Job Description
Senior Governance, Risk and Compliance Analyst (Information Security)
Hybrid | Newcastle
£55k - £65k
Our client is looking for a proactive Information Security professional to join their team as a Senior Governance Risk and Compliance (GRC) Analyst!
In a small but mighty, genuinely lovely team, this is an ideal opportunity for someone to take the next step in their GRC career - with autonomy and the opportunity to drive development within GRC, with a focus on ISO27001 implementation
Working within a small team means you'll gain the experience, exposure and responsibilities to drive forward your career!
Responsibilities of Senior GRC analyst
- Working closely with the Governance and Compliance Manager and Head of Information Security to support in security certifications such as Cyber Essentials and PCI
- Take the lead on the implementation of ISO27001
- Gap analysis and risk assessments to propose strategies on risk remediation.
- Support on the wider GRC function where needed such as 3rd party risk and supplier due diligence.
- Hep to foster a culture of security awareness, training and upskilling across the business.
- Regular reporting on GRC key risk and key performance indicators, including regular review of remediation strategies.
Requirements of a Senior GRC Analyst:
- Proven Experience in an Information Security role including engaging with Senior Stakeholders across the business to advise and ensure security compliance
- Experience defining, implementing and maintaining infosec policies, controls and processes
- Including experience implementing and auditing ISO27001
- Clear, friendly but effective communication, both written and verbally.
- Good emotional intelligence and a commitment to fairness and accountability.
If this looks interesting, please apply or email Georgia at [email protected]