Governance, Risk & Compliance (GRC) Analyst
I'm currently partnering with a fast-growing global technology business to recruit a Governance, Risk & Compliance (GRC) Analyst. This is an excellent opportunity for someone looking to develop their career within governance, risk, information security and compliance while working across international operations.
Working as part of a collaborative compliance function, you'll play a key role in supporting the development, implementation and continuous improvement of the organisation's Governance, Risk & Compliance framework, helping to promote a strong culture of compliance, security and ethical business practices.
Key Responsibilities
Governance
- Support the maintenance of Information Security and Quality Management Systems, including compliance monitoring activities.
- Assist with the development, review and maintenance of company policies and procedures.
Compliance & Regulatory
- Complete customer, supplier and third-party due diligence activities.
- Support internal and external audit programmes.
- Identify gaps in policies and processes, recommending improvements to strengthen compliance.
- Assist in delivering compliance awareness and training initiatives across the business.
Risk Management
- Support the organisation's enterprise risk management processes.
- Maintain and update risk registers, ensuring identified risks are accurately documented and monitored.
- Work with stakeholders to help embed effective risk management practices.
What We're Looking For
- Previous experience within Governance, Risk & Compliance, Information Security or a related function, ideally within a technology environment.
- Exposure to recognised compliance frameworks and standards such as GDPR, ISO 27001, ISO 9001, SOC 2, NIST, PCI-DSS and/or HIPAA.
- Experience supporting audits, compliance activities or risk management programmes.
- Familiarity with GRC or compliance management tools.
- Experience working with Information Security and Legal teams is advantageous.
- Strong organisational and project coordination skills.
- Excellent communication skills with the ability to engage stakeholders across all levels of the business.
- A proactive, analytical mindset with strong problem-solving abilities.
Desirable Qualifications
Professional certifications such as CRISC, ISO 27001 Lead Implementer, or similar would be highly advantageous.
If you're looking to join an innovative organisation where you'll gain broad exposure across governance, risk, compliance and information security, I'd love to hear from you. Apply today or get in touch for a confidential discussion.