IAM and GRC Lead - 6 Month FTC

About The Role

Team Vitality Technology

Working Pattern - Hybrid 2 days per week in the Vitality Bournemouth Office. Full time, 35 hours per week. We are happy to discuss flexible working!

Top 3 skills needed for this role:

• Experience driving governance, risk, and control delivery
• Proven track record leading cross-functional security initiatives
• Confident in owning audit, reporting, and assurance outcomes

What this role is all about:

At Vitality, we’re looking for an IAM GRC Lead to take ownership of delivering our security governance, identity and access management, and assurance activities. This is a hands-on role where you’ll work closely with teams across the business to keep key security, audit, and regulatory priorities on track and delivered to a high standard. You’ll help ensure controls are in place, reporting is clear and useful, and our approach to security remains consistent and effective playing a key role in strengthening governance, supporting audits, and driving delivery across both our UK and Vietnam operations.

Key Actions:

• Own and deliver security governance and control activities, including ITGC execution, audit readiness, evidence tracking, and support for GIA governance audits
• Maintain and update the ISO27001 ISMS (including policy and standards refresh), and deliver operational resilience and BCP artefacts aligned to regulatory expectations
• Drive control and assurance activities, including Segregation of Duties (SoD) remediation and third-party assurance questionnaires (SIG Lite and broader SIG), proactively identifying and mitigating risks
• Support cloud and platform security onboarding (GCP VMSP), alongside IAM/IDAM onboarding, role management, reporting discipline, and data classification and labelling aligned to global standards
• Coordinate security tooling and testing, including penetration testing and Wiz deployment, embedding solutions into BAU processes
• Establish and maintain clear, decision-useful security reporting and governance, including monthly reporting (1st and 2nd line), Security KRIs, and TechComm reporting across the UK and Vietnam
• Build strong stakeholder relationships across technical and business teams, ensuring clear communication, alignment, and delivery of security priorities in a fast-paced, evolving environment
• Work independently to prioritise, make decisions, and drive activities through to completion, aligning security initiatives with wider business objectives and delivering practical value

What do you need to thrive?

• Significant experience operating in a senior-level security, IAM, or GRC role
• Strong knowledge of IAM/IDAM processes, including role management and access controls
• Experience working with governance, controls, and audit frameworks (e.g. ISO27001, ITGCs)
• Experience with third-party risk and security questionnaires (e.g. SIG)
• Exposure to cloud environments (ideally GCP) and platform onboarding
• Experience producing clear, executive-level reporting, including KRIs
• Proven ability to coordinate delivery across multiple teams and stakeholders
• Experience supporting audit processes (internal, external, and GIA)
• Ability to manage competing priorities and deliver to tight timelines with a hands-on, delivery-focused approach
• Strong collaboration skills, with the ability to bring stakeholders on the journey

So, what’s in it for you?

• Bonus Schemes: A bonus that regularly rewards you for your performance
• A pension of up to 12%: We will match your contributions up to 6% of your salary
• Our award-winning Vitality health insurance with its own set of rewards and benefits
• Life Assurance: Four times annual salary

These are just some of the many perks that we offer! To view the extensive range of benefits we offer, please visit our careers page.

Fantastic Benefits. Exciting rewards. Great career opportunities!

If you are successful in your application and join us at Vitality, this is our promise to you:

• Help you to be the healthiest you’ve ever been
• Create an environment that embraces you as you are and enables you to be your best self
• Give you flexibility on how, where and when you work
• Help you advance your career by playing you to your strengths
• Give you a voice to help our business grow and make Vitality a great place to be
• Give you the space to try, fail and learn
• Provide a healthy balance of challenge and support
• Recognise and reward you with a competitive salary and amazing benefits
• Be there for you when you need us
• Provide opportunities for you to be a force for good in society

We commit to all these things because we want you to feel that you belong, and are supported to be happy and healthy.

About The Company

We’re incredibly proud to be recognised for the culture we’ve created, recently being named one of Glassdoor's Best Places to Work 2026, and in 2024 we were delighted to be awarded Top 10 Places to Work in the Sunday Times Awards. Vitality is a multi-award-winning UK insurance brand, here to make the world a healthier, happier place. We’ve been a purpose and values-driven business from day 1 - long before it became fashionable. Our core purpose is to make people healthier and enhance and protect their lives. Vitality pioneered shared-value insurance. We incentivise people to live healthier longer lives - they benefit, our business benefits, and society benefits. We’re successful because we attract, develop, and retain the best people and because we care. Plus, you get to join our 1.7 million members with access to our unique health insurance and healthy living programme.

Ready to find out if we’re the right fit for you? We can’t wait. If we are fortunate in receiving a high volume of quality applications we may need to close this vacancy early. If you are interested, please submit your application as soon as possible.