Business Operations Analyst

Governance, Risk and Compliance Consultant

Company description :

OmniAccess is an industry leading marine network solutions provider, offering a wide range of products and services with over 15 years of experience. From our base in Palma de Mallorca, we cater services for some of the world’s largest yachts and key cruise line companies, with a very strong commitment to service quality & availability.

We operate global VSAT networks from our own teleports & HUBs located in Palma de Mallorca, Germany, Netherlands, Chile, USA, and Australia. As part of our integral, end-to-end solutions we design, implement, and support onboard IT networks.

Position Overview :

We are seeking an experienced Governance, Risk and Compliance (GRC) Consultant to lead the delivery of risk assessment services tailored to our yachting customers. The ideal candidate will have expertise in cybersecurity frameworks, compliance standards, and regulations such as IMO, ISO 27001, and NIST. This role requires a proactive individual capable of designing, implementing, and managing risk assessment programs while ensuring customers achieve compliance and maintain secure operations.

Key Responsibilities :

• Risk Assessment Delivery : Conduct comprehensive risk assessments for yachting customers, identifying vulnerabilities, threats, and compliance gaps. Provide tailored recommendations to mitigate risks and ensure regulatory compliance. Develop and present detailed risk assessment reports to clients.
• Regulatory Compliance : Ensure alignment with International Maritime Organization (IMO) regulations, including cybersecurity guidelines. Guide customers in achieving and maintaining ISO 27001 certification and compliance with NIST Cybersecurity Framework. Monitor evolving regulatory landscapes and advise clients on necessary updates to their security posture.
• Advisory and Consulting Services : Collaborate with yacht operators and technical teams to design cybersecurity strategies. Deliver workshops and training sessions to improve awareness of compliance requirements and risk management practices. Provide expertise on policies, procedures, and documentation required for regulatory audits.
• Customer Engagement and Relationship Management : Act as a trusted advisor for yachting clients, addressing cybersecurity challenges unique to their operations. Build strong relationships to understand customer needs and deliver value-added services. Support pre-sales efforts by providing technical insights into GRC services.
• Process Improvement and Innovation : Continuously enhance risk assessment methodologies and tools to improve service delivery. Stay updated on best practices, emerging risks, and advancements in maritime and cybersecurity compliance. Collaborate with internal teams to refine service offerings and integrate new technologies.

Required Knowledge :

At least 4 years of hands-on working experience in a similar role. Excellent working knowledge of security and governance, risk, and compliance within an enterprise environment. Hands-on experience with enterprise information security and standards such as ISO 27001, ISO 27002, ENS, GDPR, or Cyber Essentials. Experience conducting risk reviews, technology audits, or similar activities. Ability to communicate complex risks to diverse audiences, orally and in writing, in an easily understood, authoritative, and actionable manner. Proven ability to create formal documents, including reports and procedures. Capability to quickly build positive relationships and collaborate across technology teams.

J-18808-Ljbffr