76 to 100 of 175 GRC Jobs in the UK

in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled. Role- Regional Lead – Governance, Risk and Compliance & Business Resiliency Location- UK, London Job Type- Full Onsite (5 days a week) Full time Employment - Permanent KEY RESPONSIBILITIES & JOB DESCRIPTION: • Responsible for Business development of HCL … Governance, Risk and Compliance services and Business Resiliency services in UK & Europe region. This job carries the booking targets and revenues to be achieved. • Responsible for P&L and Client relationship management • GRC opportunity farming in existing client accounts as well as working with regional sales for developing new accounts. • Managing sales, pre-sales and delivery team of consultants for … advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners and develop partner sales channel Skills: • Expertise in creation of solutions for risk More ❯

in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled. Role- Regional Lead – Governance, Risk and Compliance & Business Resiliency Location- UK, London Job Type- Full Onsite (5 days a week) Full time Employment - Permanent KEY RESPONSIBILITIES & JOB DESCRIPTION: • Responsible for Business development of HCL … Governance, Risk and Compliance services and Business Resiliency services in UK & Europe region. This job carries the booking targets and revenues to be achieved. • Responsible for P&L and Client relationship management • GRC opportunity farming in existing client accounts as well as working with regional sales for developing new accounts. • Managing sales, pre-sales and delivery team of consultants for … advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners and develop partner sales channel Skills: • Expertise in creation of solutions for risk More ❯

in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled. Role- Regional Lead – Governance, Risk and Compliance & Business Resiliency Location- UK, London Job Type- Full Onsite (5 days a week) Full time Employment - Permanent KEY RESPONSIBILITIES & JOB DESCRIPTION: • Responsible for Business development of HCL … Governance, Risk and Compliance services and Business Resiliency services in UK & Europe region. This job carries the booking targets and revenues to be achieved. • Responsible for P&L and Client relationship management • GRC opportunity farming in existing client accounts as well as working with regional sales for developing new accounts. • Managing sales, pre-sales and delivery team of consultants for … advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners and develop partner sales channel Skills: • Expertise in creation of solutions for risk More ❯

in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled. Role- Regional Lead – Governance, Risk and Compliance & Business Resiliency Location- UK, London Job Type- Full Onsite (5 days a week) Full time Employment - Permanent KEY RESPONSIBILITIES & JOB DESCRIPTION: • Responsible for Business development of HCL … Governance, Risk and Compliance services and Business Resiliency services in UK & Europe region. This job carries the booking targets and revenues to be achieved. • Responsible for P&L and Client relationship management • GRC opportunity farming in existing client accounts as well as working with regional sales for developing new accounts. • Managing sales, pre-sales and delivery team of consultants for … advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners and develop partner sales channel Skills: • Expertise in creation of solutions for risk More ❯

Technology 3rd Party Risk & Vendor Governance/Assurance LeadAre you Ready to Lead Technology/Vendor/Third Party Governance, Risk& Assurance for my established Insurance client? Our Insurance client who are at the forefront of digital and technology major transformation. With strong financial backing and a bold vision for the future, my client is continuing to invest heavilyy in … Technology, Data, and Pperational excellence. As a result, my client is looking to build a modern governance and assurance function — especially those that have strong Third Party Risk & Assurance expertise to help shape it. Why This Role Stands Out - You’ll be at the heart of a business-wide transformation, working across strategic technology partnerships, cloud service providers, and enterprise … software vendors. You’ll help design and implement governance frameworks, influence procurement and architecture decisions, and ensure robust oversight across the third-party lifecycle. Whether you’ve managed vendors directly or provided assurance consultancy, this role offers a platform to grow into broader GRC leadership. We’re building a diverse and dynamic team to challenge conventional thinking and create innovative More ❯

Cyber Security Risk Manager required to join a globally recognised SaaS company in Edinburgh, leading the governance, risk, and compliance (GRC) function and helping shape cyber security strategy in a cutting edge environment. The Company This is a modern, globally recognised SaaS company operating at the forefront of data analytics. Their datasets are relied upon by clients to make very … a collaborative and transparent team that values open communication, shared success, and measurable impact. The Role As Cyber Risk Manager, you will lead the maturity and execution of the governance, risk, and compliance (GRC) function. You will ensure the business has clear visibility of its cyber risk exposure and the processes in place to respond effectively. You will oversee the … exceptions and ensure timely review, tracking, and remediation of risks. ** Drive SOC 2 readiness activities and collaborate with auditors and internal stakeholders to ensure compliance. ** Develop and enforce cybersecurity governance policies, standards, and procedures aligned with industry frameworks. ** Work with IT, SRE, Architecture, and Procurement teams to identify, assess, and mitigate technology and third party risks. ** Provide clear, actionable reporting More ❯

Cyber Security Risk Manager required to join a globally recognised SaaS company in Edinburgh, leading the governance, risk, and compliance (GRC) function and helping shape cyber security strategy in a cutting edge environment. The Company This is a modern, globally recognised SaaS company operating at the forefront of data analytics. Their datasets are relied upon by clients to make very … a collaborative and transparent team that values open communication, shared success, and measurable impact. The Role As Cyber Risk Manager, you will lead the maturity and execution of the governance, risk, and compliance (GRC) function. You will ensure the business has clear visibility of its cyber risk exposure and the processes in place to respond effectively. You will oversee the … exceptions and ensure timely review, tracking, and remediation of risks. ** Drive SOC 2 readiness activities and collaborate with auditors and internal stakeholders to ensure compliance. ** Develop and enforce cybersecurity governance policies, standards, and procedures aligned with industry frameworks. ** Work with IT, SRE, Architecture, and Procurement teams to identify, assess, and mitigate technology and third party risks. ** Provide clear, actionable reporting More ❯

IT Security, Data, Governance, Risk & Compliance (GRC) specialist to £95,000 plus excellent bonus and benefits package Security & Data Governance management, Risk & Compliance Strong stakeholder management experience ISO27001, NIST, GDPR, Data Governance frameworks Operational effectiveness, risk, compliance, policies, testing procedures Working alongside IT Security, Technology teams globally 3 days per week in the London office, occasional travel This global Insurance … provider is urgently seeking an experienced Data Governance & Security specialist to work in a small team alongside the IT Security and Technology teams to continue to develop and manage the Risk and Compliance requirements across the business. You will have a background in Financial Services and good Project Management skills to work alongside their internal IT Security and Technology teams … to develop, lead and control the governance and regulatory reporting required across the business. 1st line of defence - laws, compliance, risk, IT governance, security, data Work across various business functions to ensure compliance and risk assessment Implement industry best practices - ISO27001, GDPR etc Update senior stakeholders across the Group This is an outstanding opportunity for someone who has ideally come More ❯

renowned financial organisation based near St Paul's in London. Your new role Seeking an experienced hands-on Enterprise Solution Architect to join a newly established team within the Governance, (Operational) Risk, and Compliance (GRC) function of a leading financial organisation. This newly created department is focused on building out the organisation's GRC capabilities, identifying gaps, and designing a … robust architectural roadmap/blueprints holistically.In this role, you will play a key part in shaping the future of GRC architecture and Operational Risk, leveraging your deep expertise in regulatory compliance and risk from an architectural perspective. You will be responsible for developing frameworks that span multiple regulations, ensuring the organisation remains agile and compliant in a rapidly evolving regulatory … enterprise systems. Further to this, you will possess great experience with hands-on architectural design and proof-of concept delivery. What you'll need to succeed Experience with a Governance, Risk and Compliance tool/technology such as Metricstream as this is looking to be implemented here. Exposure to other tools such as ServiceNow GRC, RSA Archer, SAP GRC, IBM More ❯

strategy, ensuring it aligns with business objectives, manages risk, and supports the firm's rapid growth. Oversee the Cyber Security function, including Security Operations, Incident Response, and Governance, Risk, and Compliance (GRC) specialists, providing leadership, mentorship, and effective resource allocation. Establish and enforce a robust security governance framework, including policies and procedures for information security, risk management, and compliance with More ❯

to Incident Response where needed. There will also be opportunities to define and lead other areas of cyber security. What youll be doing Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO/IEC 27001, NCSC CAF, and PCI DSS. Lead independent assurance, review and test … Chartered status (or demonstrable readiness to achieve this in the near term). Significant experience in cyber security consulting or assurance, ideally within the public sector. Deep knowledge of GRC frameworks and standards (e.g. CAF, ISO/IEC 27001, PCI DSS).Strong client-facing skills, able to communicate complex issues clearly to technical and non-technical audiences. Proven track record … and influencing decision-making. Excellent written and verbal communication, including the ability to produce polished consultancy reports. Desirable certifications: ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CRISC, CCP (GRC), or equivalent. Driving license and willingness to travel to client sites across the UK as required. Why join 4C Strategies? Work with a growing cyber team in a respected consultancy More ❯

What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to achieve and maintain compliance with PCI, GDPR, SOC2, and ISO27001. Vendor Security : Spearheading due diligence and monitoring of third parties, integrated with our … Vendor Governance Forum. Policies & Assurance : Defining and enforcing security standards, collaborating with IT Ops and Platform Engineering on execution, and providing assurance to stakeholders, customers, and regulators. Risk Management : Escalating material risks directly to the CTO and other risk functions. Culture & Training : Promoting a secure-by-design culture through training, awareness, and best practices across the company. What we're … program, including secure development, code analysis, and threat modelling. Running Security Operations : You have deep experience overseeing a Security Operations function, managing monitoring, incident response, and vulnerability management. Driving GRC : You're an expert in managing compliance frameworks such as PCI, GDPR, SOC2, and ISO 27001, and you're skilled at preparing for audits. Vendor Security : You have led vendor More ❯

external IT support providers and vendors. The IT Director will be responsible for ensuring that our systems are secure, scalable, and aligned with the Firm's high standards of governance and performance. Key Responsibilities Infrastructure & Operations - Oversee the Firm's cloud-based infrastructure (AVD on Microsoft Azure), ensuring performance, reliability, and scalability. - Oversee the Firm's line of business applications … the Microsoft suite, Teams, CCH Central, Virtual Cabinet, Caseware, Alphatax) - Manage hardware and software lifecycles, including procurement, deployment, and retirement. - Ensure robust update control, patch management, and system monitoring. Governance & Security - Implement and maintain strong IT governance frameworks, including risk management and compliance. - Lead cybersecurity strategy, including threat detection, incident response, and staff awareness training. - Ensure compliance with GDPR and More ❯

external IT support providers and vendors. The IT Director will be responsible for ensuring that our systems are secure, scalable, and aligned with the Firm's high standards of governance and performance. Key Responsibilities Infrastructure & Operations - Oversee the Firm's cloud-based infrastructure (AVD on Microsoft Azure), ensuring performance, reliability, and scalability. - Oversee the Firm's line of business applications … the Microsoft suite, Teams, CCH Central, Virtual Cabinet, Caseware, Alphatax) - Manage hardware and software lifecycles, including procurement, deployment, and retirement. - Ensure robust update control, patch management, and system monitoring. Governance & Security - Implement and maintain strong IT governance frameworks, including risk management and compliance. - Lead cybersecurity strategy, including threat detection, incident response, and staff awareness training. - Ensure compliance with GDPR and More ❯

stakeholders and establish yourself as a core member of their security function. Take ownership of client-specific Security Improvement Plans, ensuring risks are reduced and resilience is increased. Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams. Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and improvement areas. Work … Incident Response Team (CSIRT). Actively contribute to the internal growth and knowledge-sharing within the wider team, suggesting improvements and supporting colleagues. Ensure compliance with internal security and governance standards. About You: Proven experience as a CISO, vCISO, or senior cyber security advisor. Strong knowledge of security frameworks, governance, risk management, and compliance. Excellent communication and stakeholder engagement skills More ❯

provide regular updates to senior partners. You will manage responsibilities (including implementation) related to ISO27001, Cyber Essentials/Plus, SOC2 accreditations. You will also support audit readiness, collaborate with governance and risk teams, and integrate compliance findings into policy documentation. This is a hybrid, Nottingham-based role reporting to the Regional Head of Client Security Assurance Summary of Primary Responsibilities … and redlining, with a preference for UK&I and EU regulatory experience Provide regular accreditation status updates to senior partners Participate in SOC 2-related discussions with teams Oversee governance-related trackers and calls, including risk and issue reviews Support audit readiness and post-audit remediation activities Collaborate with governance, compliance, and risk management teams Partner with policy and standards More ❯

of assurance related advisory services to help our clients build digital trust in their organisations. This includes IT internal audit, IT risk management, independent programme assurance, clinical systems assurance, GRC tooling and Tech Transformation (AI, Strategy etc). We are proud of helping our clients to innovate and navigate regulatory and governance challenges along the way and work closely alongside More ❯

of assurance related advisory services to help our clients build digital trust in their organisations. This includes IT internal audit, IT risk management, independent programme assurance, clinical systems assurance, GRC tooling and Tech Transformation (AI, Strategy etc). We are proud of helping our clients to innovate and navigate regulatory and governance challenges along the way and work closely alongside More ❯

of assurance related advisory services to help our clients build digital trust in their organisations. This includes IT internal audit, IT risk management, independent programme assurance, clinical systems assurance, GRC tooling and Tech Transformation (AI, Strategy etc). We are proud of helping our clients to innovate and navigate regulatory and governance challenges along the way and work closely alongside More ❯

of assurance related advisory services to help our clients build digital trust in their organisations. This includes IT internal audit, IT risk management, independent programme assurance, clinical systems assurance, GRC tooling and Tech Transformation (AI, Strategy etc). We are proud of helping our clients to innovate and navigate regulatory and governance challenges along the way and work closely alongside More ❯

of assurance related advisory services to help our clients build digital trust in their organisations. This includes IT internal audit, IT risk management, independent programme assurance, clinical systems assurance, GRC tooling and Tech Transformation (AI, Strategy etc). We are proud of helping our clients to innovate and navigate regulatory and governance challenges along the way and work closely alongside More ❯

both internal and external stakeholders across technology providers and regulatory bodies. Personality, credibility, and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements … Policy and Documentation: Author and maintain security policies, standards, and Integrated Management System (IMS) documentation Knowledge, Skills and Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud More ❯

both internal and external stakeholders across technology providers and regulatory bodies. Personality, credibility, and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements … Policy and Documentation: Author and maintain security policies, standards, and Integrated Management System (IMS) documentation Knowledge, Skills and Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud More ❯

Cyber Security Consultant – Technical & GRC Focus Salary - £55 - £75 UK-Based | Hybrid | SC Clearance (or Eligible) Are you equally comfortable configuring secure cloud infrastructure and explaining ISO27001 controls to stakeholders? If you thrive at the intersection of technical cyber delivery and security governance , this role is for you. Join a fast-paced team working with UK government and public sector More ❯

to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors to showcase security credentials that differentiate our SOC from the competition. More ❯