1 to 25 of 99 GRC Jobs in the UK excluding London

Title: GRC Consultant (Governance, Risk, and Compliance) Location: Farnborough (Hybrid, minimum 3 days in the office) About Us: We are a growing Cyber Consultancy located in Farnborough, offering Managed Services and Consultancy engagements. Our team blends experienced cybersecurity experts with motivated new consultants to offer a fun and rewarding atmosphere. … market-leading software vendors to provide a robust and secure IT landscape for our clients. The Opportunity: We are seeking an experienced, highly analytical Governance, Risk, and Compliance (GRC) Consultant to own and drive our security and compliance posture across all global operations. This role is central to maintaining ...

Senior Cyber GRC Lead role responsible for governance, risk and compliance across EMEA. You will lead cyber risk assurance, own security governance frameworks and deliver senior-level reporting to support regulatory compliance, audit readiness and remediation tracking across multiple jurisdictions. Client Details The employer is a large organisation within … financial services industry. Description Develop and implement governance, risk, and compliance (GRC) frameworks aligned with industry regulations. Monitor and assess cybersecurity risks, ensuring mitigation strategies are effectively applied. Collaborate with internal and external stakeholders to maintain compliance with regulatory requirements. Lead audits and ensure timely remediation of identified issues. Provide ...

Title: Junior Digital Cyber Governance Analyst - Cyber Audit - NIST, ISO27001 CIS Location: West Midlands – Hybrid – 3dpw Type: Full-Time Are you ready to move beyond the technical basics and help build the "rules of the road" for cyber security? My client doesn’t just deploy tools; they build the frameworks … that keep organizations safe. They are looking for a sharp, detail-oriented Junior Cyber Governance Analyst to join their team. If you are obsessed with how policies, risks, and standards (like NIST and ISO 27001) protect the digital world, I would like to speak to you. The Mission ...

CISA or an MSc in cyber security or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management, vulnerability management, cyber security reviews. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status ...

Implementor or Auditor) Awareness of AI risk management and responsible AI standards (e.g. NIST AI RMF, ISO/IEC 42001) Familiarity with GRC tooling such as Vanta, OneTrust, or similar platforms Working knowledge of Microsoft 365 and Google Workspace environments What's in it for You? Remote-first flexibility with ...

recruitment process or if there is a better way for us to communicate, please do let us know. Security, Cyber, Infosec, Information Security, GRC, Assurance, Compliance, Risk, Vulnerability Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody ...

good practices Baseline knowledge of information systems (e.g., cloud, access control, networking) Experience in a customer-facing role Good understanding and working knowledge of Governance, Risk & Compliance Strong written, verbal, and interpersonal communication skills Ability to work independently, manage own time and work to deadlines Desirable Skills & Experience: UK Cyber ...

network security, DevOps and security monitoring Understanding of secure software development lifecycle (SSDLC) practices Strong knowledge of information security risk management techniques Experience of governance, risk and compliance, ideally in financial services Knowledge of frameworks such as ISO27001, NIST, PCI DSS Awareness of the threat landscape and modern security controls ...

prioritise validation efforts using threat intelligence, asset criticality and business risk. Collaboration is key to this role. You'll work closely with Security Engineering, GRC and SOC teams to ensure validation insights feed into broader exposure-reduction activity. In addition, you will translate technical validation findings into clear, business-focused ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender ...

risks. When required, reviewing and auditing managements completion of agreed control enhancement actions (which resulted from previous internal audit findings). Explaining good practice governance, risk management, compliance and internal controls activities during discussions with staff of the Group. Understands and grasps the current and developing regulatory and legislative rules ...

front line, plays a key part in this mission. Here’s how you will contribute... Providing support to different Security functions, including OT Security, Governance Risk and Compliance, Security Assurance and other key business needs Ensuring security metrics are well documented and presented at monthly reviews Being a subject matter ...

software development Contributing to physical security testing activities Delivering security awareness sessions Completing risk assessments and threat modelling Writing and reviewing security policies and governance documentation Experience required: 2+ years experience in information or cyber security Previous consultancy experience with the ability to engage effectively with clients/customers and … other benefits Remote-first flexibility A people-first culture that values kindness, curiosity, and growth Exposure to a wide range of projects across IR, GRC, and technical security Opportunities to see the long-term impact of your work through ongoing client relationships If you're ready to grow your career ...

technical stakeholders, and drive a secure-by-design mindset across the business. This role suits someone who combines deep technical architecture expertise with strong governance, risk, and compliance awareness. Key Responsibilities Act as the lead authority for security architecture across platforms, infrastructure, applications, networking, and IAM. Embed security principles into … . Relevant certifications such as CISSP, CISM, CCSP, SABSA, or TOGAF. Role Profile 80% Technical Architecture — hands-on design, reviews, and architectural leadership. 20% GRC — governance alignment, framework mapping, and audit support. Why Apply? Opportunity to shape security architecture strategy during a period of organisational growth. Influence enterprise-wide design ...

continuity planning. Excellent interpersonal and communication skills across all levels. Demonstrated success in managing third-party vendors and complex IT projects. Experience with IT governance, risk management, and regulatory compliance. Passion for user experience and colleague enablement through technology. Ability to lead and inspire teams in a fast-paced, multi ...

and wider Defence environments. The Role As a Lead Cyber Security Consultant, you'll take ownership of multiple client engagements, delivering expert advice across governance, risk, compliance, and Secure by Design practices. You'll work closely with senior stakeholders to assess risk, define security controls, deliver assurance activities, and support … across cloud and on-premise platforms Contribute to internal knowledge sharing and thought leadership Experience & Expertise Strong background in Technical/Security Architecture or Governance, Risk & Compliance Experience working in Defence/MOD environments Strong analytical and communication skills, with the ability to influence senior stakeholders Passion for continuous learning ...

role in protecting their systems, data and customers, making sure the organisation stays ahead of new and evolving cyber threats. Sitting within the Governance, Risk, Compliance, Security and Internal IT division, you will take on a pivotal leadership role, driving the development and execution of their cyber security strategy. ...

Manage and develop offshore and distributed engineering teams Build a high-performance, collaborative engineering culture Oversee vendor relationships and offshore resource planning Contribute to governance, risk and compliance initiatives Skills and Experience Extensive experience in software development with strong Java expertise Proven leadership experience managing engineering teams Experience overseeing ...

data engineering and software teams to productionise solutions Identify high-impact use cases and contribute to the broader AI roadmap Ensure solutions align with governance, risk, and compliance standards Communicate insights and outputs clearly to both technical and non-technical stakeholders Required Skills & Experience 3+ years' experience in Data Science ...

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid/Southeast Region - on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within ...

Lead delivery of key technology initiatives, ensuring they meet business and client needs Drive a product and platform mindset across technology initiatives Establish robust governance, risk, and compliance frameworks Ensure alignment with regulatory and data protection requirements About You Proven experience in a senior technology leadership role such as Head ...

events. Ensure SOC detection tools and capabilities are up-to-date and aligned with evolving threat landscapes. Collaborate with vulnerability management, incident response, and GRC teams to integrate risk-informed security operations practices. Drive continuous improvement of SOC processes, playbooks, and metrics to enhance operational efficiency and threat visibility. Support ...

experience applying secure-by-design principles • Experience with Digital Engineering, secure architectural controls, and pattern-based design • Strong understanding of security risk management and GRC-aligned assurance • Defence experience strongly preferred • SC clearance essential; DV preferred (or SC with ability to progress) Engagement Model • Minimum 3 days per week ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender ...

very useful. You will be accountable for Infrastructure, User support, Cyber Security standards, Cloud and On Prem hybrid environment, Disaster recovery, service delivery, Governance, Risk and Compliance. There will be an element of travel required each week, so a full UK driving licence is required. You will travel as needed ...