CrawlJobs Logo

Governance, Risk & Compliance Manager

United Kingdom, Manchester · Job Posted January 21, 2026
Apply Position
Job Link Share

Job Description

This role leads the organization’s governance, risk, and resilience agenda, ensuring robust frameworks for compliance, risk management, and business continuity. It combines strategic oversight with hands-on delivery across three core areas: Risk Management, Business Continuity, and Corporate Secretariat Duties.

Job Responsibility

  • Promote and embed risk management best practice across the organisation
  • Mature the enterprise risk programme, including emerging risk identification and development of risk profiles
  • Provide risk insights and recommendations to support strategic decision-making
  • Maintain and enhance risk data within the Governance, Risk & Compliance (GRC) platform
  • Oversee risk and governance registers at corporate and functional levels
  • Conduct policy reviews, manage approval workflows, and ensure timely publication
  • Develop and maintain compliance policies including conflicts of interest and anti‑bribery and corruption
  • Support development of compliance training aligned to regulatory requirements
  • Lead the enterprise business continuity programme
  • Work with business units and IT to develop and maintain recovery plans aligned to ISO standards
  • Conduct risk assessments and Business Impact Analyses (BIAs) to identify vulnerabilities and critical processes
  • Coordinate the testing of continuity and recovery plans and report outcomes to senior leadership
  • Collaborate with IT compliance to ensure disaster recovery solutions align with enterprise continuity objectives
  • Manage and coordinate the governance calendar and deadlines
  • Provide expert guidance on governance frameworks, compliance obligations, and best practice
  • Produce high‑quality governance materials, including agendas, board packs, minutes, and action logs
  • Ensure timely statutory and regulatory filings, including modern slavery statements
  • Support governance reporting, including the annual integrity statement
  • Work with the standards and assurance team for administrative support
  • Follow all internal policies, procedures, and regulatory requirements
  • Maintain departmental processes, procedures, and standards
  • Complete mandatory training and support staff inductions where required
  • Protect personal data and comply with information security procedures
  • Ensure adherence to compliance areas including ISO, PCI DSS, GDPR, Human Rights, Health and Safety, and Anti‑Bribery and Corruption
  • Support Environmental, Social and Governance (ESG) principles including sustainability, resource efficiency, and inclusion

Requirements

  • Demonstrated experience in risk management, governance frameworks, and compliance processes
  • Familiarity with assurance, audit standards, and regulatory best practice
  • Proven experience in disaster recovery and business continuity in complex, multi‑entity environments
  • Exceptional written and verbal communication skills
  • Strong organisational and time‑management abilities with experience managing multiple priorities
  • Skilled in stakeholder engagement and workshop facilitation
  • Proficient in Microsoft Office
  • Ability to work independently and collaboratively across diverse teams and locations
  • Willingness to travel within the UK

What we offer

  • Refer a friend for £1000 bonus which is unlimited
  • Generous holiday entitlement
  • Day off for your birthday
  • Staff Awards
  • Hotel and airline discounts
  • Employee Assistance Programme

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Governance, Risk & Compliance Manager

8 matching positions

Governance, Risk & Compliance Manager

This role is the owner of day‑to‑day governance, risk, compliance and business c...
Location
Location
United Kingdom , Manchester
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands‑on experience running risk management activity
  • Strong experience maintaining risk registers and reporting risk at senior level
  • Business continuity planning experience, including testing and exercises
  • Experience working across group or multi‑entity structures
  • Confidence working directly with senior leaders and boards
  • Ability to produce clear, credible written outputs
Job Responsibility
Job Responsibility
  • Owner of day‑to‑day governance, risk, compliance and business continuity across the group
  • Ensure risks are identified, documented, monitored, escalated and owned
  • Ensure governance and continuity arrangements work in practice
  • Run processes end to end, keep controls moving, and hold the business to account
  • Work confidently with senior leaders and boards
What we offer
What we offer
  • Refer a friend for £1000 bonus which is unlimited
  • Generous holiday entitlement
  • Day off for your birthday
  • Staff Awards
  • Hotel and airline discounts
  • Employee Assistance Programme
Read More
Arrow Right

Senior Manager - Governance, Risk & Compliance (Insurance)

A leading global organization in the general insurance industry is expanding its...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 12, 2026
Flip Icon
Requirements
Requirements
  • Proven expertise within the general insurance sector, specifically in areas related to customer due diligence and regulatory oversight
  • Analytical approach with a natural inclination to challenge processes and suggest innovative governance solutions
  • Exceptional interpersonal skills with the ability to engage diverse teams and maintain open channels of communication
  • Strong resilience and the ability to maintain clarity and focus while working under demanding timelines
  • High level of professionalism and discretion, with a meticulous eye for detail in all reporting tasks
  • Degree in Banking and Finance
  • Bachelor Degree
  • 6 years experience
Job Responsibility
Job Responsibility
  • Execute and maintain comprehensive risk management frameworks to safeguard the organization's interests
  • Evaluate and update internal compliance procedures to ensure maximum mitigation of operational risks
  • Monitor and integrate the latest industry standards and regulatory developments into daily operations
  • Build strong relationships with stakeholders at all levels to promote a culture of transparency and accountability
  • Act as a strategic advisor to senior management on compliance matters and professional ethics
  • Fulltime
Read More
Arrow Right

Manager, IT Governance, Risk & Compliance

Reporting to the Director, IT Governance, Risk & Compliance, the GRC Manager is ...
Location
Location
Canada , Toronto
Salary
Salary:
85000.00 - 125000.00 CAD / Year
fourseasons.com Logo
Four Seasons
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent business qualifications
  • Minimum 5 years of experience with PCI standard and GRC methodologies
  • Information Security Certification or Accreditation is an asset
  • Professional security management certifications are highly preferred (ie. CISSP, CRISC)
  • PCI Compliance: Strong understanding of PCI DSS requirements and the use of compliance tools to support adherence to the standards
  • Reporting & Analytics: Proficient in reporting tools for creating dashboards, analyzing program data, and generating compliance and risk reports that support leadership decision‑making
  • IT Governance: Strong knowledge of governance frameworks such as COBIT and ISO 27001, applying these structures to strengthen compliance and manage risks effectively
  • Ticketing & ITIL: Proficient in ITIL‑based ticketing systems such as ServiceNow to manage incidents, problems, and changes, ensuring smooth service delivery and timely issue resolution
  • Risk Management: Comprehensive understanding of IT and cybersecurity risk practices, including identifying and evaluating risks and supporting remediation efforts
  • Change Management: Experienced in managing and reviewing IT change requests to assess compliance and risk impact, ensuring proper approvals, documentation, and alignment with internal change governance processes
Job Responsibility
Job Responsibility
  • Lead the Corporate Office PCI compliance Program, including: Define, collect, and conduct internal reviews for the Corporate Quarterly PCI compliance cycles
  • Lead the planning, evidence collection, and internal review processes for the Corporate Annual PCI assessment
  • Scheduling and participating in all audit-related meetings to ensure consistent communication between teams and the QSA
  • Overseeing remediation of audit findings and tracking progress to closure
  • Work closely with the QSA to ensure the successful annual renewal of the company’s AoC (Attestation of Compliance) and RoC (Report of Compliance) as a Level 1 service provider
  • Facilitating the Corporate annual tabletop major incident response exercise with Corporate TID teams
  • Maintain and update the company’s IT policies, standards, and procedures
  • develop new documentation and RACI matrices
  • communicate changes to relevant stakeholders
  • conduct reviews as required
  • Fulltime
Read More
Arrow Right

Cybersecurity Governance, Risk, Compliance, Training & Resilience Manager

We are hiring a Manager to lead the day-to-day execution of cybersecurity Govern...
Location
Location
United States , Boston
Salary
Salary:
120000.00 - 180000.00 USD / Year
aptiv.com Logo
Aptiv plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7–10+ years of cybersecurity risk, compliance, audit, or GRC program experience
  • Experience managing or contributing to ISO 27001, NIST 800-171, SOX, GDPR, or TISAX efforts
  • Proficiency with GRC platforms and internal controls execution
  • Strong writing and documentation skills
  • Must reside in Greater Boston area with ability to be present on site at least 3 days/weekly
  • United States Citizenship required
Job Responsibility
Job Responsibility
  • Lead execution of GRC programs across Aptiv and Wind River, including control maintenance, risk register updates, and audit readiness
  • Maintain documentation, controls, and audit-ready evidence for ISO 27001, NIST 800-171, TISAX, SOX, NIS2, CMMC and GDPR across both Aptiv and Wind River, incorporating new regulatory or customer requirements as they arise
  • Administer GRC tooling (ZenGRC, AuditBoard, ServiceNow), ensuring accuracy, auditability, and workflow continuity
  • Manage internal risk exceptions, maturity roadmaps, and control owners’ engagement
  • Provide daily operational support to maintain compliance posture and support regulatory assessments
  • Own documentation and execution for business impact assessments (BIAs), continuity planning, and tabletop exercises
  • Coordinate resilience planning with cross-functional partners including IT, Facilities, Cyber Defense, and Legal
  • Maintain continuity playbooks, incident response records, and recovery planning materials
  • Provide execution support for Wind River’s third-party risk assessments, evidence collection, and remediation tracking
  • Execute and drive enforcement of cybersecurity right-to-audit clauses with vendors and partners
What we offer
What we offer
  • Hybrid work model for workplace flexibility
  • Comprehensive health, dental, and life insurance
  • Short and long-term disability coverage
  • RRSP matching for financial security
  • Flexible time-off policies for work-life balance
  • Employee assistance program for mental well-being
  • Learning benefits, including a LinkedIn Learning subscription and seminars
  • Fulltime
Read More
Arrow Right
New

Senior Governance, Risk & Compliance Business Partner

Are you a seasoned GRC professional who thrives on moving beyond advisory to act...
Location
Location
Australia , Adelaide
Salary
Salary:
70.00 - 75.00 AUD / Hour
https://www.randstad.com Logo
Randstad
Expiration Date
July 23, 2026
Flip Icon
Requirements
Requirements
  • Proven Delivery Track Record: Deep, practical experience in governance, risk, and compliance within complex environments, with a proven history of personally leading or materially driving GRC uplift initiatives
  • Framework Expertise: Strong working knowledge of risk management principles aligned directly to ISO 31000
  • Executive Presence: Demonstrated ability to operate as a trusted advisor to executive leadership, with exceptional verbal and written communication skills
  • Execution & Analytical Capability: Strong analytical capability with the ability to interpret complex policy or legislation (including Freedom of Information processes) and translate them into actionable business solutions
  • Agility: The ability to determine priorities, bring structure to ambiguity, manage competing demands, and deliver high-quality outcomes to tight timeframes
  • 10 years experience
Job Responsibility
Job Responsibility
  • Drive GRC Maturity: Strengthen and uplift the organisation's GRC maturity, translating risk and compliance frameworks into practical, embedded business practices
  • Internal Audit & Assurance: Lead the development and formulation of a detailed, risk-based Internal Audit Plan for executive and board sub-committee approval
  • Strategic Business Partnering: Influence, consult, and partner with executives and senior leaders to embed clear accountability for risk, compliance, and internal controls
  • Policy & Framework Custodianship: Review, draft, and maintain robust corporate policies and procedures, ensuring strict alignment with legislative and government policy requirements (including protective security frameworks)
  • Reporting & Briefings: Prepare high-level briefings, reports, and papers for executive leadership and board-level review
Read More
Arrow Right
New

Governance, Risk, & Compliance Specialist

Beacon Hill is now hiring for a fully-remote GRC specialist who has experience w...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
bhsg.com Logo
Beacon Hill
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in GRC, cybersecurity compliance, IT audit, information security, or related areas
  • Knowledge of frameworks including NIST, ISO 27001, SOC 2, and CIS Controls
  • Experience supporting audits, control testing, evidence collection, and remediation activities
  • Ability to develop and maintain security policies, standards, and procedures
  • Experience with risk assessments, compliance reviews, and vendor risk management
  • Strong documentation, organizational, and communication skills
  • Experience collaborating with IT, Security, Engineering, Legal, Compliance, and other business teams
  • Working knowledge of cloud security, identity and access management, vulnerability management, and incident response
Job Responsibility
Job Responsibility
  • Support governance, risk, and compliance initiatives across the organization
  • Maintain security documentation, policies, and compliance records
  • Coordinate audit activities and compliance evidence collection
  • Track remediation efforts, audit findings, exceptions, and risk treatment plans
  • Conduct control testing, risk assessments, and vendor reviews
  • Assist with mapping controls to security and compliance frameworks
  • Maintain risk registers, control inventories, and compliance reporting
  • Partner with internal stakeholders to support security and regulatory requirements
  • Monitor compliance trends and contribute to continuous improvement of the security program
Read More
Arrow Right

Cyber Security Governance, Risk & Compliance

This is an exciting opportunity for an experienced cyber security professional t...
Location
Location
United Kingdom , Lancashire
Salary
Salary:
47.51 - 64.09 GBP / Hour
outsource-uk.co.uk Logo
Outsource UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Understanding of emerging cyber security threats and evolving regulatory requirements
  • Knowledge of industry and government cyber security standards, frameworks and best practices
  • Experience working within an IT, cyber security or information security environment
  • Proven experience in defining and implementing cyber risk management strategies and assessment methodologies
  • Strong understanding of cyber security governance, risk and compliance principles
  • Experience delivering cyber security projects and programmes
  • Ability to engage, influence and collaborate with senior stakeholders across multiple business areas
Job Responsibility
Job Responsibility
  • Developing, maintaining and enhancing cyber risk management frameworks, methodologies and assessment processes
  • Ensuring cyber risk and governance services operate in line with established policies, standards and regulatory requirements
  • Supporting the business in defining and managing cyber risk appetite and tolerance levels
  • Driving the adoption of cyber security policies, standards and best practices across programmes and functions
  • Embedding cyber risk and governance principles throughout the system and project lifecycle
  • Analysing cyber risk metrics, KPIs and performance data to provide meaningful reporting and insight to senior stakeholders
  • Supporting the development of threat assessment methodologies and risk mitigation strategies
  • Fulltime
Read More
Arrow Right

Intern - Governance, Risk & Compliance

Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
waystone.com Logo
Waystone Governance Ltd.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Takes ownership and responsibility for own actions, performance, and development
  • Effectively manages own workflow, time and priorities with very minimal oversight
  • Demonstrates trustworthiness and understands the need for confidentiality
  • Proficient in using Microsoft Excel and Word
  • Fluency in spoken and written English
  • Demonstrable interest in cybersecurity, data protection and AI governance frameworks
  • Knowledge of incident response, digital investigation or eDiscovery processes and tools would be advantageous
  • Knowledge of key cyber security standards and frameworks such as NIST, ISO 27001, NIS2, OWASP etc. would be advantageous
  • Knowledge of IT Audit processes would be advantageous
  • Bachelor's degree in Information Security, Computer Science and/or related field, or equivalent work experience
Job Responsibility
Job Responsibility
  • Client billable GRC, digital resilience and assurance, cyber security, incident response, incident investigation and eDiscovery work
  • Documentation creation and updates for cyber, governance, risk and compliance
  • Policy reviews and template development
  • Reviewing internal processes and assisting with client baseline assessments for standards and frameworks such as NIS2, CyFun, ISO 27001, GDPR, NIST, EU AI Act
  • Assisting in various compliance activities regarding information security management systems and ISO 27001, ISO27701 and ISO42001 certifications
  • Carrying out vendor due diligence and security risk assessments
  • Assisting with the planning and delivery of incident response tabletop exercises
  • Managing Waystone Compliance Solutions’ own internal ISMS
  • Supporting the WCS Data Protection and Cyber teams where required
  • Assisting and supporting Waystone’s internal security team with core IT projects, if required
Read More
Arrow Right