Enable job alerts via email!
Governance, Risk and Compliance Analyst
Vista Global
London
On-site
GBP 45,000 - 65,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
Une entreprise dynamique recherche un GRC Analyst pour garantir la conformité aux obligations réglementaires et améliorer la gestion des risques IT. Le candidat idéal aura une formation solide en sécurité de l'information et une expérience pratique en évaluation des risques. Vous serez responsable de l'audit, de la gestion des risques, et de la formation sur les normes de confidentialité, travaillant en étroite collaboration avec les équipes internes et les fournisseurs externes.
Qualifications
- Expérience de 2-3 ans dans le domaine GRC ou en sécurité des informations.
- Certifications pertinentes comme ISO27001 Lead Implementer, CIPP, CRISC sont un plus.
- Connaissance des cadres comme CIS 8.0, ISO 27001, NIST CSF, GDPR.
Responsibilities
- Maintenir et améliorer le Système de gestion de la sécurité de l'information (ISMS).
- Surveiller la conformité avec les cadres de sécurité.
- Coordinater les audits internes et externes.
Skills
Education
Tools
Job description
We are seeking a dedicated and detail-oriented Governance, Risk and Compliance (GRC) Analyst to join our team. In this role, you will need to ensure that we meet regulatory obligations, align with frameworks and security standards, and manage and maintain IT risk across the organization and supply chain. You will collaborate with cross-functional teams within the organization as well work closely with external vendors, auditors and clients to embed GRC practices, maintain security controls and reassure adherence to frameworks and policies.
- Maintain and improve our Information Security Management System (ISMS).
- Monitor compliance with security frameworks.
- Support the IT and Information Security policy lifecycle.
- Maintain the IT Security risk register.
- Manage risk and track risk mitigation across the various Teams within the organization’s technology department.
- Conduct security reviews and risk assessments of suppliers and partners.
- Complete audits for clients and assist in the review process with their corresponding audit teams.
- Coordinate internal and external audits.
- Audit internal processes for compliance.
- Work closely with the Privacy Analyst to assist with DPIAs, RoPAs and data subject workflows.
- Maintain the GRC platform.
- Maintain security awareness training platform and assist in the delivery of relevant training.
- Assist with the creation and maintenance of metrics relevant to control effectiveness and maturity.
- Stay up-to-date with relevant frameworks and regulatory requirements.
- Bachelor’s degree in Information Security, or related field. Relevant certifications (e.g., ISO27001 Lead Implementer, CIPP, CRISC etc.) are a plus.
- At least 2-3 years of experience in GRC, Information Security, or related fields.
- Hands-on experience with GRC platforms, OneTrust is a bonus.
- Experience with risk management and risk assessment methodologies.
- Knowledge of frameworks like CIS 8.0, ISO 27001, NIST CSF, GDPR, NIS2, or similar.
- Experience in auditing, reporting, and investigating privacy breaches.
- Ability to interpret and apply complex legal and regulatory requirements.
- Experience working with cross-functional teams to implement privacy measures.
- Providing clear guidance and training to employees on privacy standards.
- Exposure to cloud-native environments and associated risk controls.
- Exposure in Artificial Intelligence systems and associated risk controls is a bonus.
- Strong understanding of privacy laws and frameworks (e.g., GDPR, CCPA).
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
