Governance, Risk & Compliance (GRC) Manager

We're working with a leading organisation in the entertainment industry who are seeking an experienced Governance, Risk and Compliance (GRC) Manager to join their Group division. This is a fantastic opportunity for a proactive and strategic individual to shape and maintain a strong compliance culture across a dynamic and fast-growing business operating across the UK and Europe.

• Location: London (Hybrid, 3 days office + European travel occasionally)Salary: Up to £75,000 + 25 days holiday + bank holidays + Up to 5% bonusFull-time, Permanent

In this newly-created role, you'll lead the execution of the Group GRC programme, align risk and compliance efforts with wider business goals, and ensure robust governance across information security and operational practices.

Key Responsibilities:

• Develop and implement a comprehensive GRC framework across the group
• Conduct regular risk assessments and support vulnerability management
• Maintain and evolve security controls, policies, and standards
• Ensure compliance with GDPR, CIS18, PCI DSS, and ISO27001
• Lead on third-party audits and provide documentation and evidence
• Support cybersecurity programmes and incident response planning
• Provide GRC advisory to senior leadership and cross-functional teams
• Promote a culture of risk awareness through training and communication
• Monitor changes in regulation and adapt the GRC framework accordingly

Ideal Candidate Profile:

• Minimum 5 years' experience in GRC, compliance, or risk management
• Solid understanding of regulatory frameworks and industry standards
• Hands-on experience with risk assessments and compliance auditing
• Strong communication and stakeholder engagement skills
• Professional certifications such as CISSP, CISM, or CRISC are desirable

Why Apply?This is an excellent opportunity to play a key role in shaping the governance and compliance strategy of a global business. You'll gain exposure to high-profile projects and contribute to the company's ongoing commitment to excellence in risk and security management.