126 to 150 of 674 GRC Jobs in the UK

Increase your chances of reaching the interview stage by reading the complete job description and applying promptly. Join our dynamic team to navigate complex risk landscapes and fortify technology governance, making a pivotal impact in our firm's robust risk strategy. As a Tech Risk & Controls Senior Associate in Cybersecurity and Technology Controls, you will contribute to the successful management … of technology-aligned aspects of Governance, Risk, and Compliance in line with the firm's standards. Leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement effective controls. Your role in risk identification, control evaluation, and security governance is crucial in advising on complex situations and enhancing the firm's risk posture. Through … frameworks, including Swift, CHAPS, and other industry standards. Job responsibilities Support efficient and effective execution of assessments, ensuring alignment with organizational objectives, risk appetite, and regulatory compliance. Support the governance of issues raised from our assessments, tracking concerns, and resolution of findings, and ensure timely and effective closure of identified control deficiencies. Assess and monitor technology risks, ensuring compliance with More ❯

Standards (ISO27001/Cyber Essentials Plus, NIS2) as well as the General Data Protection Regulation (GDPR) and other applicable data protection laws. This role reports to the Director of Governance, Risk & Compliance and will coordinate with the Compliance department. You will oversee data protection strategies, implement policies, and ensure the secure processing of data within the organization. The role requires … Cyber Essentials Plus); lead and coordinate annual certification efforts. Other Cybersecurity Laws and Regulations: Support compliance efforts regarding EU’s emerging data and cyber laws (NIS2, Data Act). Governance: Support ongoing information security compliance and governance activities. Collaboration & Stakeholder Engagement Work closely with Legal, IT, Compliance, HR, Internal Audit, and external partners to align data protection strategies. Job Skills … Requirements Strong knowledge of GDPR, ePrivacy Directive, ISO27001, and national data protection laws. Experience in privacy law, compliance, or data security. Familiarity with data governance, cybersecurity, and IT security frameworks. Strong communication skills to engage with internal teams and external regulators. Ability to handle sensitive and confidential information with integrity. Preferred Qualifications Legal, IT security, or compliance background. Certification in More ❯

to do business securely. In tandem with this is the requirement for our clients to manage cyber risk and compliance appropriately and proportionately in order to demonstrate effective corporate governance over their cyber estate, and that it is aligned to strategic business objectives Job Role & Responsibilities We are currently seeking an energetic individual who wishes to further their career in … is working in a rapidly growing, fast paced environment with significant opportunities for development. The successful candidate will provide deep, pragmatic and relevant advice to our clients, specifically surrounding Governance, Risk and Compliance elements of their business. We cherish our talent, we nurture their skills, and we ensure they gain exposure to many sectors. We ensure that they enjoy many … within the client environment to safeguard information security. • Work with senior stakeholders where appropriate to embed security expertise in other functions. • Lead all aspects of, and continuously improve the governance and management of security to reflect changing technology, threat landscapes, regulatory requirements, and industry standard methodologies. • Provide expert counsel and mentorship to clients' senior leadership (including the board of directors More ❯

Head of Cyber Governance, Risk and Compliance Join to apply for the Head of Cyber Governance, Risk and Compliance role at Department for Business and Trade Head of Cyber Governance, Risk and Compliance 1 day ago Be among the first 25 applicants Join to apply for the Head of Cyber Governance, Risk and Compliance role at Department for Business and … heart of the global economy! The Department for Business and Trade ("DBT") and Inspire People are partnering together to bring you an exciting opportunity for the Head of Cyber Governance, Risk and Compliance playing a pivotal role in shaping the success of the Cyber function and service. Salary between £71,738 to £93,864 (including allowances) plus excellent Civil Service … dependent on location and technical skills as assessed at interview. Flexible, hybrid working from London, Cardiff, Darlington, Belfast, Birmingham, Salford and Edinburgh. About the role As Head of Cyber Governance, Risk and Compliance (GRC) you will be playing a pivotal role in shaping the success of the Cyber function and service by ensuring that cyber security risks are monitored and More ❯

Governance, Risk and Compliance Lead - Customer Assurance Join to apply for the Governance, Risk and Compliance Lead - Customer Assurance role at Wiz Governance, Risk and Compliance Lead - Customer Assurance Join to apply for the Governance, Risk and Compliance Lead - Customer Assurance role at Wiz Get AI-powered advice on this job and more exclusive features. Come join the company that … the responses to customer questionnaires and security portals (e.g., OneTrust, Whistic, Vanta Trust Center), ensuring timely and accurate submissions. Collaborate with Internal Teams: Partner with internal teams such as GRC, Security, Legal, and Product to gather the necessary evidence and insights required for customer assurance. Operationalize Customer Commitments: Ensure customer commitments related to contracts (e.g., SLAs, data handling) are operationalized … to Leadership: Provide regular reports to the Head of Security Trust, ensuring transparency and alignment with business objectives. WHAT YOU'LL BRING Experience: 6+ years of experience in security, GRC, or customer-facing technical roles (e.g., Solutions Engineering, Security Engineering, or Risk & Compliance) and 3+ years of experience in people management, Customer Security Review Experience: Prior experience supporting customer security More ❯

We're looking for a Technical Specialist to support the development and automation of our evolving technology risk management processes and IT governance framework. In this global position, you'll be part of the Technology Governance, Risk and Compliance (GRC) team, working closely with colleagues across Technology, Cybersecurity, Business Controls, and Compliance. Client Details This client is a trading firm … based in London. Description We're looking for a Technical Specialist to support the development and automation of our evolving technology risk management processes and IT governance framework. In this global position, you'll sit in the Technology Governance, Risk and Compliance team, working closely with colleagues across Technology, Cybersecurity, Business Controls, and Compliance. You'll help coordinate the many … moving parts that ensure our systems and processes remain efficient, secure, and compliant with regulatory and industry standards. Key Responsibilities Design, implement, and improve technology governance processes across areas such as IT service management, disaster recovery, and business continuity Automate compliance monitoring and reporting using scripting tools (e.g., Bash, PowerShell, Python, or SQL) Build dashboards and metrics that provide insight More ❯

expert looking to work for one of the UK's largest charities? British Heart Foundation (BHF) is undergoing a digital transformation and seeking an Information Security Manager to oversee Governance, Risk, and Compliance (GRC) within the security team and ensure regulatory and policy compliance. Joining a dynamic and growing information security team at an exciting point in the charity's … history, you’ll collaborate with teams across British Heart Foundation (BHF) to protect BHF’s objectives and integrity. Responsibilities include risk identification, assessment, mitigation, and maintaining a robust governance framework. Managing the Information Security GRC team, you'll enhance security, compliance, and risk posture in line with industry standards while maintaining ethical practices. Working arrangements This is a blended role … time to time, so you will need to work in a flexible way to unlock your best work for our cause. About you This opportunity would suit an experienced GRC professional who excels in a collaborative environment and has hands-on risk management and reporting experience. With previous experience managing and leading an InfoSec GRC team, you’ll have strong More ❯

of transparency to open up Web3 finance for everyone. To learn more about Uphold, please visit https://uphold.com. The opportunity Uphold is seeking a Senior Data & Records Governance Lead to join our Governance, Risk, and Compliance (GRC) team. This pivotal role is responsible for designing, implementing, and operating a robust data and records governance framework that supports Uphold … teams to define and enforce policies that align with privacy, compliance, and business continuity goals. This role is ideal for a systems-savvy professional passionate about integrating technology with governance to reduce risk and enable compliance-by-design. Key Responsibilities Design, implement, and maintain a scalable data and records governance framework that aligns with global regulatory requirements (e.g., GDPR, CCPA … SEC, MiCAR) and Uphold's internal policies. Establish robust governance processes and tooling to ensure the discoverability, classification, retention, and secure disposal of data across structured and unstructured environments. Monitor and enforce data quality and records lifecycle compliance across Uphold's platforms and regions, driving continuous improvement. Collaborate with cross-functional teams including Legal, Privacy, Security, IT, GRC, and Product More ❯

is creating software trusted by over 90% of leading industrial companies. Position: Digital Security – Senior Manager, Security Risk & Assurance Previous experience: Preferable 7+ years relevant work experience in security governance, risk, and compliance with at least 3 years of working as a senior expert or manager of a significant department. Experience of fulfilling similar role in a software publishing or … build a competent professional skilled team with clear career pathways for members. Senior Leadership: Provide risk management consultation and thought leadership to executives to set and enable Digital Security GRC strategy. Ideal experience Experience: Preferable 7+ years relevant work experience in security governance, risk, and compliance with at least 3 years of working as a senior expert or manager of … based on business processes and practices including product development lifecycle and supply chain. Cybersecurity Frameworks: Significant experience of building risk management service and providing risk assurance services against industry governance frameworks across global enterprise. Great skills to have: Customer Focussed: Skilled in developing strong trusted customer relationships built on understanding their needs over time and delivering what’s promised. Critical More ❯

matters, and supporting audits. Qualifications and Experience: Degree level qualification or equivalent (highly desirable) Relevant certifications like CISM and/or CRISC (highly desirable) Experience in information security, IT governance, risk, and compliance, especially with ISO 27001 Knowledge of industry frameworks such as ISO 27001, ISO 27002, ISO 27005, ISO 31000, NIST Experience with risk assessments, policy development, and third More ❯

NIST and RSA Archer platforms. Preferred Qualifications: Bachelor’s degree in Information Security, Cybersecurity, or related field. Professional certifications such as CISSP, CISA, CRISC, or CISM. Familiarity with other governance, risk, and compliance (GRC) tools. More ❯

NIST and RSA Archer platforms. Preferred Qualifications: Bachelor’s degree in Information Security, Cybersecurity, or related field. Professional certifications such as CISSP, CISA, CRISC, or CISM. Familiarity with other governance, risk, and compliance (GRC) tools. More ❯

our know-how and technology to boost their business. Job Description OVERVIEW: As a Senior Identity Management Expert , you will take a role in driving the design, implementation, and governance of robust identity and access management (IAM) solutions across our global technology landscape. You will be embedded in the Information Security team and report directly to the Head of Security … contain two Senior Experts in total. Your mission is to ensure that identity services are scalable, secure, and seamlessly integrated into our infrastructure, while also supporting the development of governance frameworks and compliance controls. From hands-on implementation of authentication protocols to guiding identity lifecycle policies, your technical expertise and strategic thinking will help us maintain a secure and user … Provide advanced support for internal Corporate Systems and Platform teams in complex IAM integrations, including custom user provisioning integrations via APIs, automation workflows and SCIM. Develop and enforce IAM governance policies covering identity lifecycle management, access reviews, segregation of duties (SoD), and recertification processes. Contribute to the definition and execution of IAM roadmap, aligning it with internal security policies and More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

in this role. ISO/IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO/IEC 42001or other data protection and security regulations. Experience with GRC platforms or compliance automation tools. Cyber Essentials PLUS hands-on assessment or audit experience. Certifications such as CISSP, CISM, or CISA would be advantageous. The Location: Bristol (hybrid working) The More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

cross-functional cyber incident planning and ensuring cybersecurity practices extend across the Supply Chain. This is a fast paced role, where the successful candidate will lead cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. They will have excellent interpersonal skills and ability to build and maintain relationships … expert recommendations on security improvements, infrastructure hardening and threat mitigation strategies. The successful candidate will monitor and assess emerging cyber risks, delivering proactive strategies to safeguard company assets and ensure cybersecurity governance aligns with the Cyber Governance Code of Practice, supporting compliance efforts. They will also, strengthen supply chain cybersecurity, working with partners and vendors to enforce … security best practices, and report findings, strategies and recommendations to senior stakeholders, providing regular updates on risk posture. Candidates should ideally have demonstrable experience in: Leading cybersecurity governance, risk management, and compliance initiatives within an enterprise environment. Managing incident response frameworks, including cross-functional planning and coordination. Conducting security audits and vulnerability assessments, with a proven track record of risk More ❯

in cloud-based, event-driven microservices architecture, preferably using AWS serverless technologies. Experienced in embedding AI/ML APIs into scalable platforms for automation and insight generation. Knowledgeable in GRC systems, with a strong grasp of compliance and regulatory technology best practices. Demonstrates strong problem-solving and critical thinking skills, with a history of breaking down complex requirements into executable … across multiple priorities and projects. Deep hands-on experience with MetricStream, AuditBoard, PolicyTech, and MyComplianceOffice. A proactive mindset with an eye for continuous improvement, innovation, and digital transformation in GRC and employee engagement domains. Strong communication skills, capable of translating technical solutions into business value. Why Choose Fitch: Hybrid Work Environment: 2 to 3 days a week in office required More ❯