At a Glance
- Tasks: Lead and define governance, risk, and compliance strategies for a leading tech company.
- Company: Global Relay, a pioneer in enterprise information archiving with a focus on innovation.
- Benefits: Unlimited career growth, mentoring, and a diverse, inclusive workplace culture.
- Other info: Join a dynamic team that values creativity and hard work.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: 10-15 years in cybersecurity and leadership experience required.
The predicted salary is between 70000 - 90000 £ per year.
Who we are
For over 25 years, Global Relay has set the standard in enterprise information archiving with industry-leading cloud archiving, surveillance, e Discovery, and analytics solutions.
We securely capture and preserve the communications data of the world’s most highly regulated firms, giving them greater visibility and control over their information and ensuring compliance with stringent regulations.
Director, Governance Risk & Compliance
Your Role
As Director, Governance Risk & Compliance, you are responsible for defining and leading Global Relay’s Governance, Risk & Compliance function.
Reporting to the Chief Information Security Officer, you establish the frameworks, governance structures and operating model that enable consistent security decision‑making, transparent risk management and trusted assurance across the organization.
You provide strategic leadership for security governance, risk management, assurance, cybersecurity compliance, third‑party risk management and security awareness programs.
Working closely with executive leadership, business stakeholders and technology teams, you translate complex security and technology risks into business context, influence strategic priorities and ensure the organization maintains a strong and resilient security posture while meeting regulatory, contractual and organizational requirements.
You ensure emerging technologies, including AI, are governed in a manner that aligns with organizational objectives, risk appetite and regulatory obligations.
- Your Job
- Define and maintain the enterprise security governance framework, including policies, standards, control frameworks and governance processes.
- Establish and evolve the security risk management methodology, ensuring risks are consistently identified, assessed, managed and reported.
- Lead security governance forums and risk committees, ensuring effective oversight, escalation and decision‑making.
- Define and communicate the organization's security risk posture, emerging risks and strategic priorities to executive leadership.
- Establish and oversee the enterprise security assurance strategy, including control testing, continuous assurance and remediation validation activities.
- Oversee security audits, certifications and external assessments, including ISO 27001, SOC 2, Fed RAMP, ISO 42001 and other applicable frameworks.
- Establish and oversee governance processes for emerging technologies, including AI, ensuring associated risks, regulatory requirements and control expectations are appropriately integrated into governance, risk management, assurance and compliance activities.
- Provide strategic oversight of third‑party security risk management activities.
- Establish and oversee the enterprise security awareness and training program.
- Define security metrics, key risk indicators and reporting requirements to measure program effectiveness and support risk‑informed decision‑making.
- Partner with Legal, Privacy, Product, Engineering and Operations leaders to integrate security governance and risk management practices across the organization.
- Lead, develop and mentor Governance, Risk & Compliance leaders and analysts.
- Drive continuous improvement and maturity across governance, risk, assurance and security compliance capabilities.
- Act as a trusted advisor to executive leadership on governance, risk, compliance and emerging technology governance matters.
About You
- 10-15+ years of experience in cybersecurity, governance, risk management, audit, compliance or related disciplines.
- 5+ years of leadership experience managing teams and security programs.
- Strong understanding of governance, risk management, assurance and compliance principles.
- Experience leading audits, certifications and regulatory assessments.
- Deep knowledge of frameworks such as ISO 27001, SOC 2, NIST, Fed RAMP and CIS Controls.
- Knowledge of emerging technology governance concepts, evolving regulatory requirements and industry frameworks, including ISO/IEC 42001.
- Experience presenting complex security and technology risks to executive leadership.
- Strong business acumen and the ability to balance risk, operational and business objectives.
- Demonstrated ability to influence organizational decisions and drive change.
- Excellent leadership, coaching and stakeholder management skills.
- Certifications such as CISSP, CISM, CRISC, CISA or equivalent are preferred.
- What you can expect
At Global Relay, there’s no ceiling to what you can achieve.
It’s the land of opportunity for the energetic, the intelligent, the driven.
You’ll receive the mentoring, coaching, and support you need to reach your career goals.
You’ll be part of a culture that breeds creativity and rewards perseverance and hard work.
And you’ll be working alongside smart, talented individuals from diverse backgrounds, with complementary knowledge and skills.
Global Relay is an equal‑opportunity employer committed to diversity, equity, and inclusion.
We seek to ensure reasonable adjustments, accommodations, and personal time are tailored to meet the unique needs of every individual.
- To learn more about our business, culture, and community involvement, visit
- #J-18808-Ljbffr
StudySmarter Expert Advice🤫
We think this is how you could land Director, Governance Risk & Compliance in London
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like Global Relay looking for candidates who are engaged and informed.
We think you need these skills to ace Director, Governance Risk & Compliance in London
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at Global Relay. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at Global Relay
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with Global Relay’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!