51 to 75 of 238 GRC Jobs in the UK

Policy & process implementation Information Security Maturity Audits/CMMI Certification or alignment with recognised industry standards Compliance with applicable regulations & legislation Building and implementing governance & risk management processes Design implementation and testing of security tooling BC/DR & Incident response capability building and testing Production of threat intelligence reports and … as outlined by the Companies Health and Safety Policy. Essential Skills/Attributes: 3+ years in a client-facing information/cyber security/GRC role or 5+ years in a directly related field/role (such as cyber/intelligence/security in UK Armed Forces, Law Enforcement, UK … Intelligence Community, UK Government Departments) Degree in Cyber Security, Computer Science, or related subject; or genuine equivalent experience working in cyber-security, GRC, security audit etc Professional certifications (currently held) including but not limited to CISSP, CCSP, CISM, CRISC, CISA Qualifications/experience in auditing against/implementing multiple security More ❯

office. Position Summary: The Information Security Risk Manager will play a critical role in, and will be responsible for, driving risk strategy, overseeing risk governance, managing senior-level reporting, and leading key information security risk initiatives across the Alvarez and Marsal. This role will be focused on managing and maintaining … the Global Security Office Information Security Risk Register, its supporting processes, governance and reporting requirements. The successful candidate requires a strong understanding of ISO 27001 security controls, exposure to the OnSpring GRC Tool and can effectively assess and communicate technical security requirements to teams across the firm. Key Responsibilities: Risk … risk owners to manage the development and implementation of treatment plans to address identified risks, ensuring alignment with senior leadership expectations and business objectives. GRC Tool (OnSpring) Management: Own, manage and continuously develop A&M GRC platform (OnSpring) to provide a structured, scalable risk register and reporting capabilities to support More ❯

re ready to take your career to new heights, this opportunity is for you. In a nutshell The role is responsible for supporting the governance of information security, ensuring that an appropriate risk, policy, and reporting framework is managed to enable Virgin Atlantic Airways to use information safely and in … supporting identification, management, and documenting requirements that impact the risk, policy, and reporting framework. The role is also responsible for supporting the communication of governance matters with internal and external groups, such as Internal Audit, Technology Leadership Team, Safety & Security, Virgin Group, or CPNI. This role ensures robust identification, management … 4.0.1 UK GDPR, NIS2 Directive, CAP1753, and related sector obligations This makes it a great development role for those looking to step into senior GRC or advisory roles. Day to day Supports the Senior Manager in developing and maintaining an information security dashboard that documents the current state of risk More ❯

About Protecht – Who we are! Protecht is redefining the way the world thinks about risk. We help our customers create exciting opportunities for growth by transforming the way they understand and manage risk. We know that risk and reward are More ❯

About Protecht – Who we are! Protecht is redefining the way the world thinks about risk. We help our customers create exciting opportunities for growth by transforming the way they understand and manage risk. We know that risk and reward are More ❯

environment such that we can pursue our mission without disruption, harm or concern. CEPI's security and resilience function is a part of the Governance, Risk and Compliance Department, and supports the organisation by putting in place measures which mitigate security risks while at work, during events, and during travel More ❯

you're ready to take your career to new heights, this opportunity is for you. In a nutshell role is responsible for supporting the governance of information security, ensuring that an appropriate risk, policy and reporting framework is managed to enable Virgin Atlantic Airways to use information safely and in … supporting identification, management and documenting requirements that impact the risk, policy and reporting framework. The role is also responsible for supporting the communication of governance matters with internal and external groups, for example Internal Audit, Technology Leadership Team, Safety & Security, Virgin Group or CPNI. This role ensures robust identification, management … UK GDPR, NIS2 Directive, CAP1753, and related sector obligations . This makes it a great development role for those looking to step into senior GRC or advisory roles. Day to day Supports the Senior Manager develop and maintain an information security dashboard that documents the current state of risk, security More ❯

design and implementation, and taking ownership of delivery outcomes as per the product roadmap. Ensuring non-functional requirements such as performance, scalability, resilience, and GRC (governance, risk, and compliance) standards are met, including information security and industry regulations. Continuously improving and ensuring adherence to our Software Development Life Cycle (SDLC More ❯

and implementation, and taking ownership of delivery outcomes as per the product road map. Ensuring non-functional requirements such as performance, scalability, resilience, and GRC (governance, risk, and compliance) standards are met, including information security and industry regulations. Continuously improving and ensuring adherence to our Software Development Life Cycle (SDLC More ❯

mitigation steps for resilience. Working closely with key stakeholders to ensure compliance with security policies, and promotion of strong information security culture. Provide weekly governance, risk and compliance reports utilising key risk and key performance indicators and metrics. Skills/Competencies Required: Experience developing information security policy, process and procedure More ❯

of experience in work related to security assurance, such as cybersecurity, audit or security architecture. Experience in Program design and management. Experience working on governance, risk and compliance programs that involve direct engagement with regulators. PREFERRED QUALIFICATIONS Demonstrated technical acumen in software engineering, security engineering, or cloud architecture, as well More ❯

of experience in work related to security assurance, such as cybersecurity, audit or security architecture. Experience in Program design and management. Experience working on governance, risk and compliance programs that involve direct engagement with regulators. PREFERRED QUALIFICATIONS Demonstrated technical acumen in software engineering, security engineering, or cloud architecture, as well More ❯

communication skills for diverse audiences, including senior stakeholders and technical teams. Desirable Skills Experience with identity management and authentication/authorization solutions. Involvement in governance, risk, compliance, operational security, and supply chain security. Penetration testing qualifications (e.g., OSCP, CREST). Experience leading security engineers and junior staff. Join Us What More ❯

Success (CSM), successfully managing complex customer relationships in a B2B SaaS environment . Proven experience in audit (internal or external), risk management, compliance, or GRC frameworks or tools, with a strong focus on addressing enterprise-level challenges and delivering meaningful customer outcomes (preferred). 1+ years of hands-on experience More ❯

e.g. senior stakeholders, development teams). DESIRABLE Experience of Identity management and authentication/authorisation products and patterns. End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management. Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent). Experience leading security More ❯

concerns Working closely with consulting, delivery, and alliance teams to build credible, high-impact propositions What we’re looking for Broad experience across identity, GRC, SOC, Disaster Recovery, operational resilience, and beyond Proven ability to sell and deliver—ideally across consulting and managed services, not just tools Gravitas and commercial More ❯

Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, risk management, and compliance. We work across the public and private sectors and have over 250k customers across the UK, spanning 20 different sectors including construction, transport More ❯

security teams at SA Power Networks. You'll contribute to a wide range of activities in the cyber security field, including: Cyber security advisory (Governance, Risk, and Compliance) SECOPS (Security Operations) Digital Identity You'll gain experience with industry-leading security technologies and practices, including firewalls, SIEM tools, vulnerability assessment More ❯

private equity backing. It's an inspiring time to join the team! Looking for a self-starting highly motivated and detail-orientated Information Security Governance, Risk, and Compliance (GRC) Analyst to support the design, implementation, and ongoing improvement of our information security governance and risk management framework. This role is … Previous progressive experience in information security risk management, risk management, or compliance Strong understanding of information security frameworks (e.g., ISO 27001, NIST) Experience with GRC tools/platforms Excellent organisational, communication, and documentation skills Ability to work independently and cross-functionally in a fast-paced environment Industry certifications such as More ❯

will have no shortage of interesting and varied security projects to work on and learn from. You will lead the team with our security governance, risk and compliance objectives, author our security documentation, collect and develop periodic compliance and security metrics, build and run our compliance platform, own customer security … and compliance objectives. Defining and reporting against Security KPIs, including creating dashboards and reports. Working closely with the Security leadership team to support Security Governance, and risk remediation. Supporting the oversight and execution over corporate security governance and control implementation. I'm Qualified Because I Have 10+ years experience with More ❯

digitally enabled business models. Supporting organisations in developing actionable transformation programmes, and navigating cyber transformation to support new, digitally enabled business models. Designing effective governance roles and operational frameworks to assess and define prioritised, risk-based roadmaps to increase cyber maturity, prepare for and support regulatory compliance, and allow cyber … an MSc in cyber security (or equivalent) or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Consulting Skills Experience building relationships with clients and developing an internal network of subject matter experts. Experience More ❯

digitally enabled business models. Supporting organisations in developing actionable transformation programmes, and navigating cyber transformation to support new, digitally enabled business models. Designing effective governance roles and operational frameworks to assess and define prioritised, risk-based roadmaps to increase cyber maturity, prepare for and support regulatory compliance, and allow cyber … an MSc in cyber security (or equivalent) or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Consulting Skills Experience building relationships with clients and developing an internal network of subject matter experts. Experience More ❯

digitally enabled business models. Supporting organisations in developing actionable transformation programmes, and navigating cyber transformation to support new, digitally enabled business models. Designing effective governance roles and operational frameworks to assess and define prioritised, risk-based roadmaps to increase cyber maturity, prepare for and support regulatory compliance, and allow cyber … an MSc in cyber security (or equivalent) or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Consulting Skills Experience building relationships with clients and developing an internal network of subject matter experts. Experience More ❯

digitally enabled business models. Supporting organisations in developing actionable transformation programmes, and navigating cyber transformation to support new, digitally enabled business models. Designing effective governance roles and operational frameworks to assess and define prioritised, risk-based roadmaps to increase cyber maturity, prepare for and support regulatory compliance, and allow cyber … an MSc in cyber security (or equivalent) or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Consulting Skills Experience building relationships with clients and developing an internal network of subject matter experts. Experience More ❯

digitally enabled business models. Supporting organisations in developing actionable transformation programmes, and navigating cyber transformation to support new, digitally enabled business models. Designing effective governance roles and operational frameworks to assess and define prioritised, risk-based roadmaps to increase cyber maturity, prepare for and support regulatory compliance, and allow cyber … an MSc in cyber security (or equivalent) or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Consulting Skills Experience building relationships with clients and developing an internal network of subject matter experts. Experience More ❯