26 to 50 of 96 GRC Jobs in the UK excluding London

Job Title: Security Governance Analyst Location: Northampton (Minimum of 2 days onsite required) Contract: Inside IR35 Hours/Duration: Full-time, 5 days per week. Overall project expected to be 3 months in duration. The Role of Security Governance Analyst Our client, who is one the UK's leading trade … suppliers, is seeking an experienced Security Governance Analyst to join the Information Security Team to assist with improving the organisations security and core governance and compliance activities across the business. This role is expected to last for 3 months in duration, and the successful candidate will need to attend the … external testers, tracking findings, and ensuring remediation plans are in place. About you The successful candidate will have previous experience working as a Security Governance Analyst, and be confident in governance checking, risk management and regulatory compliance. You will also have the following skills: An ability to identify, assess, and More ❯

and the delivery of fair customer outcomes and good experience for members. Working collaboratively with colleagues across the COO Digital, COO AI CoE, COO GRC, Policy partners and across Business risk partners to appropriately; identify, assess, manage, monitor and review all the key risks and controls in the development, delivery More ❯

Required Skills & Experience: Proven experience as a Business Analyst within the food retail or related sector. Strong hands-on experience with OneTrust or similar GRC/privacy management platforms (e.g., TrustArc, LogicGate). Demonstrated track record of end-to-end implementation projects involving privacy and third-party risk tools. Deep More ❯

Required Skills & Experience: Proven experience as a Business Analyst within the food retail or related sector. Strong hands-on experience with OneTrust or similar GRC/privacy management platforms (e.g., TrustArc, LogicGate). Demonstrated track record of end-to-end implementation projects involving privacy and third-party risk tools. Deep More ❯

Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, risk management and compliance. We work across public and private sector and have over 250k customers across the UK across 20 different sectors including construction, transport, retail More ❯

Once For All is a high-growth, cloud-based, SaaS subscription business. Our technology helps our customers to manage their supply chain governance, risk management and compliance. We work across public and private sector and have over 250k customers across the UK across 20 different sectors including construction, transport, retail More ❯

on all matters relating to cyber security, information assurance, cyber risk, data privacy including regulatory and compliance considerations Lead the development and enhancement of governance, risk and compliance aligned to policy, standards and industry good practice Ensure that continuous assessment, identification, analysis and reporting of useful metrics to enable informed … and technical security controls are maintained What experience you'll bring: Minimum of 5 years' experience in a multi-tiered IT enterprise environment/Governance, Risk and Compliance role Minimum of 5 years' experience in a Governance, Risk and Compliance role A track record of delivering security solutions for large More ❯

GRC Analyst – Information Security - FTSE 100 Market Leader GRC Analyst with a focus on infosec governance, risk and compliance required by a market leading brand. The information security analyst will assist in establishing and monitoring the corporate information security policy, standards, procedures, guidelines, internal controls and business continuity to ensure … and implement lessons learnt to improve the organisation’s security posture Requirements: Either Technical Operations Security experience with an interest to work within a governance role or experience working in a Security Governance role Ability to assess system controls based on a documented standard Will be able to demonstrate ability More ❯

you. About You We'd love to hear from you if you can demonstrate expertise in at least one of the following areas : Security governance, risk and compliance (GRC), aligned with HMG cybersecurity and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational More ❯

Job Title: GRC Lead Location: Manchester (3 days per week onsite) Salary: Up to £95,000 + discretionary bonus & excellent benefits Employment Type: Full-time, Permanent (applicants must be UK based and NOT require sponsorship) About the Role: A leading organisation is seeking a highly experienced and strategic Security Culture … and Awareness Manager to join its cyber security team. This is a fantastic opportunity to shape and lead the development, governance, and awareness of IT and cyber security policies across a large and complex organisation. As the Global Cyber Policy and Governance Lead, you will be responsible for aligning cyber … enhancing policy frameworks, ensuring compliance with international standards and regulations, and providing leadership-level reporting and insight. Key Responsibilities: Lead the design, implementation, and governance of IT and cyber security policy frameworks. Develop and manage a global policy governance structure that aligns with industry best practices and internal strategy. Ensure More ❯

promoting risk-awareness across IT operations. Conducting regular IT risk assessments to identify emerging threats and ensure compliance with regulatory and industry standards. Evaluating Governance, Risk, and Compliance (GRC) tools to ensure alignment with business needs and regulatory requirements. Maintaining and updating IT policy and procedural documentation in line with … in Information Technology, Computer Science, or a related field. Experience in IT Risk Management, Operational Risk, or a related discipline. Hands-on experience with GRC tools—particularly in IT Compliance, IT Risk Management, and Vendor Management—is desirable. Strong knowledge of IT risk management frameworks and standards such as ISO More ❯

inclusive working environment in which everyone is encouraged to be open and forward-thinking. Job information: Functional title - AVP, IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual … will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and … security risk management and taxonomy principles, to reduce risk to an acceptable level. Knowledge of vulnerability management and incident management practices. Ability to learn GRC tools and best practices. RSA Archer is preferred. Financial and/or Banking industry experience preferred. Professional qualifications/certifications Ideally qualified in MSc Information More ❯

specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping … line with industry trends and client needs. What You Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus … assessments and guiding clients through the certification process, with a strong understanding of the technical and governance requirements. Experience with risk assessments, gap analyses, and creating security operating models tailored to client needs. Confidence in client-facing roles, delivering actionable insights and security advice to stakeholders at all levels. A More ❯

Developing effective cloud-based processes, ensuring maximum security, scalability, and reliability of services. Working to ensuring that cloud services are configured in line with governance policies to mitigate risks, maintain compliance, and safeguard sensitive data. Working closely with cross-functional teams to ensure the cloud services meets the organisation's More ❯

increase market accessibility for global SMEs. We do so across our 4 key businesses: Alipay+, Antom, WorldFirst and ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires … technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and … data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess More ❯

Albany Beck is looking for an experienced Security Consultant with a strong background in Security Risk Management, GRC, Vulnerability Analysis, and Compliance to join a high-impact programme within a leading global investment bank. This is an exciting opportunity to play a key role in the design and implementation of … s overall security posture. As a Security Consultant, you’ll be working in the client’s security team, contributing to critical workstreams that span governance, risk and compliance (GRC), vulnerability management, and security control design. You'll work closely with cross-functional stakeholders including technology, audit, and operations teams to … security risk assessments and develop risk treatment plans aligned with the bank’s risk appetite. Support the development, implementation, and continuous improvement of security governance frameworks and GRC processes. Design and enhance security controls across infrastructure, applications, and cloud environments. Lead or support vulnerability analysis activities, including risk-based prioritisation More ❯

Take Your Career to the Next Level as a QSA Consultant! Role: Qualified Security Assessor (QSA) Consultant Company: IT Governance Limited, a GRC Solutions Company Location: Remote (UK-based) About Us: At IT Governance, were at the forefront of cybersecurity and compliance, partnering with businesses across all sectors to ensure … you meet the roles requirements. Note: This role may require travel to client sites, and security clearance checks will be conducted. Equal Opportunity Employer: GRC International Group Plc is committed to fostering an inclusive workplace. We value diversity and welcome applicants from all backgrounds and experiences. More ❯

Engineer to be based in our London office. Main responsibilities within the Senior IT Security Engineer position include: Support Information Security risk management, compliance activities, and governance initiatives. Collaborate with stakeholders to identify, document, and mitigate security risks through effective controls. Work with key software and service vendors to manage … principles, practices and standards and how they translate into real world technical solutions. Significant experience in the field of Information Security including Governance, Risk management and Compliance frameworks, Security Awareness and Threat Intelligence. Ability to effectively communicate complex security or intelligence related information to both technical and non-technical audiences. More ❯

this role, you will love the challenge of maintaining an accurate view of licensing and working closely with external support partners in the SAP GRC space. The Key Requirements... • Experience in SAP security administration and authorizations. • Proficiency in SAP Security concepts, including role design, user provisioning, and authorization objects. • Strong … a pragmatic approach to delivery whilst maintaining rigour of security • Excellent ability to work autonomously and adapt to changing technology use • Knowledge of SAP GRC (Governance, Risk, and Compliance) tools is desirable. In this role, you'll be at the heart of the organization's efforts to maintain a secure More ❯

this role, you will love the challenge of maintaining an accurate view of licensing and working closely with external support partners in the SAP GRC space. The Key Requirements • Experience in SAP security administration and authorizations. • Proficiency in SAP Security concepts, including role design, user provisioning, and authorization objects. • Strong … a pragmatic approach to delivery whilst maintaining rigour of security • Excellent ability to work autonomously and adapt to changing technology use • Knowledge of SAP GRC (Governance, Risk, and Compliance) tools is desirable. In this role, you'll be at the heart of the organization's efforts to maintain a secure More ❯

external market factors Develop both expertise and corporate intelligence and intellectual property on the assigned (sub)categories, as relevant Support organisation-wide procedures for governance, risk and compliance management that manage, mitigate and minimise risks to ensure that work carried out within the Sourcing & Contract Management Hub is aligned to More ❯

external market factors · Develop both expertise and corporate intelligence and intellectual property on the assigned (sub)categories, as relevant · Support organisation-wide procedures for governance, risk and compliance management that manage, mitigate and minimise risks to ensure that work carried out within the Sourcing & Contract Management Hub is aligned to More ❯

external market factors Develop both expertise and corporate intelligence and intellectual property on the assigned (sub)categories, as relevant Support organisation-wide procedures for governance, risk and compliance management that manage, mitigate and minimise risks to ensure that work carried out within the Sourcing & Contract Management Hub is aligned to More ❯

Security Design & Segregation of Duties (SoD). Identify & implement techniques to improve SAP Security & Authorisation. Provide expert guidance & recommendations on Security Best Practices. SAP GRC - support Governance, Risk & Compliance - GRC solutions. Analyse SAP Security & Compliance gaps. Collaborate with Business & IT teams to define & enforce Security Policies. Periodic Access Reviews & Audits … Communication skills - ability to engage with non-technical & technical stakeholders. Keywords: SAP Security Consultant, SAP Security & Authorisation, SAP Security Consultant, Security and Authorisation, SAP GRC, SAP Security Best Practices, SAP Security Design, SAP Segregation of Duties, SAP Security Administration, SAP ECC6, SAP S/4 Hana, SAP Security Consultant, SAP … GRC, SAP Security & Authorisation Consultant, SAP Security, Southampton, Hampshire, Permanent, T6/MN/1225494. More ❯

days a week in the office, 2 days if living more than 1.5 hours away) We are working with a global client seeking a GRC Analyst to focus on risk management, compliance, and policy. You will be responsible for developing and implementing internal control frameworks and defining policies in line … and ISO 27001. Collaboration with various business units will be key to reducing risk and ensuring compliance with regulations. Key Responsibilities: Focus on risk management and compliance, including policy and standards development. Map internal controls to industry standards such as NIST and ISO 27001. Build and define security policies, ensuring More ❯