26 to 50 of 69 GRC Jobs in the UK excluding London

environments. This is a client-facing consulting role where you will be deployed into customer programmes and projects, providing hands-on cyber security assurance, governance, risk and compliance expertise. Due to the nature of the work, candidates must already hold live SC or DV clearance. The Role You will provide … role Knowledge of cyber security standards, frameworks and best practice Good baseline technical understanding (e.g. cloud, networking, access control, IT systems) Strong experience in Governance, Risk & Compliance (GRC) Experience working in customer-facing or consultancy environments Strong written and verbal communication skills Ability to work independently, manage workload and meet ...

practitioner who thrives on doing —not just advising. This is a delivery-focused role, perfect for someone who enjoys: Crafting and updating policies Driving governance, risk, and compliance Embedding secure-by-design practices Boosting security awareness and culture Being the go-to security expert within the business You'll work … independently, without line management duties, owning day-to-day information security operations. Our IT teams handle the tooling—your mission is governance, risk, compliance, and enabling secure delivery. What You'll Be Doing Own and manage all information security incidents & organisational risks Maintain and evolve our Information Security Management System ...

Application Analysts and Application Support Analysts, building a culture of collaboration, curiosity and continuous improvement. Job description: Main job responsibilities: Leading the strategy, governance and delivery of enterprise applications, ensuring systems are fit for purpose, secure and aligned to business priorities. Owning the enterprise applications architecture, ensuring interoperability, integration and … code/no-code platforms, APIs and cloud-based solutions. Ensuring secure, compliant and accessible application designs aligned with data protection, cyber security and governance frameworks. Leading, coaching and developing Application Analysts and Application Support Analysts, building a high-performing, customer-focused team. Embedding a culture of continuous improvement, accountability ...

and lead the organisation's information security function. This role is responsible for defining and executing the information security strategy, ensuring robust governance, risk, and compliance practices, and protecting the organisation's information assets within a regulated environment. Key Responsibilities Lead and manage the organisation's cyber and information security … across a medium to large enterprise environment Develop, implement, and continuously improve the information security strategy, roadmap, and supporting programs Establish and maintain strong Governance, Risk, and Compliance (GRC) frameworks aligned to business objectives Oversee information security risk management, including risk identification, assessment, treatment, and reporting Manage ISO27001 compliance, including ...

summary Were looking for an experienced Information Governance Manager to lead IG, Cyber Security, Digital Clinical Safety, and Quality Management across a complex, multisite healthcare organisation. This is a key leadership role driving strategy, compliance, change, and operational excellence. As our Information Governance Manager, you will shape and deliver … governance strategy, deputise for the Group Head, and ensure compliance with UK, NHS, and international standards. You will lead transformational improvement across IG, Cyber, Digital Clinical Safety and ISOaligned Quality Management, working closely with senior leaders, technical teams, and clinical stakeholders. This is a full-time permanent role, working remotely. ...

enjoys driving practical improvements and embedding risk management into day-to-day operations. Key Responsibilities You will: Contribute to the operation, enhancement, and governance of the security risk management framework, ensuring alignment with business goals, regulatory needs, and recognised industry practices. Conduct detailed security risk assessments and support the creation … will have: Hands-on experience in security risk management within a dynamic, high-growth, or highly regulated environment. A background designing, maintaining, or enhancing governance processes and procedures, ideally related to security or technology risk. Strong experience performing risk assessments across cloud environments and modern technology stacks. Good understanding ...

Security Operations (SOC) function. This is a hands-on, operational role focused on improving detection, response, and incident readiness - not a compliance or GRC-led position. You'll manage a small SOC team, own the relationship with a Managed Detection & Response (MDR) provider, and drive continuous improvement across security operations … Operational, detection-and-response-led security environment What This Role Is Not Not GDPR-, ISO-, or risk-framework-led Not a pure compliance or GRC role Not policy- or audit-heavy This role is about real-world security operations and outcomes . Experience & Skills Proven experience managing or leading Security ...

potential business impact. Present findings to senior stakeholders, including the CISO. Collaborate with internal teams to gather contextual information needed for assessments. Support broader Governance, Risk & Compliance (GRC) objectives where required. Contribute expertise relating to threat modelling, exploitation techniques, and security best practices. Apply industry-recognised standards and frameworks (e.g. ...

security risk management across the wider technology function. The Role * Reviewing and assuring cyber security controls to ensure effectiveness, coverage and evidence * Maintaining and improving cyber governance, risk and reporting frameworks * Supporting cyber risk assessments, issue tracking and remediation activities * Reviewing and updating security policies, standards, procedures and playbooks * Supporting … and assurance activities * Assisting with incident management governance, including root cause analysis and control improvements * Working with technology teams to embed effective security risk management and compliance Skills & Experience * Experience in cyber security governance, risk or assurance, ideally within a regulated environment * Proven background in testing and assuring security controls ...

information and cyber security across the organisation Manage and optimise third-party security relationships , including suppliers, MSPs, and assurance partners Oversee security governance, risk management, and compliance activities Provide leadership and direction to a small internal team , supported by external vendors Engage with senior stakeholders to translate security risk into ...

responsibilities include: Monitoring systems, networks and alerts for security threats and vulnerabilities Investigating, documenting and responding to security incidents Supporting cyber security governance, risk management and compliance activities Producing clear security reports, metrics and management information Working with third-party suppliers and internal stakeholders Promoting cyber security awareness across ...

Anticipate future needs, develop a prioritised roadmap of change, and ensure all technology investments deliver a clear return on investment and strategic value. Ensure Governance & Security: Maintain absolute compliance with all legal, regulatory (including GDPR), policy, and cyber security requirements, safeguarding company and client data. Principal Accountabilities & Responsibilities Strategic Leadership … progression and ensure the team is trained and equipped to meet evolving demands. Instil a service-oriented, business-partner mindset within the IT function. Governance, Risk & Compliance - Maintain and ensure effective implementation of all legal, policy, GDPR, Health & Safety, and cyber security requirements. Own the cyber security strategy and posture ...

learning models that increase retention rates by 75% so that cyber apprentices can prepare for real-world challenges Support an organisation's formal security governance, regulatory and compliance (GRC) and interact with risk assessments and risk mitigations Tools and technologies learned: Apprentices will learn to use Project Ares, Python, Microsoft ...

while contributing to the continuous improvement of their security posture. This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across ...

Governance Risk Compliance Lead I’m currently partnered with a leading global organisation that is looking for a GRC Lead to oversee the day‐to‐day running of their Governance, Risk & Compliance function. This is a hands‐on, delivery‐focused role where you’ll manage compliance tooling, support client governance … activity, and help shape their GRC capability. It’s ideal for someone who enjoys working directly with stakeholders and customers, thrives in a fast‐paced environment, and is passionate about practical, effective GRC delivery! Implement and maintain core compliance frameworks (ISO 27001, NIST, COBIT) Lead supplier assurance activities and review ...

ServiceNow Developer (GRC)| 12+Month Contract | Outside IR35| Remote We are seeking an experienced ServiceNow Developer with expertise in Governance, Risk, and Compliance (GRC) to join our client’s team. The ideal candidate will be responsible for designing, developing, and implementing ServiceNow GRC solutions that align with business objectives and regulatory … requirements. Required Skills & Experience Proven experience as a ServiceNow Developer , with a focus on GRC modules . Strong understanding of ServiceNow architecture and scripting (JavaScript, Glide API). Experience with ServiceNow integrations using REST/SOAP APIs. Knowledge of ITIL processes and risk/compliance frameworks. Ability to work ...

Cyber Security Consultant (GRC/ISO 27001) Hybrid | South Manchester | £60-70k + bonus An established and growing independent Cyber Security Consultancy is hiring a Cyber Security Consultant to lead client delivery and act as the internal SME across GRC and ISO 27001 . This is a key role … within a collaborative consultancy team, combining hands-on delivery with leadership responsibilities. What you’ll be doing Lead delivery of GRC, ISO 27001 and data protection consultancy work Oversee and support a small team of cyber professionals across multiple projects Manage ISO 27001 implementations , including internal audit support and readiness ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender …/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting ...

Governance, Risk and Compliance Manager - MOD DV Cleared Location: Hemel Hempstead Type: 4-5 days on-site IR Status: Inside Rate: £450 - £700 Clearance: Must have active MOD DV Contingency: Must be a sole British National Length: Initial 6 months Sanderson Government and Defence are seeking a GRC Manager … primary technical supplier into the MOD. This is a great opportunity to join a talented Cyber team on an interesting project. Role Overview As GRC Manager, you will be the driving force behind the implementation of Information Security Management System (ISMS) for an assigned client. Your expertise will help ...

suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis management, privacy and regulatory compliance.You will enhance business resilience … policies, procedures, and controls are in place. You will act as the guardian of the firms regulatory and ethical obligations, ensuring that all data governance and InfoSec laws and regulations are adhered to. In order to be suitable for this role of significant responsibility you must be an accomplished Information ...

suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis management, privacy and regulatory compliance.You will enhance business resilience … policies, procedures, and controls are in place. You will act as the guardian of the firms regulatory and ethical obligations, ensuring that all data governance and InfoSec laws and regulations are adhered to. In order to be suitable for this role of significant responsibility you must be an accomplished Information ...

technology decisions, module usage, platform configuration vs custom development. Ensure adherence to best practices, ServiceNow leading practices, coding standards, design patterns, security standards, data governance, and configuration over customization. Manage or oversee integrations between ServiceNow and other systems (via REST, SOAP, IntegrationHub, MID Servers, etc.), ensuring reliability, security, latency, error … handling, monitoring. Establish/enforce architecture governance: review designs from development teams/partners, perform code review, ensure technical debt is tracked and managed, monitor instance health. Mentor and lead junior architects, developers, administrators; elevate team capabilities. Work with enterprise architects/platform owners to define platform strategy: instance strategy ...

/Data Infrastructure Client: Leading Data Centre Provider A prominent data centre provider is seeking a Compliance and Assurance Officer to join its expanding governance team on a permanent basis. This role offers the opportunity to contribute to the development and maintenance of a robust compliance framework within a highly … Assist in the development and implementation of compliance policies, procedures, and training initiatives. Work with operational and technical teams to embed effective controls and governance practices. Prepare documentation and reports for internal governance forums and external audits. Keep abreast of regulatory changes and emerging risks relevant to the data infrastructure ...