Our client, a leading utilities company in the technology sector, is currently seeking a Senior Cyber GRC Analyst to join their team based in their Crawley office. This is a permanent opportunity to support the Cyber Security Governance, Risk & Compliance Manager in developing IT governance, risk management, and compliance strategies to safeguard essential business services and operations from cyber threats.
Key Responsibilities:
- Conduct cyber security risk assessments following the company's risk assessment framework and methodology.
- Produce management information related to the risk and control environment.
- Operate and maintain the information security management system in compliance with ISO 27001/27002.
- Develop GRC policies, standards, and procedures to monitor information security controls.
- Ensure a fit for purpose IT control environment and support a roadmap for IT controls improvements.
- Design, implement, and run processes to monitor IT compliance to legal and regulatory requirements.
- Manage IT resilience and business continuity plans, including conducting test exercises.
- Support the technical implementation, maintenance, and configuration of GRC tools and systems.
Job Requirements:
- Practical experience in a GRC role or related profession e.g., risk, audit, cyber security, or similar.
- Detailed knowledge of and experience in implementing, operating, and improving ISMS.
- Experience with internal and external audit engagements and cyber security risk assessments.
- Experience with technical risk assessments in IT or OT environments.
- Understanding of power distribution systems or industry best practices is beneficial.
If you are a skilled Senior Cyber GRC Analyst looking for a new opportunity to further develop your career, we would love to hear from you. Apply now to join our client's dynamic and dedicated team either in Crawley.