1 to 25 of 34 Remote/Hybrid GRC Jobs in the UK excluding London

Information Governance Analyst Chester | Hybrid working (2 days onsite) £45,000-£55,000 A customer-focused service provider is looking to appoint an Information Governance Analyst to join their Cyber Security function based in Chester. This role offers a hybrid working model, with two days per week onsite. … organisation, supporting secure data handling, regulatory compliance, and best practice information management. Working closely with stakeholders across the business, you'll help embed robust governance processes and controls, with a particular focus on classification, retention, and protection of data. Hands-on experience with Microsoft Purview is essential. The role involves ...

growth. They provide specialised programs across multiple disciplines focusing on research, innovation and collaboration. Due to continued growth, they are keen to appoint a GRC Analyst to be based out of the Norwich offices on a hybrid model paying a salary range of £40,000 to £46,000 plus benefits. … experienced GRC Analyst, you will focus on strengthening governance frameworks, managing IT & cyber risk, ensuing compliance with internal polices and external regulations - including data protection legislation and sector specific standards. GRC Analyst: Responsibilities Ensure group complies with relevant regulations: PCI-DSS, NHS DSPT, ISO27001 Monitor/Report compliance with policies ...

GRC Analyst – 3-month contract – Fully Remote My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current … essential. Knowledge of the requirements of the above standards in relation to contracts and vendor relationships is essential. Key Skills & Experience from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks ...

Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through ...

Masters, and business experts to ensure delivery quality and expectations are met. Assess new technology solutions and ensure non-functional requirements (performance, scalability, resilience, GRC compliance) are met. Encourage collaboration and product ownership across developers and testers. Support a shift-left approach to secure, quality, and tested code. Lead ...

look at an ISO 27001 auditor that is looking to broaden their skills and experience. Other areas you will be involved in are GRC, MS Security Tooling, Risk Assessments and Security Operations support. What is on offer? Flexible work hours 27 days annual leave + Bank Holidays 10% pension Excellent ...

Governance, Risk & Compliance (GRC) Analyst Location: Norwich (Hybrid - 60% on-site) Salary: £38,784 - £46,049 + Excellent Benefits Contract: Permanent About the Role REED Technology are supporting a leading organisation in recruiting an experienced Governance, Risk & Compliance Analyst . This is a key role in strengthening governance frameworks, managing … fantastic opportunity to shape processes, influence tool selection, and contribute to the development of a growing security programme . Key Responsibilities Develop and maintain GRC processes, policies, and procedures. Ensure compliance with UK-centric frameworks and standards, including PCI-DSS and Cyber Essentials Plus . Support internal audits, risk assessments ...

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid - Cambridgeshire/London, on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within ...

Cyber Security GRC Consultant (DV Cleared) Location: Cambridgeshire/London, Hybrid - c. 3 days minimum on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security ...

Information Security Analyst – GRC Salary: £45,000 Contract: 12-month Fixed Term Contract (FTC) Location: Central Birmingham (Hybrid – 3 days per week on site) The Role We have an exciting opportunity for an Information Security Analyst – GRC to join a busy and collaborative technology function on a 12-month fixed … term contract . This role will play a key part in supporting governance, risk and compliance (GRC) activities, with a strong focus on third-party risk management and data protection assurance across the organisation. Based in Central Birmingham , the role operates on a hybrid working model , requiring three days ...

Information Security GRC Consultant Location: Hybrid - 3 days per week in the officeSalary: Up to £105,000 Basic Salary OverviewWe are working with a leading organisation that is undergoing a significant transformation of its security and assurance function. As part of this journey, they are looking to hire an experienced … Information Security Governance, Risk & Compliance (GRC) Consultant to help reshape the organisation's security posture and drive key strategic initiatives.Key Responsibilities* Lead and enhance cyber security awareness tools and controls across the organisation* Drive the automation and optimisation of the GRC toolset* Design, implement, and improve risk management frameworks and ...

essential What This Role Is Not To be clear, this role is not suited to candidates whose background is primarily: Risk management/GRC ISO auditing Disaster Recovery or IT Service Continuity We're looking for someone who has done the work , not just overseen or assured it. Modis International ...

practitioner who thrives on doing —not just advising. This is a delivery-focused role, perfect for someone who enjoys: Crafting and updating policies Driving governance, risk, and compliance Embedding secure-by-design practices Boosting security awareness and culture Being the go-to security expert within the business You'll work … independently, without line management duties, owning day-to-day information security operations. Our IT teams handle the tooling—your mission is governance, risk, compliance, and enabling secure delivery. What You'll Be Doing Own and manage all information security incidents & organisational risks Maintain and evolve our Information Security Management System ...

summary Were looking for an experienced Information Governance Manager to lead IG, Cyber Security, Digital Clinical Safety, and Quality Management across a complex, multisite healthcare organisation. This is a key leadership role driving strategy, compliance, change, and operational excellence. As our Information Governance Manager, you will shape and deliver … governance strategy, deputise for the Group Head, and ensure compliance with UK, NHS, and international standards. You will lead transformational improvement across IG, Cyber, Digital Clinical Safety and ISOaligned Quality Management, working closely with senior leaders, technical teams, and clinical stakeholders. This is a full-time permanent role, working remotely. ...

Security Operations (SOC) function. This is a hands-on, operational role focused on improving detection, response, and incident readiness - not a compliance or GRC-led position. You'll manage a small SOC team, own the relationship with a Managed Detection & Response (MDR) provider, and drive continuous improvement across security operations … Operational, detection-and-response-led security environment What This Role Is Not Not GDPR-, ISO-, or risk-framework-led Not a pure compliance or GRC role Not policy- or audit-heavy This role is about real-world security operations and outcomes . Experience & Skills Proven experience managing or leading Security ...

security risk management across the wider technology function. The Role * Reviewing and assuring cyber security controls to ensure effectiveness, coverage and evidence * Maintaining and improving cyber governance, risk and reporting frameworks * Supporting cyber risk assessments, issue tracking and remediation activities * Reviewing and updating security policies, standards, procedures and playbooks * Supporting … and assurance activities * Assisting with incident management governance, including root cause analysis and control improvements * Working with technology teams to embed effective security risk management and compliance Skills & Experience * Experience in cyber security governance, risk or assurance, ideally within a regulated environment * Proven background in testing and assuring security controls ...

information and cyber security across the organisation Manage and optimise third-party security relationships , including suppliers, MSPs, and assurance partners Oversee security governance, risk management, and compliance activities Provide leadership and direction to a small internal team , supported by external vendors Engage with senior stakeholders to translate security risk into ...

ServiceNow Developer (GRC)| 12+Month Contract | Outside IR35| Remote We are seeking an experienced ServiceNow Developer with expertise in Governance, Risk, and Compliance (GRC) to join our client’s team. The ideal candidate will be responsible for designing, developing, and implementing ServiceNow GRC solutions that align with business objectives and regulatory … requirements. Required Skills & Experience Proven experience as a ServiceNow Developer , with a focus on GRC modules . Strong understanding of ServiceNow architecture and scripting (JavaScript, Glide API). Experience with ServiceNow integrations using REST/SOAP APIs. Knowledge of ITIL processes and risk/compliance frameworks. Ability to work ...

Cyber Security Consultant (GRC/ISO 27001) Hybrid | South Manchester | £60-70k + bonus An established and growing independent Cyber Security Consultancy is hiring a Cyber Security Consultant to lead client delivery and act as the internal SME across GRC and ISO 27001 . This is a key role … within a collaborative consultancy team, combining hands-on delivery with leadership responsibilities. What you’ll be doing Lead delivery of GRC, ISO 27001 and data protection consultancy work Oversee and support a small team of cyber professionals across multiple projects Manage ISO 27001 implementations , including internal audit support and readiness ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis management, privacy and regulatory compliance.You will enhance business resilience … policies, procedures, and controls are in place. You will act as the guardian of the firms regulatory and ethical obligations, ensuring that all data governance and InfoSec laws and regulations are adhered to. In order to be suitable for this role of significant responsibility you must be an accomplished Information ...

suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis management, privacy and regulatory compliance.You will enhance business resilience … policies, procedures, and controls are in place. You will act as the guardian of the firms regulatory and ethical obligations, ensuring that all data governance and InfoSec laws and regulations are adhered to. In order to be suitable for this role of significant responsibility you must be an accomplished Information ...

invest in cyber security and resilience across the business. This role sits within a wider Information Security function and reports into the Cyber Governance, Risk, and Compliance Manager. THE CYBER RESILIENCE ANALYST ROLE: As a Cyber Resilience Analyst, you'll be responsible for defining, maintaining, and testing the organisation … vacancy only. KEY SKILLS Cyber Resilience, Business Continuity, Incident Response, Disaster Recovery, BC/DR, Risk Management, IT Resilience, Azure ASR, VMware, Microsoft Defender, GRC, Incident Management ...