GRC Analyst – Cybersecurity – £70-75k – Remote
Overview:
We are currently partnered with an award-winning cybersecurity firm specialising in Identity and Access Management (IAM) solutions. They are seeking a GRC Analyst with a strong background in ISO 27001 to support their clients in achieving their governance, risk, and compliance objectives. This is a fantastic opportunity for someone with consultancy experience who enjoys problem-solving, client interaction, and continuous learning in a fast-paced environment.
Role & Responsibilities:
- Assist clients with the implementation, maintenance, and improvement of their ISO 27001 Information Security Management Systems (ISMS)
- Conduct gap analysis, risk assessments, and internal audits to identify areas of non-compliance and recommend solutions
- Develop and review information security policies, procedures, and controls
- Support clients through ISO 27001 certification and surveillance audits
- Deliver clear and actionable reports and recommendations
- Provide advisory services on GRC best practices and industry standards
- Collaborate with cross-functional teams to ensure projects are delivered on time and to the highest standard
- Stay updated on industry trends, regulatory requirements, and emerging risks
Essential Skills & Experience: - ISO 27001 expertise, including implementation, auditing, or consultancy experience
- Previous experience in a consultancy or client-facing environment
- Strong understanding of risk management principles and GRC frameworks
- Experience with other standards such as ISO 22301, NIST, or SOC 2
- Excellent communication, stakeholder management, and problem-solving skills
- Relevant certifications (e.g., ISO 27001 Lead Auditor/Implementer, CISA, CISM) are a bonus
Package: - Up to £70-75,000 basic salary
- Excellent benefits
- Professional development opportunities
- Fully remote role
Contract Details
- Contract Type: Permanent
- Salary Type: per annum
- Total Applications: 39
- Last Date: 28/01/2025