborate More ❯