101 to 125 of 185 GRC Jobs in the UK excluding London

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems More ❯

IT Security & GRC Manager Permanent - £48k - £52k + strong benefits Location: Hybrid - Bristol Your new company I am looking to recruit an IT Security & GRC Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this … to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be running the IT Security and GRC department, reporting into the Head of IT. Key parts of the role include: Shape and steer the direction of IT security governance, ensuring alignment with business strategy, HMG requirements, and … landscape affecting IT systems and information. Prioritise risk treatment and resources based on impact, human factors, and cost-effectiveness. Assurance and compliance oversight and management Manage the IT Security, Governance, Risk and Compliance team, ensuring clear direction, support, and professional development. What you'll need to succeed At least one of the following, ideally 2 of CISM/CISA/ More ❯

IT Security & GRC Manager Permanent - £48k - £52k + strong benefits Location: Hybrid - Bristol Your new company I am looking to recruit an IT Security & GRC Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this … to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be running the IT Security and GRC department, reporting into the Head of IT. Key parts of the role include: Shape and steer the direction of IT security governance, ensuring alignment with business strategy, HMG requirements, and … landscape affecting IT systems and information. Prioritise risk treatment and resources based on impact, human factors, and cost-effectiveness. Assurance and compliance oversight and management Manage the IT Security, Governance, Risk and Compliance team, ensuring clear direction, support, and professional development. What you'll need to succeed At least one of the following, ideally 2 of CISM/CISA/ More ❯

IT Security & GRC Manager Permanent - £48k - £52k + strong benefits Location: Hybrid - Bristol Your new company I am looking to recruit an IT Security & GRC Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this … to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be running the IT Security and GRC department, reporting into the Head of IT. Key parts of the role include: Shape and steer the direction of IT security governance, ensuring alignment with business strategy, HMG requirements, and … landscape affecting IT systems and information. Prioritise risk treatment and resources based on impact, human factors, and cost-effectiveness. Assurance and compliance oversight and management Manage the IT Security, Governance, Risk and Compliance team, ensuring clear direction, support, and professional development. What you'll need to succeed At least one of the following, ideally 2 of CISM/CISA/ More ❯

IT Security & GRC Manager Permanent - £48k - £52k + strong benefits Location: Hybrid - Bristol Your new company I am looking to recruit an IT Security & GRC Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this … to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be running the IT Security and GRC department, reporting into the Head of IT. Key parts of the role include: Shape and steer the direction of IT security governance, ensuring alignment with business strategy, HMG requirements, and … landscape affecting IT systems and information. Prioritise risk treatment and resources based on impact, human factors, and cost-effectiveness. Assurance and compliance oversight and management Manage the IT Security, Governance, Risk and Compliance team, ensuring clear direction, support, and professional development. What you'll need to succeed At least one of the following, ideally 2 of CISM/CISA/ More ❯

IT Security & GRC Manager Permanent - £48k - £52k + strong benefits Location: Hybrid - Bristol Your new company I am looking to recruit an IT Security & GRC Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this … to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be running the IT Security and GRC department, reporting into the Head of IT. Key parts of the role include: Shape and steer the direction of IT security governance, ensuring alignment with business strategy, HMG requirements, and … landscape affecting IT systems and information. Prioritise risk treatment and resources based on impact, human factors, and cost-effectiveness. Assurance and compliance oversight and management Manage the IT Security, Governance, Risk and Compliance team, ensuring clear direction, support, and professional development. What you'll need to succeed At least one of the following, ideally 2 of CISM/CISA/ More ❯

IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities … Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices Ensure continuous monitoring, evidence collection, and audit readiness for internal and external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance More ❯

+ benefits The IT Risk & Policy Analyst is responsible for managing IT risks, monitoring audit actions, maintaining IT policies and procedures, and supporting GDPR compliance. The role ensures effective governance and compliance across IT processes, providing a framework for the identification, mitigation, and management of risks. This position bridges technical and governance aspects, ensuring alignment with company standards and regulatory … programme. Assisting the Privacy Team in ensuring DPIAs are completed where required. Required skills and experience: Some experience of working in an IT function or in an audit/governance role Knowledge of IT risk management and IT governance, risk, and compliance (GRC) would be an advantage but not essential. Understanding of cybersecurity risks and controls would be an advantage … oral and written communication skills, with high attention to detail Ability to produce high quality, detailed outputs. Good analytical skills Highly organised and able to implement and manage robust governance processes. Strong relationship building and interpersonal skills across a wide range of stakeholders. Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply More ❯

+ benefits** The IT Risk & Policy Analyst is responsible for managing IT risks, monitoring audit actions, maintaining IT policies and procedures, and supporting GDPR compliance. The role ensures effective governance and compliance across IT processes, providing a framework for the identification, mitigation, and management of risks. This position bridges technical and governance aspects, ensuring alignment with company standards and regulatory … programme. Assisting the Privacy Team in ensuring DPIAs are completed where required. Required skills and experience: Some experience of working in an IT function or in an audit/governance role Knowledge of IT risk management and IT governance, risk, and compliance (GRC) would be an advantage but not essential. Understanding of cybersecurity risks and controls would be an advantage … oral and written communication skills, with high attention to detail Ability to produce high quality, detailed outputs. Good analytical skills Highly organised and able to implement and manage robust governance processes. Strong relationship building and interpersonal skills across a wide range of stakeholders. Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply More ❯

the review, design, and implementation of security controls within the Oracle Cloud ERP (Fusion) environment. The contractor will focus on SOX compliance , segregation of duties (SoD) , and access control governance to ensure the system meets both internal control standards and regulatory requirements. This role will partner closely with Finance, Internal Audit, Compliance, and IT teams to deliver a secure and … with Internal Audit and Compliance teams to provide evidence and documentation. Assist in quarterly and annual access certification processes. Support external audit activities and respond to security audit queries. Governance & Process Improvement Develop and document Oracle Cloud security policies, procedures, and standards. Implement automated controls where possible to reduce manual effort. Recommend process improvements for user provisioning, deprovisioning, and access … Preferred Qualifications: Oracle Cloud certifications (e.g., Oracle Cloud Security, Oracle Risk Management Cloud) Prior experience in a Big 4 , consultancy, or regulated enterprise environment. Familiarity with SOX audit processes , GRC tools , and identity governance solutions . Degree in Information Systems, Computer Science, Accounting, or related field More ❯

the review, design, and implementation of security controls within the Oracle Cloud ERP (Fusion) environment. The contractor will focus on SOX compliance , segregation of duties (SoD) , and access control governance to ensure the system meets both internal control standards and regulatory requirements. This role will partner closely with Finance, Internal Audit, Compliance, and IT teams to deliver a secure and … with Internal Audit and Compliance teams to provide evidence and documentation. Assist in quarterly and annual access certification processes. Support external audit activities and respond to security audit queries. Governance & Process Improvement Develop and document Oracle Cloud security policies, procedures, and standards. Implement automated controls where possible to reduce manual effort. Recommend process improvements for user provisioning, deprovisioning, and access … Preferred Qualifications: Oracle Cloud certifications (e.g., Oracle Cloud Security, Oracle Risk Management Cloud) Prior experience in a Big 4 , consultancy, or regulated enterprise environment. Familiarity with SOX audit processes , GRC tools , and identity governance solutions . Degree in Information Systems, Computer Science, Accounting, or related field More ❯

the review, design, and implementation of security controls within the Oracle Cloud ERP (Fusion) environment. The contractor will focus on SOX compliance , segregation of duties (SoD) , and access control governance to ensure the system meets both internal control standards and regulatory requirements. This role will partner closely with Finance, Internal Audit, Compliance, and IT teams to deliver a secure and … with Internal Audit and Compliance teams to provide evidence and documentation. Assist in quarterly and annual access certification processes. Support external audit activities and respond to security audit queries. Governance & Process Improvement Develop and document Oracle Cloud security policies, procedures, and standards. Implement automated controls where possible to reduce manual effort. Recommend process improvements for user provisioning, deprovisioning, and access … Preferred Qualifications: Oracle Cloud certifications (e.g., Oracle Cloud Security, Oracle Risk Management Cloud) Prior experience in a Big 4 , consultancy, or regulated enterprise environment. Familiarity with SOX audit processes , GRC tools , and identity governance solutions . Degree in Information Systems, Computer Science, Accounting, or related field More ❯

IT Risk & Resilience Lead Location: Hybrid/London Employment Type: Full-Time | Permanent Department: Risk, Governance & Compliance Level: Manager/Senior Manager The Opportunity Our client is looking for an experienced IT Risk & Resilience Lead to drive enterprise-wide initiatives in IT governance, risk, compliance, and operational resilience. In this strategic role, you'll help shape how our client anticipates … be responsible for designing, maintaining, and evolving our IT risk frameworks, ensuring they meet both business needs and regulatory expectations. Your work will span seven key areas: 1. IT Governance & Compliance You'll advise governance forums, monitor compliance across internal policies and regulatory standards (e.g., DORA, GDPR, FCA, BaFin), and ensure our digital resilience strategy is fully embedded across the … risk training initiatives that build resilience awareness across staff and partners, reinforcing policy adherence. 7. Innovation & Emerging Risk (AI Focus) Support development of the firm's approach to AI governance, implementation, and risk mitigation as new technologies are adopted. What You'll Bring Extensive experience in IT operational risk within financial services or a similarly regulated environment. Strong understanding of More ❯

IT Risk & Resilience Lead Location: Hybrid/London Employment Type: Full-Time | Permanent Department: Risk, Governance & Compliance Level: Manager/Senior Manager The Opportunity Our client is looking for an experienced IT Risk & Resilience Lead to drive enterprise-wide initiatives in IT governance, risk, compliance, and operational resilience. In this strategic role, you'll help shape how our client anticipates … be responsible for designing, maintaining, and evolving our IT risk frameworks, ensuring they meet both business needs and regulatory expectations. Your work will span seven key areas: 1. IT Governance & Compliance You'll advise governance forums, monitor compliance across internal policies and regulatory standards (e.g., DORA, GDPR, FCA, BaFin), and ensure our digital resilience strategy is fully embedded across the … risk training initiatives that build resilience awareness across staff and partners, reinforcing policy adherence. 7. Innovation & Emerging Risk (AI Focus) Support development of the firm's approach to AI governance, implementation, and risk mitigation as new technologies are adopted. What You'll Bring Extensive experience in IT operational risk within financial services or a similarly regulated environment. Strong understanding of More ❯

Information Security GRC Specialist - 12m Contract London, UK - 3 days on site [non-negotiable] Inside IR35 12-month contract Role Overview We're looking for an experienced … Information Security GRC Specialist to join a leading organisation undergoing major technology change. This is a hands-on role within a growing Information Security team helping to shape and embed GRC strategy across new systems, platforms, and processes. You … ll play a key part in defining and implementing security governance , risk , and compliance frameworks , ensuring alignment with industry standards and upcoming regulations. The role combines policy development, risk management, and compliance oversight with strong technical awareness across infrastructure and cloud environments. Key Responsibilities Develop and maintain cybersecurity policies, procedures, and controls Conduct and support risk assessments, mitigation, and reporting More ❯

centralised integration, automation, and a mobile-first strategy across a global footprint. Key Responsibilities Platform Ownership s Strategy Act as the primary owner for the Azure cloud environment, including governance, cost management, architecture, and operations. Develop and maintain a scalable, secure, and resilient cloud platform aligned with the firm’s digital transformation goals. Drive and implement the roadmap for infrastructure … efficient use of resources and cost optimisation. Manage and forecast consumption charges, ensuring compliance and maximising license utilisation. Liaise with procurement, finance, and vendors for renewals and cost planning. Governance, Risk & Compliance Define and enforce policies for workload management and governance across our cloud estate. Maintain compliance with internal policies and regulatory requirements. Ensure data governance best practices across cloud More ❯

centralised integration, automation, and a mobile-first strategy across a global footprint. Key Responsibilities Platform Ownership s Strategy Act as the primary owner for the Azure cloud environment, including governance, cost management, architecture, and operations. Develop and maintain a scalable, secure, and resilient cloud platform aligned with the firm’s digital transformation goals. Drive and implement the roadmap for infrastructure … efficient use of resources and cost optimisation. Manage and forecast consumption charges, ensuring compliance and maximising license utilisation. Liaise with procurement, finance, and vendors for renewals and cost planning. Governance, Risk & Compliance Define and enforce policies for workload management and governance across our cloud estate. Maintain compliance with internal policies and regulatory requirements. Ensure data governance best practices across cloud More ❯

centralised integration, automation, and a mobile-first strategy across a global footprint. Key Responsibilities Platform Ownership s Strategy Act as the primary owner for the Azure cloud environment, including governance, cost management, architecture, and operations. Develop and maintain a scalable, secure, and resilient cloud platform aligned with the firm’s digital transformation goals. Drive and implement the roadmap for infrastructure … efficient use of resources and cost optimisation. Manage and forecast consumption charges, ensuring compliance and maximising license utilisation. Liaise with procurement, finance, and vendors for renewals and cost planning. Governance, Risk & Compliance Define and enforce policies for workload management and governance across our cloud estate. Maintain compliance with internal policies and regulatory requirements. Ensure data governance best practices across cloud More ❯

IT Risk and Policy (GRC) Analyst Permanent - Up to £38k + strong benefits Location: Hybrid - Leatherhead Your new company A leading construction and development company in Surrey is currently looking for an IT Risk and Policy (GRC) Analyst to come in and support the existing IT Risk & Policy Manager with the day-to-day tasks involved with managing the risks … experience across multiple areas. The Analyst is responsible for managing IT risks, monitoring audit actions, maintaining IT policies and procedures, and supporting GDPR compliance. The role combines technical and governance aspects, with a focus on standards and regulations, whilst ensuring collaboration across the business to ensure strong IT practices are put in place. Ensuring that all IT risk and IT … oral and written communication skills, with high attention to detail Ability to produce high-quality, detailed outputs. Good analytical skills Highly organised and able to implement and manage robust governance processes. To undergo a BPSS security check. What you'll get in return This role is available for hybrid working with a typical requirement to work 2 or 3 days More ❯

IT Risk and Policy (GRC) Analyst Permanent - Up to 38k + strong benefits Location: Hybrid - Leatherhead Your new company A leading construction and development company in Surrey is currently looking for an IT Risk and Policy (GRC) Analyst to come in and support the existing IT Risk & Policy Manager with the day-to-day tasks involved with managing the risks … experience across multiple areas. The Analyst is responsible for managing IT risks, monitoring audit actions, maintaining IT policies and procedures, and supporting GDPR compliance. The role combines technical and governance aspects, with a focus on standards and regulations, whilst ensuring collaboration across the business to ensure strong IT practices are put in place. Ensuring that all IT risk and IT … oral and written communication skills, with high attention to detail Ability to produce high-quality, detailed outputs. Good analytical skills Highly organised and able to implement and manage robust governance processes. To undergo a BPSS security check. What you'll get in return This role is available for hybrid working with a typical requirement to work 2 or 3 days More ❯

At Nelson Frank, we are seeking a skilled and innovative ServiceNow Developer with expertise in (GRC and SecOps ). Key Responsibilities: Develop and maintain applications within the ServiceNow GRC and SecOps suites Customize ServiceNow using JavaScript, Business Rules, Client Scripts, UI Actions, and Script Includes Collaborate with stakeholders from IT, Security, Risk, and Compliance teams to gather requirements and deliver … Build automation and workflow solutions using Flow Designer and IntegrationHub Support platform upgrades, security patches, and maintain technical documentation Participate in agile development sprints and continuous improvement initiatives Ensure GRC and SecOps modules align with enterprise security policies and regulatory frameworks (e.g., NIST, ISO 27001, SOX) Required Qualifications: 5+ years of ServiceNow development experience 1+ year of hands-on experience … with ServiceNow GRC and/or SecOps Strong understanding of ServiceNow architecture, data model, ACLs, CMDB, and flow automation Proficient in JavaScript or similar Strong analytical and problem-solving skills with attention to detail For more information, please apply with a detailed CV More ❯