51 to 75 of 96 GRC Jobs in the UK excluding London

of risks, ensuring emerging risks are flagged. Ensure compliance with regulatory requirements. Monitor industry trends and best practices. Collaborate with the Head of Security GRC and teams to manage incidents and propose corrective actions. Provide risk management training and develop a risk-aware culture. Support the development of security risk … business experience, along with active CRISC or 27005 Risk Manager certification. You should have a minimum of 5 years or demonstrated experience in a governance, risk, or compliance role within an information security context. Strong analytical and problem-solving abilities, excellent written and verbal communication skills, and proficiency in risk More ❯

Work collaboratively with business owners within the various business entities to correctly identify strengths, weaknesses, vulnerabilities, and opportunities for improvement. Formulate clear recommendations, drive governance strategies, and influence business stakeholders and technology stakeholders at all levels. Drive continuous improvement in the adoption and exploitation of good information security practice across … the business. Drive security innovation that enables new retail capabilities while working with IT GRC for maintaining appropriate risk controls. Facilitate communication between enterprise security teams and retail business units. Delivery of security services Triage, review and manage new project and security requests to provide a quality, repeatable security assessment. More ❯

vendors to evaluate IT controls. Manage vendor risk, maintain information asset registers, and drive incident management. Requirements: Strong experience in Information Security, focusing on Governance, Risk, and Compliance (GRC). Expertise in risk frameworks (NIST, ISO 27001, Cyber Essentials) and IT policy development. Relevant certifications (CISA, CRISC, CISM) are highly More ❯

prem and cloud SAP system (e.g., ECC, S/4HANA, BW to enforce appropriate access controls. Support configuration and implementation of SAP Identity Access Governance (IAG) and Access Controls (AC) tool for auto provisioning and access risk management. Understand the segregation of duties requirements and embed in the security role … Experience: Understanding of SAP (S/4 HANA) authorization concepts, user roles, profiles, and good practices with hands-on experience. Good understanding of SAP GRC Access Controls/Identity Access Governance tool. Ability to understand and analyze the segregation of duties report and remediate the risks from the roles. Ability More ❯

capabilities and integration with third-party technologies & monitoring tools. Advise and ensure customers use leading ServiceNow practices & capabilities related to instance strategy, architecture, technical governance, data and integrations. Work with diverse teams and customers to improve product adoption, increase footprint & provide guidance to project teams at onsite/offshore on … CMDB or asset integrations in ServiceNow. Knowledge of SAML, Active Directory, or LDAP. ServiceNow developer Certification, including ITSM, ITOM, Asset Mgt, ITBM, CSM, SecOps, GRC, or HR. Exposure to HRSD, IRM, CSM, FSM, GRC, mobile solutions, Reporting & Analytics & other industry specific solutions. Well-versed in modern web technologies and cloud More ❯

Join us as a Data Governance Business Partner at Barclays, where you'll oversee data governance activities with a focus on data controls. You'll identify and analyze data-related issues across systems and processes, summarizing complex findings in clear, non-technical language for diverse audiences. Working closely with teams … consistency, and compliance throughout the organization. To be successful as a Data Governance Business Partner, you should have: Business Banking Journeys & Process knowledge. Data Management & Governance knowledge. Business data quality analysis and insights presentation. Stakeholder communication & collaboration skills. Ability to convey technical concepts clearly across stakeholder groups. Additional valued skills … Experience in change management and delivery. This role is hybrid, based in Northampton or Knutsford. Purpose of the role Enable effective data governance, risk management, and compliance, acting as a liaison between business units and the Data & Records Management (DRM) function, translating needs into strategies and ensuring their implementation. Accountabilities More ❯

in delivering cutting-edge security solutions with a commitment to service quality, innovation, and client trust. Our mission is to simplify and scale cyber governance, risk, and compliance through our AI-powered platform, SUSAN. Role Overview: We are seeking a passionate and driven Security Consultant Intern to join our growing … AWS, Azure), or basic scripting What You’ll Gain: Hands-on cybersecurity consulting experience Mentorship from industry-certified security professionals Exposure to real-world GRC projects and enterprise security challenges A potential pathway to full-time employment upon successful internship completion Opportunity to contribute to a growing cybersecurity platform with More ❯

Perform cybersecurity analysis , translating regulatory and business requirements into actionable tasks. Advise on frameworks such as NIST, ISO 27001, CIS Controls, CSA CCM. Support GRC activities , including risk assessments and compliance monitoring. Must-Have Experience & Skills: 5+ years in IT security consulting or transformation roles. Proven delivery of complex, multi … site security projects globally. Deep knowledge of security frameworks (NIST, ISO 27001, CIS, CSA CCM). Strong understanding of GRC processes , vulnerability management, incident response, and SOC. Familiarity with DevSecOps , secure SDLC, disaster recovery, and BCP. Excellent stakeholder management and communication skills. Experience navigating multicultural environments and cross-functional teams. More ❯

stakeholders Provide security due diligence in procurement processes and oversee continuous supplier assurance Manage security incidents and coordinate incident response processes Select and implement GRC controls and assisting in selection and implementation of information security technologies Identify security requirements specific to an information technology (IT) system in all phases of … and supporting staff Create and then lead the Security Operations Centre (SOC), ensuring Real Time monitoring and incident response. Drive security awareness training and governance, risk, and compliance (GRC) initiatives. Creation and presentation of reporting to senior stakeholders, highlighting threats, compliance gaps, and mitigation progress. Conduct risk assessments, maintain risk More ❯

and ensuring they comply with relevant laws. About You: The ideal candidate will bring: Proven experience in information security, with a strong focus on Governance, Risk, and Compliance (GRC), ideally with 3 to 5 years in a similar role Strong understanding and practical experience with ISO27001 implementation. Basic understanding of More ❯

IT Governance Officer FirstBank UK is a globally recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services/products, this thriving business with over 10 million active customers in over 700 business locations is the … oldest African bank in the UK. Due to business requirements, we are now looking to acquire the services of an experienced IT Governance Officer. Please note that this is a hybrid role with 3 days in the office and 2 days working from home. Key Responsibilities: 1. Compliance and Governance … Service Desk. c. Provide service desk performance MI Data in relation to closed and open tickets Key Skills/Experience: Proven experience in IT governance, risk management, and compliance. Has worked with auditors or in a 2nd line of defence role and assisted with audits. Experience in managing vendor relationships More ❯

Collaborating with various departments to deliver data-driven insights and support performance improvements Conducting profitability and pricing analysis as required Supporting effective governance, risk management, and compliance through accurate reporting Contributing to continuous improvements in data processes and analysis techniques What You'll Bring Minimum 2 years' experience in data More ❯

wide range of security technologies (e.g., Cloud, Brand Surveillance, MSSP tools). Provide support for ongoing security investigations and incident response activities. Assist InfoSec Governance, Risk & Compliance (GRC) teams with internal and external audits. Contribute to tabletop incident simulations to improve readiness and response. Enhance existing incident response playbooks and More ❯

wide range of security technologies (e.g., Cloud, Brand Surveillance, MSSP tools). Provide support for ongoing security investigations and incident response activities. Assist InfoSec Governance, Risk & Compliance (GRC) teams with internal and external audits. Contribute to tabletop incident simulations to improve readiness and response. Enhance existing incident response playbooks and More ❯

global frameworks. Act as a trusted advisor for IT & Ops stakeholders-identifying risks and building mitigation plans. Contribute to risk education, awareness campaigns, and governance training. Support leadership with impactful insights and data-driven reporting. Key Skills Needed Strong experience in IT & Operations Governance, Risk or Compliance. Substantial knowledge of More ❯

and detail-oriented Information Security professional with a passion for protecting business-critical systems and influencing secure technology practices? Do you thrive in a governance-focused role, advising on risk, compliance, and cyber best practices across a modern IT landscape? Our Global Technology Services (GTS) Risk & Security team is looking … passion for continuous learning and improvement Knowledge or experience of working within an Information Security, Risk or Compliance function Familiarity with cyber security principles, governance frameworks, and risk management practices Understanding of cloud environments, particularly Microsoft Azure, and their associated security considerations A relevant degree (e.g. Computer Science or similar More ❯

between business and security , aligning technical solutions with regulatory and operational needs. Perform risk-based analysis , translate business requirements into security actions, and guide GRC and compliance efforts. Provide consulting expertise across frameworks (NIST CSF, ISO 27001, CIS, CSA CCM) and modern security practices. Must-Have Requirements 5+ years in … IT security consulting or project delivery. Strong understanding of cybersecurity frameworks , GRC processes, and secure SDLC/DevSecOps. Proven experience managing complex, global security initiatives and engaging with senior stakeholders. Excellent communication skills with the ability to translate technical concepts for non-technical audiences. Familiarity with SOC, incident response, DR More ❯

regions and business units to align data privacy strategies with the firm's strategic objectives and evolving regulatory landscape. This role will collaborate with governance, risk, and compliance (GRC) specialists and analytics experts to ensure effective oversight, reporting, and continuous improvement of the firm's data protection position. Reporting directly … and standards, ensuring alignment with local data privacy regulatory obligations and industry best practices across Europe, the UK, North America, and APAC. Establish privacy governance objectives and key privacy risk indicators (KPIs/KRIs) that align with the firm's risk appetite and compliance requirements. Implement systems and processes to … awareness and accountability at all levels of the organization. Foster a privacy-first culture, promoting transparency, ethical data handling, and risk-informed decision-making. Governance, Reporting & Communication: Attend internal and external client risk committees as required, ensuring oversight of the firm's privacy risk exposure. Provide regular reports and updates More ❯

technical audiences. Direction & Decision Making: Provide guidance to security product owners, defining the direction for security technology solutions. Key Technologies You'll Work With: Governance, Risk, and Compliance (GRC) Endpoint Protection (e.g., Sentinel One, Microsoft Defender) Identity Access Management (e.g., Ping, SailPoint) Network Security Solutions (e.g., Akamai, F5) Cloud Security More ❯

Excellent opportunity for GRC Security Lead to be part of our Cloud Infrastructure & Security services practice. Cognizant Infrastructure Services – Provides IT infrastructure & Cloud services for clients across industry verticals, including both Consulting/Professional and Managed Services, across Enterprise Computing, Cloud services, Security Services, DevOps, Data Centres, End User Computing … Service Desk, Network Services and Environment Management Services. Key Responsibilities : Lead the development and implementation of GRC strategies for AWS cloud environments. Ensure compliance with industry standards and regulatory requirements (e.g., GDPR, HIPAA, PCI-DSS, SOC2). Develop and maintain policies, procedures, and controls to manage risks and ensure compliance. … Secrets Manager, Amazon Inspector, Amazon Macie, Amazon GuardDuty, Amazon Detective, AWS CloudTrail, and AWS Security Hub. Collaborate with IT and security teams to integrate GRC practices into cloud operations. Monitor and analyze security alerts and incidents, and develop response plans. Provide technical guidance, mentorship, and documentation for GRC practices. Engage More ❯

IT Governance Officer/IT Service Desk Manager Our Client is a globally recognised, successful bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services/products, this thriving business boasts over 10 million active customers in over … business locations. Due to business requirements, we are now looking to acquire the services of an experienced IT Governance Officer. Please note that this is a hybrid role with 3 days in the office and 2 days working from home. Key Responsibilities: There are 4 parts to this role IT … Service Desk Oversight Compliance and Governance Vendor Management Disaster Recovery and Business Continuity 1. Compliance and Governance: a. Oversee, and maintain compliance with Cyber Essentials Plus and ISO27001 requirements and other international standards as part of business as usual (BAU) to ensure periodic recertification. b. Conduct monthly testing of Cyber More ❯

risk professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain, and working on other governance, risk and compliance projects within a team. T The Risk Manager will verify that third parties meet the minimum-security requirements to protect our organisation … relevant risk mitigations, deal with multiple stakeholders to ensure end to end treatment is applied. They will also be part of our PMO, and governance and compliance processes through the business and frequently deliver updates to senior management in meetings and information security forums. They will work towards ensuring the … communicated to stakeholders and appropriately documented. Key Accountabilities, Skills & Experience Proven experience in Information Security , specifically in third-party risk , supply chain assurance , and governance, risk, and compliance . Strong understanding of ISO 27001 (implementation, audit, and continuous improvement), Cyber Essentials, and NIST CSF. Familiarity with reviewing SOC 2 Type More ❯

architectural design of ServiceNow solutions tailored to specific project requirements, ensuring they meet current and future business needs across ITSM, ITOM, ITBM, SecOps, CSM, GRC, and DevOps models. Oversee the configuration and customization of the ServiceNow instance, focusing on core ITSM modules (Incident, Problem, Change, Request, Knowledge, etc.) to align … servers to support project requirements. Collaborate with project stakeholders to gather requirements, assess needs, and translate them into scalable and effective technical solutions. Establish governance frameworks for system security, including roles, groups, and ACLs, ensuring compliance with organizational policies and industry standards. Monitor and optimize system performance, ensuring the ServiceNow More ❯

architectural design of ServiceNow solutions tailored to specific project requirements, ensuring they meet current and future business needs across ITSM, ITOM, ITBM, SecOps, CSM, GRC, and DevOps models. Oversee the configuration and customization of the ServiceNow instance, focusing on core ITSM modules (Incident, Problem, Change, Request, Knowledge, etc.) to align … servers to support project requirements. Collaborate with project stakeholders to gather requirements, assess needs, and translate them into scalable and effective technical solutions. Establish governance frameworks for system security, including roles, groups, and ACLs, ensuring compliance with organizational policies and industry standards. Monitor and optimize system performance, ensuring the ServiceNow More ❯

making and digital transformation are key to business success. Key Responsibilities Lead and deliver strategic programmes, projects, and workstreams within a robust project controls and governance framework. Track and manage project performance across scope, schedule, cost, and quality, taking early action to address risks or variances. Collaborate with a wide … technology stakeholders. Mobilise, manage, and lead multidisciplinary teams, ensuring the right mix of skills, capacity, and experience to deliver high-quality outcomes. Maintain compliance with project governance, risk, and assurance standards throughout the project lifecycle. Skills & Experience Essential: Proven experience delivering large-scale IT and data projects as … a Project Manager. Hands-on experience with Databricks or similar cloud-based data platforms (Azure, AWS, GCP). Strong understanding of project governance, risk management, and compliance practices. Experience working in complex, matrixed global organisations. Exceptional leadership, communication, and stakeholder management skills. Desirable: Prior experience within energy trading or other More ❯