Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team in shaping and delivering our information assurance strategy.
- Company: Join a forward-thinking Cyber Security team focused on governance and compliance.
- Benefits: Enjoy 27 days of annual leave, flexible working options, and a public sector pension scheme.
- Why this job: Make a real impact on cyber security governance in a regulated environment with exciting projects ahead.
- Qualifications: 5+ years in information security with strong leadership and communication skills required.
- Other info: Fully remote role with opportunities for training and career progression.
The predicted salary is between 47000 - 78000 £ per year.
Governance, Risk & Compliance (GRC) Lead
Location: Fully Remote – UK Wide
Department: Technology – IT Security and Service Management
Contract Type: Permanent
Salary: £55,000 – £65,000
About the Role
We are seeking a highly experienced and motivated GRC Lead to join our Cyber Security team. This role is critical in shaping and delivering our information assurance strategy, ensuring that cyber security risks are effectively managed across the organisation.
As a senior member of the team, you will lead a small group of risk and security professionals, drive the implementation of Secure by Design principles, and oversee compliance with key frameworks such as DSPT, CAF, and DORA. You will also play a key role in stakeholder engagement, presenting confidently to senior leadership and translating complex technical requirements into actionable governance strategies.
With a significant project pipeline launching in 2026, this is a unique opportunity to influence the future of cyber security governance in a regulated environment.
Key Responsibilities
- Own and evolve the Information Security Assurance Framework and programme.
- Lead themed reviews to assess the effectiveness of security controls.
- Manage the organisation\’s technology risk management programme, ensuring risks are identified, assessed, and remediated within appetite.
- Oversee Secure by Design initiatives, aligning business and technical changes with security requirements and government standards.
- Drive compliance with frameworks including DSPT, CAF, ISO 27001, and GDPR.
- Lead the security culture, education, and awareness programme across the organisation.
- Collaborate with external bodies to mature cyber security practices across the health and social care sector.
- Present findings, risks, and recommendations to senior stakeholders and leadership teams.
- Ensure timely and accurate submission of compliance documentation, including NHS audits and DSPT submissions.
Skills & Experience
- Minimum 5 years\’ experience in information security, with a focus on governance, risk, and compliance.
- Proven ability to lead teams and manage complex programmes in regulated environments.
- Strong understanding of cyber security frameworks and regulations (DSPT, ISO 27001, CAF, GDPR, DORA).
- Experience authoring governance documentation (policies, standards, reports).
- Familiarity with Microsoft-based technologies, including IdAM, networks, applications, and cloud environments.
- Excellent communication and presentation skills, with the ability to engage technical and non-technical audiences.
- Demonstrated ability to translate security frameworks across sectors and align them with organisational goals.
Desirable Qualifications
- Certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer.
- Experience with tools like OneTrust, Varonis, or similar GRC platforms.
Why Work Us?
- Generous annual leave: 27 days starting leave (rising to 32.5 days with service) plus bank holidays.
- Flexible working options: including home, office, and hybrid working, as well as compressed hours and part-time arrangements.
- Public sector pension scheme or Nest pension scheme (depending on eligibility).
- Comprehensive training and development: access to in-house learning, study support, and career progression opportunities.
- Health and wellbeing support: including a 24-hour employee assistance programme
- Family-friendly policies
- Travel and shopping discounts
Governance, Risk & Compliance (GRC) Lead in Newcastle Upon Tyne employer: Reed Technology
Contact Detail:
Reed Technology Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Governance, Risk & Compliance (GRC) Lead in Newcastle Upon Tyne
✨Tip Number 1
Familiarise yourself with the specific frameworks mentioned in the job description, such as DSPT, ISO 27001, and GDPR. Understanding these will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the cyber security field, especially those who have experience in governance, risk, and compliance. Engaging with industry peers can provide insights and potentially lead to referrals.
✨Tip Number 3
Prepare to discuss your leadership experiences in managing teams and complex programmes. Be ready to share specific examples of how you've successfully implemented security frameworks in previous roles.
✨Tip Number 4
Practice your presentation skills, as you'll need to communicate effectively with both technical and non-technical stakeholders. Consider creating a mock presentation on a relevant topic to showcase your ability to translate complex information.
We think you need these skills to ace Governance, Risk & Compliance (GRC) Lead in Newcastle Upon Tyne
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in governance, risk, and compliance. Focus on relevant roles and responsibilities that align with the job description, particularly your leadership experience and familiarity with cyber security frameworks.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for cyber security and your understanding of the role. Mention specific frameworks like DSPT, ISO 27001, and GDPR, and explain how your skills can contribute to the organisation's goals.
Highlight Relevant Experience: In your application, emphasise your experience leading teams and managing complex programmes. Provide examples of how you've successfully implemented security controls and engaged with stakeholders in previous roles.
Showcase Communication Skills: Since the role requires presenting to senior leadership, include examples of your communication and presentation skills in your application. Describe situations where you translated complex technical information into actionable strategies for non-technical audiences.
How to prepare for a job interview at Reed Technology
✨Showcase Your Leadership Skills
As a GRC Lead, you'll be expected to lead a team of risk and security professionals. Be prepared to discuss your previous leadership experiences, how you motivate teams, and any challenges you've overcome in managing complex programmes.
✨Demonstrate Your Knowledge of Frameworks
Familiarise yourself with key frameworks like DSPT, ISO 27001, and GDPR. During the interview, be ready to explain how you've applied these frameworks in past roles and how they relate to the organisation's goals.
✨Prepare for Stakeholder Engagement Scenarios
You'll need to present findings and recommendations to senior stakeholders. Think of examples where you've successfully communicated complex technical information to non-technical audiences, and be ready to share these stories.
✨Highlight Your Compliance Experience
Discuss your experience with compliance documentation and audits, particularly in regulated environments. Be specific about your role in ensuring timely submissions and how you manage compliance risks effectively.
