Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Cyber Security GRC Analyst
Apply now
Job Board
Companies
Nextech Group Limited
Cyber Security GRC Analyst

Cyber Security GRC Analyst

Full-Time 40000 - 50000 £ / year (est.) No home office possible
Apply now Go Premium
Nextech Group Limited

At a Glance

  • Tasks: Lead security compliance activities and manage Cyber Essentials assessments.
  • Company: Dynamic software and IT services company with a focus on cybersecurity.
  • Benefits: Hybrid working, career progression, and hands-on collaboration opportunities.
  • Other info: Fast-paced environment with strong growth potential into senior compliance roles.
  • Why this job: Shape security compliance in a growing tech business and make a real impact.
  • Qualifications: IASME Cyber Essentials Auditor credentials and experience in information security roles.

The predicted salary is between 40000 - 50000 £ per year.

A leading software and IT services company is seeking a Security Compliance Officer with IASME Cyber Essentials Auditor credentials to take ownership of their security compliance and certification activities across both internal systems and client environments. This is a key hire within a growing technical organisation where cybersecurity assurance, governance, and compliance are increasingly central to customer delivery and commercial growth.

Key Responsibilities

  • Lead and manage Cyber Essentials and Cyber Essentials Plus (CE) assessments
  • Maintain and improve compliance with key frameworks including ISO 27001, GDPR, and internal security policies
  • Conduct internal security audits, control reviews, and risk assessments
  • Support evidence collection and audit readiness across technical teams
  • Work closely with IT support, DevOps, and engineering teams to ensure security controls are implemented and maintained
  • Handle client-facing security questionnaires and compliance requirements
  • Assist in improving the organisation's overall security posture and governance framework

Required Experience

  • IASME Cyber Essentials Assessor/Auditor qualification (essential)
  • Strong understanding of Cyber Essentials / Cyber Essentials Plus requirements
  • Experience in information security, compliance, GRC, or IT security roles
  • Familiarity with ISO 27001 or similar security frameworks
  • Experience working with technical teams (MSP, software, or IT environments preferred)

Desirable

  • ISO 27001 Lead Auditor or Implementation experience
  • CISSP, CISM, CISA or equivalent certifications
  • Experience within MSP, SaaS, or software delivery environments
  • Exposure to client-facing compliance or consultancy work

What's on Offer

  • Hybrid working (Essex-based office with flexibility)
  • Opportunity to own and shape security compliance in a growing technical business
  • Exposure to both internal security operations and external client compliance requirements
  • Strong career progression into GRC, Security Manager, or Head of Compliance roles

This is an excellent opportunity for a compliance professional who enjoys combining structured security frameworks with hands-on collaboration across technical teams in a fast-paced software environment.

Cyber Security GRC Analyst employer: Nextech Group Limited

Join a leading software and IT services company that prioritises cybersecurity assurance and compliance, offering a dynamic hybrid work environment in Essex. With a strong focus on employee growth, you will have the opportunity to shape security compliance while collaborating closely with technical teams, paving the way for career advancement into senior roles such as GRC or Security Manager. Enjoy a supportive work culture that values innovation and teamwork, making it an ideal place for professionals seeking meaningful and rewarding employment.
Nextech Group Limited

Contact Detail:

Nextech Group Limited Recruiting Team

View Nextech Group Limited Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Cyber Security GRC Analyst

✨Tip Number 1

Network like a pro! Reach out to folks in the cybersecurity field on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that dream job.

✨Tip Number 2

Prepare for interviews by brushing up on your knowledge of Cyber Essentials and ISO 27001. We recommend doing mock interviews with friends or using online platforms to get comfortable discussing your experience and how it relates to the role.

✨Tip Number 3

Showcase your skills through practical examples. When you get the chance to chat with potential employers, share specific instances where you’ve improved security compliance or handled audits. We want to see your hands-on experience!

✨Tip Number 4

Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search.

We think you need these skills to ace Cyber Security GRC Analyst

IASME Cyber Essentials Auditor
Cyber Essentials
ISO 27001
GDPR
Internal Security Audits
Risk Assessments
Security Compliance
Governance, Risk, and Compliance (GRC)
Client-Facing Compliance
Technical Team Collaboration
CISSP
CISM
CISA
Security Posture Improvement

Some tips for your application 🫡

Tailor Your CV: Make sure your CV highlights your experience with Cyber Essentials and any relevant frameworks like ISO 27001. We want to see how your skills match up with what we're looking for, so don’t be shy about showcasing your qualifications!

Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your background makes you the perfect fit for our team. We love hearing personal stories that connect to the role.

Showcase Your Technical Skills: Since this role involves working closely with technical teams, make sure to highlight any hands-on experience you have in IT security or compliance. We’re keen on seeing how you can contribute to our security posture!

Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re serious about joining our team!

How to prepare for a job interview at Nextech Group Limited

✨Know Your Frameworks

Make sure you brush up on Cyber Essentials, ISO 27001, and GDPR. Being able to discuss these frameworks confidently will show that you understand the compliance landscape and can effectively contribute to the organisation's security posture.

✨Showcase Your Experience

Prepare specific examples from your past roles where you've led compliance assessments or conducted internal audits. Highlighting your hands-on experience with technical teams will demonstrate your ability to collaborate effectively in a hybrid environment.

✨Understand the Role's Impact

Research how the Security Compliance Officer role fits into the company's overall strategy. Be ready to discuss how you can help improve their security governance and compliance framework, showing that you're not just looking for a job, but are genuinely interested in contributing to their success.

✨Prepare for Client-Facing Scenarios

Since you'll be handling client-facing security questionnaires, think about how you would approach these situations. Practise articulating your responses clearly and confidently, as this will reflect your ability to manage compliance requirements effectively.

Cyber Security GRC Analyst
Nextech Group Limited

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>