as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners … technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project More ❯
london (city of london), south east england, united kingdom
HCLTech
as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners … technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project More ❯
the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK/EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s ideal for someone with a … General Counsel on data sourcing and best practice Ideal Profile: 2–5 years’ experience in data protection, risk, or compliance Strong working knowledge of UK/EU GDPR, DORA, HIPAA, and ISO27001 Experience in professional services (law firm experience is a plus) Confident stakeholder engagement and communication skills *Visa sponsorship is not available for this position More ❯
london (city of london), south east england, united kingdom
Taylor Root
the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK/EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s ideal for someone with a … General Counsel on data sourcing and best practice Ideal Profile: 2–5 years’ experience in data protection, risk, or compliance Strong working knowledge of UK/EU GDPR, DORA, HIPAA, and ISO27001 Experience in professional services (law firm experience is a plus) Confident stakeholder engagement and communication skills *Visa sponsorship is not available for this position More ❯
the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK/EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s ideal for someone with a … General Counsel on data sourcing and best practice Ideal Profile: 2–5 years’ experience in data protection, risk, or compliance Strong working knowledge of UK/EU GDPR, DORA, HIPAA, and ISO27001 Experience in professional services (law firm experience is a plus) Confident stakeholder engagement and communication skills *Visa sponsorship is not available for this position More ❯
PAM Consultant - London Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address More ❯
Watford, Hertfordshire, United Kingdom Hybrid / WFH Options
Smith & Nephew
functional teams, contribute to AI governance, and help implement cutting-edge legal technologies. Whether it's supporting research and development for connected medical devices or advising on GDPR andHIPAA, your legal insight will help us deliver safe, compliant and innovative product and service solutions to patients and customers worldwide.Success in this role means being a proactive, commercially minded legal … 7+ years post-qualification experience in commercial contracting with a focus on IT/technology contracting and data privacy law Have strong knowledge of GDPR, UK Data Protection Act, HIPAAand other global privacy frameworks Demonstrate experience advising on digital health, AI, cloud services, and cybersecurity within a regulated industry Be confident working with senior stakeholders and translating complex legal More ❯
