Cyber Grc Analyst

Our client, a leading utilities company in the technology sector, is currently seeking a Senior Cyber GRC Analyst to join their team based in their Crawley office. This is a permanent opportunity to support the Cyber Security Governance, Risk & Compliance Manager in developing IT governance, risk management, and compliance strategies to safeguard essential business services and operations from cyber threats.

Key Responsibilities:

• Conduct cyber security risk assessments following the company's risk assessment framework and methodology.
• Produce management information related to the risk and control environment.
• Operate and maintain the information security management system in compliance with ISO 27001/27002.
• Develop GRC policies, standards, and procedures to monitor information security controls.
• Ensure a fit for purpose IT control environment and support a roadmap for IT controls improvements.
• Design, implement, and run processes to monitor IT compliance to legal and regulatory requirements.
• Manage IT resilience and business continuity plans, including conducting test exercises.
• Support the technical implementation, maintenance, and configuration of GRC tools and systems.

Job Requirements:

• Practical experience in a GRC role or related profession e.g., risk, audit, cyber security, or similar.
• Detailed knowledge of and experience in implementing, operating, and improving ISMS.
• Experience with internal and external audit engagements and cyber security risk assessments.
• Experience with technical risk assessments in IT or OT environments.
• Understanding of power distribution systems or industry best practices is beneficial.

If you are a skilled Senior Cyber GRC Analyst looking for a new opportunity to further develop your career, we would love to hear from you. Apply now to join our client's dynamic and dedicated team either in Crawley.