Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead governance, risk, and compliance in AI-driven analytics, ensuring robust security and privacy.
- Company: Join a forward-thinking analytics business committed to innovation and security.
- Benefits: Enjoy private medical insurance, flexible working, and 26 days holiday plus more!
- Other info: Diversity and inclusion are at the heart of our company culture.
- Why this job: Make a real impact on AI governance and privacy in a dynamic environment.
- Qualifications: 3-5 years GRC experience with a focus on privacy and AI.
The predicted salary is between 60000 - 80000 ÂŁ per year.
We’re looking for a hands‑on GRC Lead to own the operational delivery of governance, risk, and compliance across Information Security, Privacy, and AI within an AI‑driven analytics business. Reporting to the VP of InfoSec & Privacy, you’ll partner closely with engineering, product, data, legal, and security teams to ensure controls are practical, risk‑based, and technically robust.
What You’ll Do
- Run GRC frameworks across ISO 27001, ISO 27701 (primary focus), and ISO 42001
- Assess privacy in AI environments — DPIAs, data flows, inference and re‑identification risks
- Embed AI governance with a privacy‑first lens across use cases and pipelines
- Drive privacy, security & AI by design in analytics, data pipelines, and product workflows
- Challenge technical teams on control effectiveness and real risk
- Own audits & certifications (ISO 27001, 27701, 42001)
- Operationalise policies & controls — translating regulation into practice
- Monitor, test, and improve controls continuously
- Act as the GRC lead across teams and provide clear risk‑based reporting
What You Bring
- 3–5 years’ hands‑on GRC experience across privacy, security, and AI
- Strong experience with DPIAs and privacy risk in data/analytics environments
- Background in AI, analytics, or martech‑heavy businesses
- Solid understanding of security governance and control effectiveness
- Ability to assess data flows, AI pipelines, and real‑world privacy risks
- Confidence to challenge engineering and product teams constructively
Nice to have
- CIPP/E, CIPM, ISO 27001/27701, CISSP/CISM/CRISC, ISO 42001
How You’ll Work
- Hands‑on, not checkbox compliance
- Partner and challenger to technical teams
- Focused on real risk reduction
- Pragmatic in fast‑moving environments
Diversity & Inclusion
Intent HQ is an equal opportunities employer with an ethos of commitment to promoting and practicing diversity, equality and inclusion at work. At IHQ, different perspectives, ideas and experiences are valued and respected, with fair and equal opportunities provided for all.
Benefits
- Private Medical Insurance (subject to eligibility)
- Income Protection with Employee Assistance Programme (EAP)
- Life Assurance
- Higher than statutory maternity & paternity benefits
- Pension scheme
- Flexible working
- 26 days holiday (increasing with service)
- Tech pack
- Training opportunities
- Wellbeing programme
- Oliva mental health platform & counselling
- Cycle to Work scheme
- Free access to onsite gym (including towel‑serviced changing rooms and showers)
- Free breakfast daily & healthy weekly lunch (when in office)
GRC Lead - AI & Security employer: Intent HQ
Contact Detail:
Intent HQ Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Lead - AI & Security
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already working in GRC roles. A friendly chat can lead to insider info about job openings that aren't even advertised yet.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of ISO standards and AI governance. We want you to be able to discuss how you’d tackle real-world privacy risks confidently!
✨Tip Number 3
Showcase your hands-on experience! Be ready to share specific examples of how you've implemented GRC frameworks or improved controls in past roles. This will help us see your practical skills in action.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take that extra step!
We think you need these skills to ace GRC Lead - AI & Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the GRC Lead role. Highlight your hands-on experience with governance, risk, and compliance, especially in privacy and AI. We want to see how your background aligns with our needs!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about GRC and how you can contribute to our team. Be sure to mention specific frameworks like ISO 27001 and your experience with DPIAs.
Showcase Your Skills: Don’t just list your skills; demonstrate them! Provide examples of how you've successfully implemented controls or improved compliance processes in previous roles. We love seeing real-world applications of your expertise.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Intent HQ
✨Know Your GRC Frameworks
Make sure you’re well-versed in ISO 27001, ISO 27701, and ISO 42001. Be ready to discuss how you've applied these frameworks in previous roles, especially in relation to privacy and AI. This shows you’re not just familiar with the theory but can also implement it practically.
✨Demonstrate Your Hands-On Experience
Since this role requires a hands-on approach, prepare examples from your past work where you’ve actively engaged in governance, risk, and compliance tasks. Highlight specific projects where you’ve assessed data flows or conducted DPIAs, as this will resonate well with the interviewers.
✨Challenge with Confidence
The job description mentions the need to challenge technical teams constructively. Think of instances where you’ve done this before and be ready to share those stories. It’s all about showing that you can engage in healthy debates while keeping the focus on risk reduction.
✨Emphasise Your Collaborative Spirit
This role involves partnering closely with various teams. Prepare to discuss how you’ve successfully collaborated with engineering, product, and legal teams in the past. Highlight your ability to translate complex regulations into practical actions, which is key for operationalising policies and controls.