10 of 10 GRC Jobs in York

sector from: Banking & Finance, Energy & Utilities or Manufacturing Development of Cyber and Information Security-Related consulting practices specifically in the area of Enterprise Architecture, GRC and Advisory capabilities Full P&L ownership of Cyber Technology and/or Advisory Practices Programme/Project management of large corporate security transformation/ More ❯

IT Risk and Governance Analyst – London – 3 month contract We are seeking an analytical mind, with an eye for detail, procedures and technical acumen, to help the business implement and run a new IT risk management framework. This is a multi-faceted role supporting both a Technology Transformation Programme as … assessments, controls assurance and compliance attestations for the clients and other third parties. 3. Risk controls and management Assist the development of the technology governance framework and controls reference library, and support the development and maintenance of policies, standards and procedures; Support the management of the IT controls library, reviewing … change requests, version control, as well as providing regular analysis on technology control performance; Support the GRC platform and service provision, e.g. write and operate GRC runbooks, proactively engage feedback, conduct business analysis for change requests to improve GRC service design and operations. 4. Risk governance and compliance Run the More ❯

global security initiatives, including Data Loss Prevention (DLP), Network Segmentation, and Secure Server Access. Oversee the development and implementation of the firm’s security governance framework. Coordinate response to security incidents, ensuring timely resolution, reporting, and root cause remediation. Serve as the regional liaison with regulators, auditors, and external vendors … Exceptional verbal, written, and interpersonal communication skills. Ability to influence and negotiate across all levels of an organization, including executive leadership. Familiarity with data governance and Data Loss Prevention (DLP) strategies. Experience with Governance, Risk, and Compliance (GRC) platforms. Experience with Agile methodologies. Foundational knowledge of cloud platforms such as More ❯

hands-on experience in SOC 2 frameworks, someone who’s been through this before and knows what it takes. Familiarity with ISO 27001, IT GRC, GxP compliance, and SaaS/cloud environments is also important, but SOC 2 is the headline act here. You’ll collaborate closely with teams across More ❯

Experience with CRM systems (e.g., Salesforce, HubSpot). A proactive, adaptable, and results-focused mindset. Bonus points: Experience within InfoSec, RegTech, Compliance-Tech or GRC solutions. The package: £85,000 basic with a £45k bonus, and uncapped) OTE Fully remote working available with multiple offices across the South 25 days More ❯

Developing effective cloud-based processes, ensuring maximum security, scalability, and reliability of services. Working to ensuring that cloud services are configured in line with governance policies to mitigate risks, maintain compliance, and safeguard sensitive data. Working closely with cross-functional teams to ensure the cloud services meets the organisation's More ❯

increase market accessibility for global SMEs. We do so across our 4 key businesses: Alipay+, Antom, WorldFirst and ANEXT Bank. Role Overview: As a GRC Lead, you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires … technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What you will be doing: Regulatory & Technical Compliance: Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience Act), ensuring alignment in areas such as incident reporting and … data protection. Translate requirements from PSD2 SCA, PCI DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to assess More ❯

Solution Owner for ServiceNow engagements, from presales through delivery. Define solution architecture across one or more ServiceNow product lines including ITSM, ITOM, HRSD, CSM, GRC, or SecOps. Lead client-facing workshops and working sessions to identify requirements, translate business goals into platform capabilities, and deliver tailored architecture blueprints. Guide development … of deep hands-on ServiceNow experience. Proven delivery expertise in at least two or more major ServiceNow product lines (e.g., ITSM, ITOM, HRSD, CSM, GRC, SecOps, SAM). Strong architectural understanding of the ServiceNow platform, with ability to lead the end-to-end technical solution lifecycle. Experience leading Agile implementations More ❯

landscape surrounding artificial intelligence. This is a unique opportunity to shape the responsible adoption of AI across industries, working at the forefront of AI governance, risk, and compliance. The role sits within a fast-growing AI Strategy practice, and you’ll be helping clients embed ethical, transparent, and compliant AI … solutions from design to deployment. Key Responsibilities: Lead the development of AI governance frameworks, policies, and assurance processes. Advise clients on regulatory compliance (e.g., EU AI Act, GDPR) and ethical AI practices. Collaborate with regulators, industry groups, and client stakeholders on trusted AI delivery. Shape propositions and develop internal assets … to establish the organisation as a trusted advisor in the Responsible AI space. Requirements: Prior experience in consulting (mandatory), ideally within data/AI governance, regulation, or digital ethics. Strong technical fluency in AI, data science, and machine learning frameworks. Demonstrated ability to lead client engagements and influence senior stakeholders. More ❯

growth within the assigned territory. Developing and maintaining a deep understanding of our transformative solutions, focusing on Business Process Analysis (BPA), Process Mining, and Governance, Risk, and Compliance (GRC) tools. Identifying and engaging potential clients within the territory, showcasing the value proposition and addressing their specific business challenges. Collaborate with More ❯