276 to 300 of 672 GRC Jobs in the UK

with different Cyber Security teams Excellent attention to detail with planning/reporting data Competent in stakeholder management and cross-functional team collaboration Advantageous if you: Have worked with GRC Tooling like RSA Archer Have worked in the Financial Services industry in a similar role We are currently reviewing CV's for this role and interviews are ongoing this week. More ❯

with different Cyber Security teams Excellent attention to detail with planning/reporting data Competent in stakeholder management and cross-functional team collaboration Advantageous if you: Have worked with GRC Tooling like RSA Archer Have worked in the Financial Services industry in a similar role We are currently reviewing CV's for this role and interviews are ongoing this week. More ❯

an equivalent technology risk and compliance related role Technical understanding of GCP cloud platforms, including how services are used and secured against security audit controls Experience working with Global GRC tools and processes Extensive knowledge of at least 2 or more of the following compliance frameworks Cyber Essentials plus, C5, NIST 800-53, PCI, SOC, ISO 27x Excellent written, verbal More ❯

data looking for themes, oddities and quality enhancements. Deliver on specific risk related projects in response to business needs. Support the implementation and drive adoption of an industry leading GRC Tool across the Company (AuditBoard). ABOUT YOU: 8 years ofEnterprise Risk Management Experience - Experience and knowledge of risk management framework methodology and practices gained in global corporate organisations or More ❯

Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: ca1d487bdc62 Job Views: 23 Posted: 17.06.2025 Expiry Date: 01.08.2025 col-wide Job Description: Information Security Analyst – GRC - 3 Months – Hybrid – Northampton My client is seeking an Information Security Analyst (Governance, Risk and Compliance) to play a key role in fortifying the organisations cybersecurity and privacy position. The … Key Responsibilities of the Information Security Analyst: Create phishing awareness campaign by designing and deploying phishing simulations to educate and test the user base and analyse results. Monitor, manage GRC related tickets using the ITSM platform while ensuring a timely response. Supporting GDPR compliance by management of Subject Access Requests (SARs) and Right to be Forgotten (RTBF). Third-Party … Assessments - evaluation of partners and vendors through risk assessments. Co-ordinating Penetration Testing both internally and externally while documenting findings. Information Security Analyst Experience and Skillset: Experience of Governance, Risk and compliance (GRC) and Information security. Understanding of ITSM tools. Knowledge of privacy laws such as GDPR/CCPA. Proven experience managing Phishing simulations and end user training. Proficient in More ❯

SharePoint), Comms, phone system and applications. Ensure training for the team and knowledge transfer across the IT Department for concluded projects and commissioned systems. Assist with the IT Infrastructure Governance, Risk & Vulnerability Management Implement monitoring and improvement activities to ensure infrastructure governance and compliance with both internal policies and regulations. Assist with clients and internal departments on IT infrastructure security … governance, and Risk controls. Assist with Vendor vetting and risk management. Member of IT Risk and Vulnerability Committee Member of the BCP Committee and responsible for the Development, testing and execution of ITRS IT infrastructure BCP requirements. Assist with IT financial costs including invoice approval, costing, managing and report on IT resources and budgets. Review and report on ITRS Infrastructure … 8+ years management of infrastructure incident, problem, capacity, lifecycle and change management Experience of Azure infrastructure and applications An understanding of Databases and SQL clusters Experience working in a governance framework environment The ability to document systems, practices, and workflows Knowledge of IT Governance, Risk & Compliance processes. Broad knowledge of Data Protection and GDPR Experience of BCP management and overview More ❯

Management and evolution of Zero Trust architecture and associated controls, ensuring strong security posture across our hybrid workforce. Delivery of robust IT governance, including policy development , process documentation , risk management , and compliance monitoring. Design and improvement of structured workflows and controls, including Joiner-Mover-Leaver (JML) , Disaster Recovery , and Change Management . Development of business cases and strategic recommendations for … and Intune . Strong understanding of modern enterprise security principles, including Zero Trust and cloud-native controls . Demonstrated ability to lead IT service delivery with SLAs, KPIs, and service governance in mind. Excellent communicator and stakeholder partner, with the ability to influence decisions and drive outcomes across the business. A collaborative leadership style, combining strategic oversight with a readiness … Management and evolution of Zero Trust architecture and associated controls, ensuring strong security posture across our hybrid workforce. Delivery of robust IT governance, including policy development , process documentation , risk management , and compliance monitoring. Design and improvement of structured workflows and controls, including Joiner-Mover-Leaver (JML) , Disaster Recovery , and Change Management . Development of business cases and strategic recommendations for More ❯

Participate in business unit projects, providing support, guidance, validation, and overall security assurance, including sitting on major project steering committees. Support the security by design ethos and methodology. Assist GRC in building, implementing, and facilitating mechanisms for business units to assess and measure security compliance. Drive the development of security roadmaps for business units/divisions, overseeing non-conformities to … campaigns and reporting. Experience: Experience in an information security risk leadership role within a large organization. Confidence in presenting and discussing ideas with senior stakeholders. Experience in security risk governance processes and structures. Familiarity with industry standards such as ISO27001 and NIST CSF. Experience in creating, implementing, and assessing security policies and standards. Skills and Attributes: Ability to analyze complex More ❯

experience: Technical Foundation: At least 3-5 years of IT/security experience in the Defence Sector Demonstrable experience of one or more of the following areas: MoD Security GRC/Assurance Processes: Secure by Design and RMADs/Risk Assessment Cloud security architecture documentation, s ecurity controls mapping and c ompliance checking automation MoD Cyber Operations: SOC tool evaluation … are embedded in our DNA. Read more about our commitment to a fair work environment for all. Atos is a recognized leader in its industry across Environment, Social and Governance (ESG) criteria. Find out more on our CSR commitment. More ❯

Ability to teach and explain key cyber domains, and at least one of the below: Network and infrastructure security Security operations and incident response Threat intelligence and threat modelling Governance, risk & compliance (GRC) Cloud security Penetration testing and vulnerability management Excellent communication & presentation skills. Desirable: Certifications such as CISSP, CISM, CEH, CPENT, Security+, CySA+, OSCP, AWS, GCP or Azure Security More ❯

Ability to teach and explain key cyber domains, and at least one of the below: Network and infrastructure security Security operations and incident response Threat intelligence and threat modelling Governance, risk & compliance (GRC) Cloud security Penetration testing and vulnerability management Excellent communication & presentation skills. Desirable: Certifications such as CISSP, CISM, CEH, CPENT, Security+, CySA+, OSCP, AWS, GCP or Azure Security More ❯

days of annual holiday allowance and statutory bank holidays, as well as days off for your work anniversary, career development, and volunteering. About ACA: ACA Group is the leading governance, risk, and compliance (GRC) advisor in financial services. We empower our clients to reimagine GRC and protect and grow their business. Our innovative approach integrates consulting, managed services, and our More ❯

successful system integrations Collaborate with department heads to assess and address business needs through tailored IT solutions Serve as the organisation's GDPR lead, managing data protection practices and governance Provide direct support to end users and maintain a high level of service delivery Head of Information Technology Job Requirements Bachelor's degree in IT, Computer Science or related discipline … 5+ years in senior IT leadership roles Strong knowledge of IT service management frameworks (ITIL) and supporting tools Familiarity with ERP, CRM and construction management platforms Deep understanding of governance, cybersecurity, risk management, and data compliance (GDPR, UKDPA) Experience in budget ownership, commercial vendor negotiation, and systems integration projects Proven leadership and people management skills with a focus on high More ❯

successful system integrations Collaborate with department heads to assess and address business needs through tailored IT solutions Serve as the organisation's GDPR lead, managing data protection practices and governance Provide direct support to end users and maintain a high level of service delivery Head of Information Technology Job Requirements Bachelor's degree in IT, Computer Science or related discipline … 5+ years in senior IT leadership roles Strong knowledge of IT service management frameworks (ITIL) and supporting tools Familiarity with ERP, CRM and construction management platforms Deep understanding of governance, cybersecurity, risk management, and data compliance (GDPR, UKDPA) Experience in budget ownership, commercial vendor negotiation, and systems integration projects Proven leadership and people management skills with a focus on high More ❯

and flexibility to support the demands of a FTSE 100 business.Supporting Head of Information Security Architecture and Assurance as well as working closely with key stakeholders including Head of Governance, Risk and Compliance, Digital Security, IT and business teams you will focus on core areas such as risk management and security due-diligence reviews ensuring compliance with legal, regulatory and More ❯

operations, IT systems, AML, and data protection. Ability to perform tests of controls (design and operating effectiveness). Understanding of operational processes, risk frameworks, and regulatory requirements. Proficiency with GRC tools and control testing platforms. Strong data analysis skills, including proficiency in Excel and visualization tools like Tableau or Power BI. Familiarity with risk management frameworks such as COSO, NIST More ❯

the point of application. Note: The above information relates to a specific client requirement. As a team: An exciting opportunity for Information Assurance specialists who are looking to drive governance, risk, and compliance capabilities forward and aid in the development of new and improved Cybersecurity services. As a senior Consultant, you will be recognised as a subject matter expert, responsible More ❯

better place. A safer place. A more ethical place. A place where anyone, anywhere can have a voice. That's a serious impact. NAVEX is a global leader in GRC solutions and helps organisations strengthen their risk and compliance programs with a 360-degree view of enterprise, third party and ecosystem risk for enhanced regulatory compliance and proactive risk management. More ❯

flexibility to support the demands of a FTSE 100 business. Supporting Head of Information Security Architecture and Assurance as well as working closely with key stakeholders including Head of Governance, Risk and Compliance, Digital Security, IT and business teams you will focus on core areas such as risk management and security due-diligence reviews ensuring compliance with legal, regulatory and More ❯

better place. A safer place. A more ethical place. A place where anyone, anywhere can have a voice. That’s a serious impact. NAVEX is a global leader in GRC solutions and helps organisations strengthen their risk and compliance programs with a 360-degree view of enterprise, third party and ecosystem risk for enhanced regulatory compliance and proactive risk management. More ❯

England, United Kingdom 2 days ago Regulatory Compliance Manager (FinTech: PI/EMI) London, England, United Kingdom 4 weeks ago London, England, United Kingdom 3 weeks ago Director of Governance, Risk & Compliance London, England, United Kingdom 1 week ago London, England, United Kingdom 2 weeks ago Regulatory Compliance Manager - Investments London, England, United Kingdom 1 week ago City Of London More ❯

experience, although the OT experience can be picked up with training offered. This is an all-rounder role, which whilst it will have a technical focus, will also encompass GRC and compliance Key day to day responsibilities will include: Management of cyber incidents and liaison with the SOC provider Threat hunting using proactive methods Vulnerability management (tenable is tool used More ❯

experience, although the OT experience can be picked up with training offered. This is an all-rounder role, which whilst it will have a technical focus, will also encompass GRC and compliance Key day to day responsibilities will include: Management of cyber incidents and liaison with the SOC provider Threat hunting using proactive methods Vulnerability management (tenable is tool used More ❯

the Digital & Technology environment adheres to control framework, regulatory requirements and industry standards. The role will focus on assessing, testing, and improving technology controls to provide assurance over risk management and compliance posture. What’s in it for you Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our … of the technology control environment. Who you are regulatory requirements (e.g. SOX, GDPR). Strong understanding and knowledge of key technologies (Infrastructure, Cloud, Network etc.) Experience of using and deploying GRC tooling Change agent, with the ability to embed new ways of working and drive cultural improvements Strong communication and relationship skills with the ability to engage and collaborate with More ❯

the Digital & Technology environment adheres to control framework, regulatory requirements and industry standards. The role will focus on assessing, testing, and improving technology controls to provide assurance over risk management and compliance posture. What’s in it for you Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our … of the technology control environment. Who you are regulatory requirements (e.g. SOX, GDPR). Strong understanding and knowledge of key technologies (Infrastructure, Cloud, Network etc.) Experience of using and deploying GRC tooling Change agent, with the ability to embed new ways of working and drive cultural improvements Strong communication and relationship skills with the ability to engage and collaborate with More ❯