Information Security GRC Analyst

Information Security GRC Analyst

West London

Salary: £40,000 – £42,500

Working Pattern: Office-based

Are you passionate about information security, governance, risk and compliance?

We're looking for an experienced Information Security GRC Analyst to join a growing IT Infrastructure team, helping to strengthen cyber security, risk management and compliance across a large organisation.

This is an excellent opportunity for someone with hands-on experience of ISO 27001, risk management and governance frameworks who wants to play a key role in improving security maturity and protecting critical business operations.

The Opportunity

Working closely with the Information Security Manager, you'll support the implementation and continuous improvement of information security governance, risk and compliance processes. You'll work across the business to identify risks, maintain security policies, support audits and help achieve industry-recognised security certifications.

Key Responsibilities

  • Conduct information security risk assessments and maintain the corporate risk register.
  • Support the implementation and ongoing management of the ISO 27001 framework.
  • Perform third-party supplier risk assessments.
  • Develop, review and maintain information security policies and procedures.
  • Support internal and external security audits and ensure audit actions are completed.
  • Deliver security awareness initiatives and training across the organisation.
  • Assist with Business Continuity, Disaster Recovery and security certification programmes.
  • Work with technical teams to investigate and mitigate security risks.

About You

You'll be an experienced Information Security professional with a strong understanding of governance, risk and compliance.

You'll ideally have:

  • Degree in Information Technology, Computer Science or a related discipline.
  • 5+ years' experience within Information Security, Risk or IT.
  • Strong experience implementing ISO 27001 and Governance, Risk & Compliance (GRC) frameworks.
  • Experience with Business Continuity and IT Disaster Recovery.
  • Relevant certifications such as ISO 27001 Lead Implementer , ISO 27001 Internal Auditor , CRISC , CGRC or CGEIT .
  • Excellent communication skills with the ability to explain technical risks to non-technical stakeholders.

What's On Offer

  • Salary of £40,000–£42,500 .
  • 33 days annual leave plus additional leave for long service.
  • Annual bonus and salary review.
  • Pension and flexible benefits package.
  • Tuition reimbursement and excellent learning & development opportunities.
  • Employee discounts, wellbeing support and enhanced lifestyle benefits.

If you're looking to take the next step in your Information Security career and make a real impact in Governance, Risk & Compliance, we'd love to hear from you. Apply today!

Job Details

Company
Office Collective
Location
City of London, Greater London, UK
Posted