Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security governance, risk, and compliance initiatives while collaborating with teams to enhance data protection.
- Company: PSI Services empowers individuals to achieve their dreams through innovative testing solutions and a supportive culture.
- Benefits: Enjoy flexible remote work, competitive salary, comprehensive benefits, and a strong focus on work/life balance.
- Why this job: Join a diverse team committed to data security and make a real impact in a fast-paced environment.
- Qualifications: Experience with ISO standards and security tools is essential; certifications like CISSP or CISA are a plus.
- Other info: This role offers flexible hours and occasional travel for audits, perfect for those seeking a dynamic work experience.
The predicted salary is between 48000 - 72000 £ per year.
Lead_Analyst Information Security Governance Risk Compliance
Join to apply for the Lead_Analyst Information Security Governance Risk Compliance role at PSI Services LLC
Lead_Analyst Information Security Governance Risk Compliance
Join to apply for the Lead_Analyst Information Security Governance Risk Compliance role at PSI Services LLC
Get AI-powered advice on this job and more exclusive features.
Title: Lead Analyst, Information, Security, Governance, Risk and Compliance
Location: Remote-UK
Salary: £60,000 / annually
About PSI
We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers.
We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent.
At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That’s why you’ll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle.
Learn more about what we do at:
About the Role
The Lead Analyst, Information Security – GRC plays a key role in supporting PSI’s commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems.
This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 – 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments.
Role Responsibilities
- Act as the primary point of contact for implementing and maintaining the security GRC framework.
- Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization.
- Collaborate with internal teams to ensure documentation of security control in the form of system architecture diagrams, data flow diagrams and Information System Continuity Plans are in place.
- Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices.
- Monitor and assess the effectiveness of security controls across business systems and processes.
- Ensure alignment with client, regulatory, and internal compliance requirements.
- Support the automation and continual improvement of GRC processes and tools.
- Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership.
- Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses.
- Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls.
- Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives.
- Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions.
- Deliver training and awareness programs related to information security, policies, and best practices.
- Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities.
- Prepare and support audit plans and compliance documentation for internal or external stakeholders.
- Conduct vetting for access to sensitive systems and data, including continuous monitoring and clearance reviews.
Knowledge, Skills and Experience Requirements
- Experience working within, achieving and/or maintaining ISO standards such as ISO 27001, 9001, 14001 and 20000 (essential).
- Experience in implementing and maintaining externally awarded certifications such as ISO27001 is essential.
- Proficient with MS Office
- Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended
- Extensive training and experience in computer disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines
- Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired
- Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) desirable.
- Experience in a fast-paced GRC/ISO function (desirable).
Benefits & Culture
At PSI, our culture is to be transparent and fair. That’s why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role.
In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes:
- 401k/Pension/Retirement Plan – with country specific employer %
- Enhanced PTO/Annual Leave
- Medical insurance – country specific
- Dental, Vision, Life and Short-Term Disability for US
- Flexible Spending Accounts – for the US
- Medical Cashback plan covering vision, dental and income protection for UK
- Employee Assistance Programme
- Commitment and understanding of work/life balance
- A culture of embracing wellness, including regular global initiatives
- Access to supportive and professional mechanisms to help you plan for your future
- Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities
Seniority level
-
Seniority level
Associate
Employment type
-
Employment type
Full-time
Job function
-
Job function
Information Technology
-
Industries
E-Learning Providers
Referrals increase your chances of interviewing at PSI Services LLC by 2x
Get notified about new Information Security Analyst jobs in United Kingdom .
City Of Bristol, England, United Kingdom 1 week ago
Security GRC Analyst (Cloud/AWS) – UK REMOTE
Reading, England, United Kingdom 2 days ago
Service Delivery Engineer CyberSecurity – Graduate
London, England, United Kingdom 1 week ago
Principal Security Analyst – Chronicle SecOps
Principal Security Analyst – Microsoft Sentinel
Global Security GRC Analyst (Governance, Risk, and Compliance)
Principal Cyber Security Analyst – (Remote, EMEA Based)
London, England, United Kingdom 1 month ago
Reading, England, United Kingdom 1 week ago
Information Security Engineer (AppSec Mobile) – Camera Injection
Senior Full Stack Software Developer, Generative AI – Security
Senior Full Stack Software Engineer, Generative AI – Security
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Lead_Analyst Information Security Governance Risk Compliance employer: PSI Services LLC
Contact Detail:
PSI Services LLC Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Lead_Analyst Information Security Governance Risk Compliance
✨Tip Number 1
Familiarise yourself with the ISO standards mentioned in the job description, especially ISO 27001. Understanding these frameworks will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the Information Security and Compliance field. Join relevant online forums or LinkedIn groups where you can engage with others who work in GRC roles, as they may provide insights or even referrals.
✨Tip Number 3
Prepare to discuss specific tools and technologies related to GRC, such as OneTrust or ServiceNow. Being able to speak knowledgeably about these tools will set you apart from other candidates.
✨Tip Number 4
Showcase your ability to collaborate across departments. Think of examples where you've worked with teams like IT, Legal, or Audit, as this role requires strong cross-functional relationships.
We think you need these skills to ace Lead_Analyst Information Security Governance Risk Compliance
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Information Security, Governance, Risk, and Compliance. Use keywords from the job description to demonstrate that you meet the specific requirements of the Lead Analyst role.
Craft a Compelling Cover Letter: Write a cover letter that not only outlines your qualifications but also expresses your passion for data security and compliance. Mention how your values align with PSI's commitment to diversity, equity, and inclusion.
Showcase Relevant Certifications: If you have certifications like CISSP, CISA, or CISM, make sure to highlight them prominently in your application. This will show that you have the necessary expertise and commitment to the field.
Prepare for Potential Questions: Think about how you would answer questions related to your experience with ISO standards and GRC processes. Be ready to discuss specific examples of how you've implemented security measures or improved compliance in previous roles.
How to prepare for a job interview at PSI Services LLC
✨Understand the GRC Framework
Make sure you have a solid grasp of the Governance, Risk, and Compliance (GRC) framework. Be prepared to discuss how you've implemented or maintained such frameworks in previous roles, as this will demonstrate your expertise and relevance to the position.
✨Familiarise Yourself with ISO Standards
Since experience with ISO standards is essential for this role, brush up on ISO 27001 and other relevant certifications. Be ready to share specific examples of how you've achieved or maintained these standards in your past work.
✨Showcase Your Technical Skills
Highlight your proficiency with security tools and MS Office. Prepare to discuss any hands-on experience you have with vulnerability scanners, firewalls, or GRC tools like OneTrust or ServiceNow, as this will show that you can hit the ground running.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in risk management and compliance situations. Think of examples from your past where you successfully navigated challenges related to data security or compliance, and be ready to explain your thought process.
