At a Glance
- Tasks: Advise clients on cybersecurity governance and perform risk assessments.
- Company: Dynamic firm focused on cybersecurity and compliance across various sectors.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Join a team that values innovation and offers career advancement opportunities.
- Why this job: Make a real impact in cybersecurity while working with diverse clients and technologies.
- Qualifications: In-depth knowledge of security frameworks and excellent communication skills.
The predicted salary is between 55000 - 85000 £ per year.
Salary: £65,000 - 85,000 per year
Requirements
- In-depth knowledge of ISO 27001, NIST CSF, GDPR, and risk management frameworks
- Experience performing security risk assessments, internal audits, and compliance reviews
- Strong understanding of cybersecurity controls, regulatory mandates, and business risk alignment
- Excellent client communication, stakeholder management, and reporting skills
- Familiarity with GRC platforms (e.g., RSA Archer, ServiceNow GRC, LogicGate)
Responsibilities
- Advise clients on cybersecurity governance, risk management, and compliance frameworks
- Perform risk assessments, control gap analyses, and audits (ISO 27001, SOC 2, etc.)
- Develop and implement information security policies, procedures, and risk registers
- Lead client engagements related to GDPR, DORA, and other regulatory requirements
- Support third-party vendor risk assessments and due diligence activities
- Prepare reports and recommendations for CISO, board, and audit committee presentations
Technologies
- ServiceNow
- API
- AWS
- Azure
- GCP
We are seeking an experienced GRC Consultant to support and advise clients in managing cyber risks, ensuring compliance with industry standards, and implementing robust information security governance frameworks. You will work across multiple sectors, helping clients improve their risk posture through audit readiness, control assessments, policy development, and regulatory compliance. The ideal candidate will have deep knowledge of security frameworks (ISO 27001, NIST, CIS), regulatory mandates (GDPR, DORA, PCI DSS), and a strategic approach to enterprise-level governance and risk programs.
SOC Analyst employer: MastarRec
As a leading firm in cybersecurity governance and risk management, we pride ourselves on fostering a collaborative and innovative work culture that empowers our SOC Analysts to thrive. With competitive salaries, comprehensive benefits, and ample opportunities for professional development, our employees are equipped to make a meaningful impact across various sectors while enjoying the vibrant atmosphere of our central London location.
StudySmarter Expert Advice🤫
We think this is how you could land SOC Analyst
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the cybersecurity field. Attend industry events, webinars, or even local meetups. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or a personal website showcasing your projects, certifications, and any relevant experience. This is your chance to shine and demonstrate your expertise in ISO 27001, NIST CSF, and all those other frameworks.
✨Tip Number 3
Prepare for interviews like it’s a big game day! Research the company, understand their cybersecurity needs, and be ready to discuss how you can help them with risk assessments and compliance. Practice common interview questions and have your own questions ready to show your interest.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you. Tailor your application to highlight your experience with GRC platforms and your client communication skills. Let’s get you that SOC Analyst role!
We think you need these skills to ace SOC Analyst
Some tips for your application 🫡
Know Your Stuff:Make sure you highlight your in-depth knowledge of ISO 27001, NIST CSF, and GDPR in your application. We want to see how your experience aligns with the requirements, so don’t hold back on showcasing your expertise!
Tailor Your Application:Customise your CV and cover letter to reflect the specific skills and experiences mentioned in the job description. We love seeing candidates who take the time to connect their background with what we’re looking for.
Show Off Your Communication Skills:Since excellent client communication and stakeholder management are key, make sure to include examples of how you've successfully communicated complex information in your previous roles. We want to see how you can engage with clients effectively!
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at MastarRec
✨Know Your Frameworks
Make sure you brush up on ISO 27001, NIST CSF, and GDPR before the interview. Be ready to discuss how you've applied these frameworks in your previous roles, as this will show your depth of knowledge and practical experience.
✨Showcase Your Risk Assessment Skills
Prepare specific examples of past security risk assessments or audits you've conducted. Highlight any control gap analyses you've performed and how your recommendations improved compliance or security posture for your clients.
✨Communicate Clearly
Since excellent client communication is key, practice explaining complex cybersecurity concepts in simple terms. This will demonstrate your ability to engage with stakeholders effectively and ensure they understand the importance of your recommendations.
✨Familiarity with GRC Platforms
If you have experience with GRC platforms like RSA Archer or ServiceNow, be sure to mention it. If not, do a bit of research on these tools and be prepared to discuss how you would leverage them in your role as a SOC Analyst.
