The Senior GRC Analyst will play a crucial role in maintaining the security posture of the organisation by ensuring compliance with internal and external standards and regulations.
Client Details
Our client is a large manufacturer based in Gloucestershire. This role forms a key part of their GRC capability and they require an experienced interim for a minimum of 6 months.
Description
The successful Senior GRC Analyst will:
- Conduct comprehensive risk assessments and audits.
- Develop, maintain and implement GRC standards and procedures.
- Collaborate with various departments to ensure regulatory compliance.
- Provide training and support to staff on GRC matters.
- Report on compliance activities and make recommendations for improvements.
- Stay updated on relevant laws, regulations, and industrial standards.
- Participate in strategic planning for risk management.
- Support incident response planning and investigation.
Profile
The successful Senior GRC Analyst will possess:
- Experience of a range of GRC platforms and tools.
- Formal Certification such as ISACA CISA, CRISC etc. are desirable;
- Working knowledge of Information Security Management Systems (ISMS) and popular frameworks such as ISO 27001, NIST CSF, CIS 18 Controls, SCF etc.
- Knowledge of regulatory compliance and privacy standards including GDPR and related sensitive data types;
- Two plus years' experience participating in audits, assessments, and other forms of security and compliance oversight;
- Equal proficiency in all parts of GRC, candidates who specialise in one area will likely not suit this role
- Excellent analytical and problem-solving skills.
Job Offer
£450 - £550 per day dependent on experience (rate to umbrella, inside IR35).
This role will require presence on-site in Gloucestershire on Tuesday & Thursday every week.