Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct risk assessments and manage incident responses to protect information security.
- Company: Join a leading FTSE 100 brand known for its commitment to cybersecurity.
- Benefits: Enjoy a hybrid work model with competitive pay and opportunities for professional growth.
- Why this job: Be part of a dynamic team shaping the future of information security in a reputable company.
- Qualifications: Cybersecurity qualifications and strong communication skills are essential; experience in governance is a plus.
- Other info: This is a 3-month contract role, offering a chance to make a real impact.
The predicted salary is between 72000 - 96000 £ per year.
GRC Analyst with a focus on infosec governance, risk and compliance required by a market leading brand. The information security analyst will assist in establishing and monitoring the corporate information security policy, standards, procedures, guidelines, internal controls and business continuity to ensure critical information is protected, in alignment to Cyber Security best practice and data protection regulation.
The focus of this role will be to represent information security, being able to interpret technical design and how information security best practices should be applied. Also, be able to lead with incident management investigations and conduct risk and vulnerability assessments where appropriate.
Key Accountabilities & Responsibilities- Conduct risk and vulnerability assessments to identify and mitigate security risks.
- Represent information security within projects to ensure best practice is adhered to.
- Coordinate across departments to ensure risk is managed through comprehensive security measures and policies.
- Incident response and management – lead and participate in complex incident investigations.
- Develop and maintain cyber incident response plans and playbooks.
- Conduct post-incident reviews and implement lessons learnt to improve the organisation’s security posture.
- Either Technical Operations Security experience with an interest to work within a governance role or experience working in a Security Governance role.
- Ability to assess system controls based on a documented standard.
- Will be able to demonstrate ability in problem analysis and resolution.
- Strong communication skills to be able to influence best practice at all levels of the organisation, with the ability to explain technical problems to non-technical business stakeholders at all levels.
- Ability to build effective relationships to influence and negotiate business outcomes.
- Experience of working with and presenting findings to Senior Stakeholders.
- Hold recognised Cyber Security qualification (CISA, CISMP, CISM or equivalent).
- Knowledge of industry related frameworks such as ISO27001, PCI DSS.
This role is based in Northampton and is a hybrid position with on average 2 days a week on-site. It is an initial 3 month contract, inside IR35 with a rate of up to circa £400 per day.
Contact Detail:
Ventula Consulting Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Analyst - Information Security - FTSE 100 Market Leader
✨Tip Number 1
Familiarise yourself with the specific frameworks mentioned in the job description, such as ISO27001 and PCI DSS. Being able to discuss these frameworks confidently during your interview will demonstrate your knowledge and commitment to information security.
✨Tip Number 2
Prepare examples of past experiences where you've successfully conducted risk and vulnerability assessments. Be ready to explain your approach and the outcomes, as this will showcase your practical skills and understanding of the role.
✨Tip Number 3
Brush up on your incident management skills. Think of scenarios where you led or participated in incident investigations, and be prepared to discuss how you handled them and what you learned from those experiences.
✨Tip Number 4
Since strong communication skills are crucial for this role, practice explaining complex technical concepts in simple terms. This will help you connect with non-technical stakeholders and demonstrate your ability to influence best practices across the organisation.
We think you need these skills to ace GRC Analyst - Information Security - FTSE 100 Market Leader
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security governance, risk management, and compliance. Use keywords from the job description to demonstrate that you meet the specific requirements of the GRC Analyst role.
Craft a Compelling Cover Letter: Write a cover letter that showcases your understanding of the company's needs and how your skills align with their goals. Mention your experience with incident management and risk assessments, and express your enthusiasm for contributing to their information security efforts.
Highlight Relevant Qualifications: Clearly list any recognised Cyber Security qualifications you hold, such as CISA, CISMP, or CISM. If you have experience with industry frameworks like ISO27001 or PCI DSS, make sure to include that as well.
Prepare for Technical Questions: Anticipate technical questions related to information security best practices and be ready to explain complex concepts in simple terms. This will demonstrate your strong communication skills and ability to engage with non-technical stakeholders.
How to prepare for a job interview at Ventula Consulting
✨Understand the Role
Make sure you thoroughly understand the responsibilities of a GRC Analyst in information security. Familiarise yourself with key concepts like risk assessments, incident management, and compliance frameworks such as ISO27001 and PCI DSS.
✨Prepare for Technical Questions
Expect to be asked about your technical knowledge and experience. Be ready to discuss how you've applied security best practices in previous roles, and be prepared to explain complex technical issues in simple terms for non-technical stakeholders.
✨Showcase Your Communication Skills
Since strong communication is crucial for this role, practice articulating your thoughts clearly and confidently. Think of examples where you've successfully influenced decisions or communicated complex information to diverse audiences.
✨Demonstrate Problem-Solving Abilities
Be prepared to discuss specific instances where you've identified security risks and implemented solutions. Highlight your analytical skills and how you've approached problem-solving in past roles, especially in high-pressure situations.
