The following job is no longer available:
Senior GRC Analyst
Senior GRC Analyst
Senior GRC Analyst
Posted a month ago
- Birmingham, West Midlands
- Any
- External
- Expired - 2 months ago
Opportunity
We’re currently partnering a cloud management, application solutions and digital transformation services company.
As Senior GRC Analyst you’ll report to the Head of Security and be responsible for the day-to-day management of the governance, risk and compliance deliverables aligning to the groups information security policies.
Location
They offer hybrid working that encourages the positives of team collaboration at their Birmingham office 2 days per week.
Key Responsibilities
• Developing, implementing, and maintaining the company's governance, risk management, and compliance framework.
• Collaborating with key stakeholders to identify, assess, and mitigate risks across all areas of the organization.
• Designing and implementing policies, procedures, and controls to ensure compliance with relevant laws, regulations, and industry standards.
• Monitoring and reporting on compliance activities, including conducting audits and assessments to measure policy adherence and identify improvement areas.
• Leading risk assessment processes to identify, prioritize, and mitigate risks that may impact the organization's objectives.
• Staying informed about emerging risks, regulatory changes, and best practices in GRC to ensure the company's practices remain current and effective.
• Providing training and guidance to employees on GRC-related matters to foster a culture of compliance and risk awareness.
Required Skills
• Experience in security governance, risk, and compliance or related.
• Strong experience responding to client/customer security inquires.
• Broad and solid understanding of cyber security concepts and risks.
• Excellent analytical skills and attention to detail.
Desirable Skills
• Relevant Degree or obtained industry relevant certifications (e.g. CISSP, CISM, CISA, CRISC)
• Experience in industry standards and frameworks, such as ISO 27001, PCI DSS and NIST CSF
• Good knowledge of applicable data privacy practices and laws (e.g. DPA, GDPR)
• Broad knowledge around network technologies (especially cloud) and technical security
Benefits
• Growing company with career progression opportunities
• Training, development and support with academic qualifications
• Private healthcare
• 25-days holiday + bank holidays
#J-18808-Ljbffr
We’re currently partnering a cloud management, application solutions and digital transformation services company.
As Senior GRC Analyst you’ll report to the Head of Security and be responsible for the day-to-day management of the governance, risk and compliance deliverables aligning to the groups information security policies.
Location
They offer hybrid working that encourages the positives of team collaboration at their Birmingham office 2 days per week.
Key Responsibilities
• Developing, implementing, and maintaining the company's governance, risk management, and compliance framework.
• Collaborating with key stakeholders to identify, assess, and mitigate risks across all areas of the organization.
• Designing and implementing policies, procedures, and controls to ensure compliance with relevant laws, regulations, and industry standards.
• Monitoring and reporting on compliance activities, including conducting audits and assessments to measure policy adherence and identify improvement areas.
• Leading risk assessment processes to identify, prioritize, and mitigate risks that may impact the organization's objectives.
• Staying informed about emerging risks, regulatory changes, and best practices in GRC to ensure the company's practices remain current and effective.
• Providing training and guidance to employees on GRC-related matters to foster a culture of compliance and risk awareness.
Required Skills
• Experience in security governance, risk, and compliance or related.
• Strong experience responding to client/customer security inquires.
• Broad and solid understanding of cyber security concepts and risks.
• Excellent analytical skills and attention to detail.
Desirable Skills
• Relevant Degree or obtained industry relevant certifications (e.g. CISSP, CISM, CISA, CRISC)
• Experience in industry standards and frameworks, such as ISO 27001, PCI DSS and NIST CSF
• Good knowledge of applicable data privacy practices and laws (e.g. DPA, GDPR)
• Broad knowledge around network technologies (especially cloud) and technical security
Benefits
• Growing company with career progression opportunities
• Training, development and support with academic qualifications
• Private healthcare
• 25-days holiday + bank holidays
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
