Senior GRC Analyst in City of London

Fifty5Blue is a global leader in media measurement and analytics, operating in more than 80 countries. We bring clarity to complexity. Our independent, hybrid cross-media audience measurement combines trusted audience panels with large-scale data to establish a single, coherent view across platforms and markets. This gives content owners, advertisers, agencies and platforms the clarity and confidence to develop content and plan advertising decisively. With deep expertise across global media systems, we design integrated, comparable measurement frameworks that support a more consistent and accountable media market.

Location: Westgate, Hanger Ln, London W5 1UA, UK

Employment Type: Permanent

Department: Cyber Security

Reports To: Cyber Security Manager

This is a full-time permanent position, based in our London office. We operate on a hybrid working arrangement and require a minimum of 2 days in the office. We welcome all applications from those with the legal right to live and work permanently in the UK, without requiring VISA sponsorship now or in the future.

Overview: Be part of the information security team to support Fifty5Blue's mission to keep our business secure by ensuring that policies, processes and best practices are followed. The role ensures compliance with all external and internal audit and regulatory requirements and is responsible for identifying and managing risks and controls to protect the confidentiality, availability and integrity of Fifty5Blue's data.

Key Responsibilities

• Develop, implement, and maintain the information security risk management framework aligned with recognized standards
• Conduct periodic risk assessments
• Support business and technology areas in identifying, recording, categorizing, and prioritizing security risks
• Generate and maintain the Risk Register and monitor the treatment lifecycle through closure
• Support the definition of the new risk management solution
• Support the integration of security risk management into the corporate risk management process
• Define and monitor key risk indicators (KRIs) and key performance indicators (KPIs)
• Plan, implement and maintain the Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP)
• Conduct and periodically review Business Impact Analysis (BIA) to identify critical processes and maximum recovery times
• Lead or support continuity and recovery tests and simulations (tabletop exercises, failover tests, etc.)
• Support in ISO 27001 / ISO 27701 certification
• Support internal and external audits, including the preparation of evidence and follow-up of remediation plans
• Develop and review policies, standards, procedures and general templates
• Answer customer and partner due diligence questionnaires
• Help maintain compliance with internal guidelines, as well as external laws and regulations

Required Skills & Experience

• More than 6 years of experience in Information Security / Cyber Security
• Experience in information security risk management
• Experience in business continuity
• Good communication, influencing skills, and high attention to detail
• Develops and maintains good working relationships with stakeholders, colleagues, and business partners

Qualification

• Qualified bachelor's degree in IT or equivalent
• Advanced English
• Good Knowledge in Microsoft Excel, Word, and PowerPoint
• Knowledge of information security frameworks, such as ISO 27001/27002, etc.

Our offer

Our specialist expertise, pioneering technology and commitment to innovation provide the ideal environment for career growth. Want to have a real-world impact? Help us deliver the trusted data that informs decisions in content and advertising across the world. When you join us, you’ll gain the benefit of our global reach, advanced technical innovation and deep expertise. We’ll support you with training and career development opportunities. Become part of a community of passionate, dedicated professionals.

Why join Fifty5Blue?

We pride ourselves on understanding people, and what makes us think and act the way we do. And because we know people, we like to make sure our own people are being looked after as well. Equality of opportunity for everyone is our highest priority and we support our colleagues to work in a way that supports their health and wellbeing. While we encourage teams to spend part of their working week in the office, we understand no one size fits all; our approach is flexible to ensure everybody feels included, accepted, and that we can win together. We’re dedicated to creating an inclusive culture and value the diversity of our people, clients, suppliers and communities, and we encourage applications from all backgrounds and sections of society. Even if you feel like you’re not an exact match, we’d love to receive your application and talk to you about this job or others at Fifty5Blue.

Privacy and Legal Statement

PRIVACY DISCLOSURE: Please note that by applying to this opportunity you consent to the personal data you provide to us to be processed and retained by Fifty5Blue. Your details will be kept on our Internal ATS (Applicant Tracking System) for as long as is necessary for the purposes of recruitment, which may include your details being shared with the hiring manager(s) and for consideration for potential future opportunities at Fifty5Blue. For full details of our privacy policy please visit.