76 to 100 of 237 GRC Jobs in the UK

on the firm's AI products. Manage the data encryption and access control mechanisms implemented on the firm's AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR … and ethical guidelines. Standardise a control framework for any AI products produced by the firm, ensuring consistent security practices across all environments. Oversee the undertaking of any Governance, Risk, and Compliance (GRC) tasks or activities related to AI products, such as responding to queries or requests from external parties or auditors pertaining to AI products. Collaborate with legal teams to … legal sector organisations. Certifications in AI ethics, data privacy (e.g., CIPP/E, CIPM), or risk management (e.g., CRISC). Experience with AI auditing, algorithmic impact assessments, or model governance platforms. Knowledge of legal technology tools and platforms (e.g., legal research AI, contract analytics, generative AI). Ability to lead cross-functional initiatives in a complex, multinational environment. What we More ❯

Security Analyst to join the team on a 6 month Fixed Term Contract to assist with increased work load. The successful candidate will ideally have a strong background in governance, risk and compliance (GRC) but also have the capability to support the team in the delivery of Cyber BAU activities. Responsibilities: - Maintenance the delivery of the ISMS including supporting internal More ❯

will be influenced by your own breadth of experience and can encompass a wide spectrum of tasks, from crafting robust security architectures to offering guidance on GRC (governance, risk management, and compliance) activities. Your responsibilities may also involve: Offering your security expertise in support of significant system procurements and Agile programs, ensuring the secure delivery of solutions. Identifying, analysing, and More ❯

and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve More ❯

enablement, centralised integration, automation, and a mobile-first strategy across a global footprint. Key Responsibilities Platform Ownership & Strategy Act as the primary owner for the Azure cloud environment, including governance, cost management, architecture, and operations. Develop and maintain a scalable, secure, and resilient cloud platform aligned with the firm’s digital transformation goals. Drive and implement the roadmap for infrastructure … efficient use of resources and cost optimisation. Manage and forecast consumption charges, ensuring compliance and maximising license utilisation. Liaise with procurement, finance, and vendors for renewals and cost planning. Governance, Risk & Compliance Define and enforce policies for workload management and governance across our cloud estate. Maintain compliance with internal policies and regulatory requirements. Ensure data governance best practices across cloud More ❯

enablement, centralised integration, automation, and a mobile-first strategy across a global footprint. Key Responsibilities Platform Ownership & Strategy Act as the primary owner for the Azure cloud environment, including governance, cost management, architecture, and operations. Develop and maintain a scalable, secure, and resilient cloud platform aligned with the firm’s digital transformation goals. Drive and implement the roadmap for infrastructure … efficient use of resources and cost optimisation. Manage and forecast consumption charges, ensuring compliance and maximising license utilisation. Liaise with procurement, finance, and vendors for renewals and cost planning. Governance, Risk & Compliance Define and enforce policies for workload management and governance across our cloud estate. Maintain compliance with internal policies and regulatory requirements. Ensure data governance best practices across cloud More ❯

delivery , introduce AI agents to support internal users, and create self-healing, self-service tools that minimize Service Desk load. You will also play a critical role in IT governance, compliance, and operational excellence -especially as we prepare for increased regulatory scrutiny and business scale. As a lean team, we work smart. You'll need to be comfortable working with … internal self-service portals, virtual agents , and automated workflows to reduce Service Desk load. Drive the adoption of modern DevOps practices and tools to support rapid, high-quality delivery. Governance, Risk & Compliance Define and uphold IT governance and regulatory compliance standards (FSA, EBA, DORA, PCI-DSS, ISO 27001). Implement robust risk management and documentation processes to ensure audit-readiness … service enablement. Demonstrated ability to work with external partners to extend internal capabilities. Exceptional communication skills -clear, concise, and confident across technical and non-technical audiences. Deep understanding of governance, compliance, and IT service management best practices. Comfortable with rapid context switching and balancing competing priorities in a lean, fast-growing team. Fluency in English is required; additional languages are More ❯

providing guidance and thought leadership on risk best practice and assurance to technical and non-technical stakeholders. Essential requirements Experience . Preferable 7+ years relevant work experience in security governance, risk, and compliance with at least 3 years of working as a senior expert or manager of a significant department. Experience of fulfilling similar role in a software publishing or More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

PoV leveraging ServiceNow platform, GenAI capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on solution implementation. Develop strategies and … services in ServiceNow, Java, and CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud computing architectural principles for cloud More ❯

Responsibilities Act as the Technical Solution Owner for ServiceNow engagements, from presales through delivery. Define solution architecture across one or more ServiceNow product lines including ITSM, ITOM, HRSD, CSM, GRC, or SecOps. Lead client-facing workshops and working sessions to identify requirements, translate business goals into platform capabilities, and deliver tailored architecture blueprints. Guide development teams in Agile/Scrum … with at least 5+ years of deep hands-on ServiceNow experience. Proven delivery expertise in at least two or more major ServiceNow product lines (e.g., ITSM, ITOM, HRSD, CSM, GRC, SecOps, SAM). Strong architectural understanding of the ServiceNow platform, with ability to lead the end-to-end technical solution lifecycle. Experience leading Agile implementations; ideally 3–4 years practicing More ❯

can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of … and expand consulting capabilities in line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through … the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A commitment to knowledge sharing, with the ability to mentor and uplift team capabilities. Excellent communication More ❯

can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of … and expand consulting capabilities in line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through … the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A commitment to knowledge sharing, with the ability to mentor and uplift team capabilities. Excellent communication More ❯

Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC Reports to: Global CISO Location: London Summary of Position: This position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The role will … the cyber security strategy Take overall responsibility of information security risk and compliance Assume responsibility for the BMS Information Security Control Framework Produce and maintain a the Information Security governance and oversight target operating model Produce policies and supporting governance material Take ownership for the Information Security Risk management processes Identify information security threats and work with technical teams to More ❯

Position Title: Head of Governance, Risk and Compliance (GRC), Info Sec – 12 Month FTC Reports to: Global CISO Location: London Summary of Position: This position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The role will … the cyber security strategy Take overall responsibility of information security risk and compliance Assume responsibility for the BMS Information Security Control Framework Produce and maintain a the Information Security governance and oversight target operating model Produce policies and supporting governance material Take ownership for the Information Security Risk management processes Identify information security threats and work with technical teams to More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC initiatives Requirements … 5+ years’ experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk and … control governance across a global environment. Please DM me or apply if you're interested. More ❯

A leading financial services firm is looking for a Senior GRC Associate to help develop and maintain its IT Governance, Risk & Compliance framework. Key Responsibilities: Support IT risk assessments and control compliance activities Maintain risk registers and GRC documentation Assist with internal governance reviews and formal reporting Work with IT teams and third-party providers on GRC initiatives Requirements … 5+ years’ experience in IT GRC or Information Security Knowledge of ISO 27001, NIST, and (ideally) DORA Strong analytical, communication, and stakeholder engagement skills Experience with IT infrastructure risk and control assessments This is a great opportunity to join a well-established and forward-thinking team, where you'll be empowered to make a real impact on IT risk and … control governance across a global environment. Please DM me or apply if you're interested. More ❯

Location: Melksham, Hybrid Job Description: We are seeking a motivated and detail-oriented consultant to join our Governance, Risk, and Compliance (GRC) team. This hybrid role centres on Data Protection, with additional responsibilities in Cyber Security to support a holistic approach to information governance. You’ll play a key role in helping clients meet and maintain compliance with GDPR, ISO27001 … customers to review, negotiate, and finalise Data Processing Agreements (DPAs) and Business Associate Agreements (BAAs). Represent Customers on calls and in meetings with customer legal, compliance, and information governance teams to align on regulatory and contractual data protection requirements. Filling out request for proposals for customers, enabling them to win work using security and data protection as a selling … protection best practice and provide practical solutions for lawful, fair, and transparent data use. Policy & Document Support: Draft and maintain data protection policies, privacy notices, RoPAs, and other key governance artefacts. Vendor & Processor Management: Support due diligence of third-party processors and ensure contracts include appropriate data protection clauses. Training & Awareness: Help deliver privacy and cyber awareness training for client More ❯

Job Title: Senior IT Governance Analyst Location: Hybrid – 3 Days Onsite (Leeds or Manchester) Salary: £50,000 – £60,000 + Benefits About the Role: We're working with a growing organisation seeking an experienced Senior IT Governance Analyst to join their Information Security team. This is a key role responsible for overseeing IT governance processes, managing audit activity, and ensuring … risk controls are in place and effective. You'll work across the business to coordinate internal and external audits, support compliance efforts, and maintain a strong governance framework in line with recognised standards. Key Responsibilities: Lead the coordination of IT-related audits – internal and external, including audit readiness, stakeholder engagement, and managing action plans. Maintain and update IT risk assessments … internal controls, and associated governance documentation. Provide expert feedback to control owners, supporting remediation efforts and assessing mitigation strategies. Review control deficiencies and guide the development of effective, sustainable solutions. Partner with stakeholders across IT and the business to embed good governance and risk practices. Own and evolve the IT Risk Management Framework, working closely with the Enterprise Risk team. More ❯

solutions that automate evidence gathering and real-time compliance monitoring across frameworks such as NIST 800-53, HITRUST, PCI-DSS, and FedRAMP. - Collaborate Across Teams: Partner with cloud engineering, GRC, and program teams to align internal tooling with evolving compliance needs and operational goals. Qualifications (Text Only) Required Qualifications: - Demonstrated experience deploying automation for security operations (SOAR platforms, script-based More ❯

third-party vendors and internal stakeholders to ensure smooth project execution Develop and maintain project documentation, risk logs, and reports for senior stakeholders Ensure projects adhere to regulatory and governance frameworks Skills and Experience Proven track record delivering cyber security or information security projects in large, complex organisations Strong understanding of cyber risk, threat management, and technical security controls Excellent … stakeholder management and communication skills Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure/AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications More ❯

ongoing maintenance and uplift of the cybersecurity posture within the project. This spans systems, subsystems, products and external interfaces, and may include a mixture of operational cybersecurity functions and governance, risk and compliance (GRC) activities. Key responsibilities include: Perform systems security risk management activities, including identifying security threats, analysing the risk exposure and presenting treatment options to mitigate security risk. More ❯

legal and regulatory compliance, health and safety In order to succeed in this role, you will need to have: A recognised accountancy qualification Expert knowledge of charity finance, law and governance Effective leadership skills and experience of successfully leading multi-disciplinary teams such as IT, Health & Safety Facilities, Housekeeping and Catering Excellent communication and interpersonal skills with the ability to … reporting processes across all areas of the hospice. Develop and deliver model business cases withincorporate services and across the wider organisation. Oversee and be responsible for financial controls,risk management, and compliance with regulatory standards including (but notlimited to) VAT, Gift Aid, NI, corporation and income taxation. Ensure accurate and timely production of managementaccounts and statutory financial statements. Advise the … Finance and InvestmentSub-Committee. Corporate Services Lead, manage and develop high-performing corporateservices functions, including: - IT and digital transformation - Estates and facilities management (includingfacilities, catering and housekeeping) - Procurement and contract management - Governance & risk, policies, and compliance - Business continuity and Health & Safety Lead on capital projects and maintenance of Hospicebuildings and property to ensure legal and regulatory compliance, health andsafety. Governance More ❯

and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve More ❯

with senior leadership and DTS teams to identify and address emerging threats. Represent the organisation in external networks and vendor relationships to share best practices and influence product development. Governance, Risk & Compliance Ensure technical security risks are documented and managed within the risk register. Own and manage services/processes in line with ITSM best practices. Maintain and review operational More ❯