Contract Opportunity: GRC Analyst (Security Compliance Analyst)

Contract Opportunity: GRC Analyst (Security Compliance Analyst)

Location: Hybrid – Exeter (1-2 days per month on-site) Rate: £400-£450 per day (Inside IR35) Duration: 6 months

I\’m recruiting for a GRC Analyst to join on a 6 month contract, supporting the organisation\’s security compliance function. Reporting directly to the Security Compliance Manager, you\’ll play a key role in ensuring information assets are protected, risks are identified and mitigated, and compliance with regulatory requirements is maintained. This is a hands on role where you\’ll review IT policies and procedures, conduct an ISO 27001:2022 gap analysis, and provide actionable recommendations to strengthen the organisation\’s security posture.

Key Responsibilities

• Review and update IT security policies and procedures
• Conduct ISO 27001:2022 gap analysis across the Group
• Provide feedback and recommendations to enhance security measures
• Support the development and implementation of new security policies and systems
• Deliver training to staff on security protocols and compliance requirements

Essential Skills & Experience

• Strong knowledge of ISO 27001 (2022 standard)
• Ideally certified as Lead Auditor/Lead Implementer
• Experience in information security compliance and risk management
• Ability to translate regulatory requirements into practical business processes
• Excellent communication and stakeholder engagement skills

If this is of interest please respond with your most up to date CV and I\’ll give you a call if you look like a good fit