Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead governance, risk, and compliance for AI and security in a dynamic analytics environment.
- Company: Join a forward-thinking AI-driven analytics business committed to innovation.
- Benefits: Enjoy private medical insurance, flexible working, and 26 days holiday plus more!
- Other info: Diversity and inclusion are at the heart of our company culture.
- Why this job: Make a real impact on privacy and security while working with cutting-edge technology.
- Qualifications: 3-5 years of GRC experience with a focus on privacy and AI.
The predicted salary is between 60000 - 80000 ÂŁ per year.
We’re looking for a hands‑on GRC Lead to own the operational delivery of governance, risk, and compliance across Information Security, Privacy, and AI within an AI‑driven analytics business. Reporting to the VP of InfoSec & Privacy, you’ll partner closely with engineering, product, data, legal, and security teams to ensure controls are practical, risk‑based, and technically robust.
What You’ll Do
- Run GRC frameworks across ISO 27001, ISO 27701 (primary focus), and ISO 42001
- Assess privacy in AI environments — DPIAs, data flows, inference and re‑identification risks
- Embed AI governance with a privacy‑first lens across use cases and pipelines
- Drive privacy, security & AI by design in analytics, data pipelines, and product workflows
- Challenge technical teams on control effectiveness and real risk
- Own audits & certifications (ISO 27001, 27701, 42001)
- Operationalise policies & controls — translating regulation into practice
- Monitor, test, and improve controls continuously
- Act as the GRC lead across teams and provide clear risk‑based reporting
What You Bring
- 3–5 years’ hands‑on GRC experience across privacy, security, and AI
- Strong experience with DPIAs and privacy risk in data/analytics environments
- Background in AI, analytics, or martech‑heavy businesses
- Solid understanding of security governance and control effectiveness
- Ability to assess data flows, AI pipelines, and real‑world privacy risks
- Confidence to challenge engineering and product teams constructively
Nice to have
- CIPP/E, CIPM, ISO 27001/27701, CISSP/CISM/CRISC, ISO 42001
How You’ll Work
- Hands‑on, not checkbox compliance
- Partner and challenger to technical teams
- Focused on real risk reduction
- Pragmatic in fast‑moving environments
Diversity & Inclusion
Intent HQ is an equal opportunities employer with an ethos of commitment to promoting and practicing diversity, equality and inclusion at work. At IHQ, different perspectives, ideas and experiences are valued and respected, with fair and equal opportunities provided for all.
Benefits
- Private Medical Insurance (subject to eligibility)
- Income Protection with Employee Assistance Programme (EAP)
- Life Assurance
- Higher than statutory maternity & paternity benefits
- Pension scheme
- Flexible working
- 26 days holiday (increasing with service)
- Tech pack
- Training opportunities
- Wellbeing programme
- Oliva mental health platform & counselling
- Cycle to Work scheme
- Free access to onsite gym (including towel‑serviced changing rooms and showers)
- Free breakfast daily & healthy weekly lunch (when in office)
GRC Lead - AI & Security in London employer: Intent HQ
Contact Detail:
Intent HQ Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Lead - AI & Security in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at events. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. We want you to show how your skills align with their mission, especially in GRC and AI!
✨Tip Number 3
Practice your pitch! Be ready to explain your experience with DPIAs and privacy risks clearly and confidently. We love candidates who can communicate complex ideas simply.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, we’re always looking for passionate people to join our team.
We think you need these skills to ace GRC Lead - AI & Security in London
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in GRC, especially around privacy and AI. We want to see how your skills align with what we’re looking for, so don’t hold back on showcasing your relevant achievements!
Showcase Your Hands-On Experience: Since we’re after someone with practical GRC experience, be sure to include specific examples of how you’ve implemented frameworks like ISO 27001 or conducted DPIAs. We love seeing real-world applications of your skills!
Be Clear and Concise: When writing your application, keep it straightforward and to the point. Use clear language to explain your experience and how it relates to the role. We appreciate a well-structured application that’s easy to read!
Apply Through Our Website: We encourage you to submit your application directly through our website. It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Intent HQ
✨Know Your GRC Frameworks
Make sure you’re well-versed in ISO 27001, ISO 27701, and ISO 42001. Be ready to discuss how you've applied these frameworks in previous roles, especially in relation to privacy and AI. This shows you’re not just familiar with the theory but can also implement it practically.
✨Showcase Your Hands-On Experience
Highlight your 3-5 years of hands-on GRC experience. Prepare specific examples where you’ve assessed privacy risks in data environments or conducted DPIAs. This will demonstrate your capability to handle the responsibilities of the role effectively.
✨Be a Constructive Challenger
The job requires you to challenge technical teams on control effectiveness. Think of instances where you’ve constructively questioned processes or suggested improvements. This will show that you’re proactive and focused on real risk reduction.
✨Emphasise Your Collaborative Skills
Since you'll be partnering closely with various teams, prepare to discuss how you’ve successfully collaborated with engineering, product, and legal teams in the past. Highlight your ability to communicate complex GRC concepts in a way that’s understandable for non-experts.