Senior Manager – Governance, Risk & Compliance (GRC) in London

Say hello to opportunities. It’s not every day that you consider starting a new career. We’re RingCentral, and we’re happy that someone as talented as you is considering this role.

This is where you and your skills come in. We’re currently looking for a seasoned GRC leader, based in the UK, to oversee and enhance our Governance, Risk, and Compliance programs across the UK and Europe. This role will be pivotal in ensuring adherence to regional data privacy laws, security frameworks, and telecom-specific regulatory requirements. This role will be responsible for leading customer audits, managing risk assessments, and driving compliance initiatives that align with both global standards and local mandates.

Responsibilities:

• Execute the UK and EU GRC strategy, ensuring compliance with GDPR, UK Data Protection Act 2018, and other regional privacy laws.
• Manage and support customer audits, including preparation, execution, and remediation tracking.
• Oversee risk management processes including risk identification, assessment, mitigation, and reporting.
• Ensure compliance with UK telecom security requirements, including Ofcom and NCSC guidelines.
• Maintain and evolve internal control frameworks aligned with ISO 27001, NIST CSF, NIS 2.0, and SOC 2.
• Collaborate with Legal, IT, and Security teams to ensure contractual and regulatory obligations are met.
• Support the assessment of security and data related regulations in the UK and EU regulations, including the impact on business operations.
• Liaise with external auditors, regulators, and customers on compliance matters.
• Maintain documentation and evidence for certifications and attestations.

Qualifications:

• Bachelor’s degree or Advanced degree in Information Security, GRC, or Information Assurance roles, Risk Management, or related field.
• 10+ years of experience in GRC, cybersecurity, or compliance roles, preferably in multinational environments.
• Proven experience with UK and EU data privacy regulations and telecommunication security standards.
• Strong understanding of ISO 27001, GDPR, NIST, NIS 2.0, and SOC 2 frameworks.
• Experience leading customer audits and managing audit responses.
• Familiarity with UK telecom regulatory bodies (e.g., Ofcom, NCSC) and their security expectations.

Preferred Certifications:

• CISSP, CISM, or CRISC – Security and risk management credentials.
• CIPP/E – Certified Information Privacy Professional/Europe.
• ISO 27001 Lead Implementer or Auditor.
• ITIL, COBIT, or similar governance frameworks.

Key Skills:

• Exceptional stakeholder management and communication skills.
• Strong analytical and problem-solving abilities.
• Ability to work independently and influence cross-functional teams.
• Detail-oriented with a proactive approach to risk and compliance.

What we offer:

• Comprehensive medical, dental, and life insurance.
• Pension.
• ESPP/KEEB.
• Paid time off and paid sick leave.
• Paid maternity, paternity & parental leave.
• Wellness programs including 1:1 coaching and meditation guidance with TaskHuman and HeadSpace.
• Employee Assistance Program (EAP) with counseling sessions available 24/7.
• Free legal services that provide legal advice, document creation and estate planning.
• Employee bonus referral program.

RingCentral’s work culture is the backbone of our success. And don’t just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success. RingCentral offers on-site and hybrid work options optimized for the ways we work and live now.