At a Glance
- Tasks: Ensure compliance with key security standards and support risk assessment processes.
- Company: Dynamic tech company focused on governance, risk, and compliance.
- Benefits: Hybrid work model, competitive salary, and opportunities for professional growth.
- Other info: Inclusive workplace committed to diversity and providing reasonable accommodations.
- Why this job: Join a team making a real impact in cyber security and compliance.
- Qualifications: 6+ years in Cyber Security with strong knowledge of industry frameworks.
The predicted salary is between 60000 - 75000 £ per year.
Senior Governance, Risk and Compliance (GRC) Analyst
Location: London. Hybrid: 3 days in office.
Responsibilities
- Work with key internal and external stakeholders to ensure compliance with PCI DSS, Privacy and GDPR compliance requirements, audits and assessments.
- Assist in the risk assessment process and report on enterprise-wide and third-party security controls.
- Support in the implementation of key security initiatives across the organisation.
- Support management of audits, external assessments and assurance processes including, but not limited to PCI DSS and NIST CSF.
- Develop and manage meaningful metrics to measure and track cyber risks and the effectiveness of the governance, risk and compliance function.
- Conduct compliance readiness assessments and assurance activities against policies, standards requirements.
- Track technology and cyber related audit findings and actions.
- Assist with the development of measurable cyber security standards that align with policy control objectives.
- Support user and specialist user education and awareness exercises for employees.
- Assist in the development of effective measurement and simplified reporting of cyber security risks within the business.
- Assist with third party security assessments against industry standards as well as News UK control standards.
- Assist in maintaining the cyber security risk register.
Qualifications
- 6+ years’ experience within Cyber Security or related fields.
- Demonstrated experience in governance, risk and compliance in dynamic and complex cyber security, technology and business environment.
- Strong knowledge and experience with Industry Frameworks and Standards such as NIST CSF, PCI DSS and ISO 27001.
- Good working knowledge of Cloud infrastructure, especially AWS.
- Previous experience working in a SOX compliance environment is desirable.
- Strong oral and written communication skills.
- Qualification in Information Security, Computer Science, Engineering or similar.
- Professional security certifications such as CISSP, CISM, CISA, CRISC or similar preferred.
Analyst, Senior GRC Analyst in London employer: Storyful
As a Senior Governance, Risk and Compliance Analyst at our London office, you will thrive in a dynamic work culture that prioritises collaboration and innovation. We offer a hybrid working model, competitive benefits, and ample opportunities for professional growth, ensuring that you can develop your skills while contributing to meaningful security initiatives. Join us to be part of a forward-thinking team that values diversity and is committed to making a positive impact in the cyber security landscape.
We think you need these skills to ace Analyst, Senior GRC Analyst in London
Governance, Risk and Compliance (GRC)
PCI DSS
GDPR Compliance
Risk Assessment
NIST CSF
Cyber Security Standards
Cloud Infrastructure (AWS)
