At a Glance
- Tasks: Lead ISO 27001 certification and enhance governance, risk, and compliance practices.
- Company: Join a dynamic team focused on security and compliance in a fully remote role.
- Benefits: Flexible remote work, competitive pay, and the chance to make a real impact.
- Other info: Great opportunity for career growth in a supportive environment.
- Why this job: Be at the forefront of security standards and help shape compliance strategies.
- Qualifications: Experience in GRC roles and knowledge of ISO 27001 and SOC 2 standards required.
My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months. The GRC Analyst will focus on maintaining current ISO and SOC 2 standards within the business. Technical understanding would be beneficial but not essential. Knowledge of the requirements of the above standards in relation to contracts and vendor relationships is essential.
Key Skills & Experience from the GRC Analyst:
- Proven experience in a GRC, security risk, or compliance role
- Certifications for ISO 27001 (Lead Implementer/Auditor) would be required
- Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS, and data protection standards
- Onboarding/vendor risk management experience
- Hands-on experience supporting or leading ISO 27001 certification activities
- Solid understanding of risk assessment, control design, and audit processes
- Experience working with GRC tooling, evidence management, and reporting
- Experience/Knowledge around high volume data process would be beneficial
- Strong documentation, communication, and organisational skills
- Experience operating in regulated or security-conscious environments
- Experience in the Finance Sector would be beneficial
Key Responsibilities of the GRC Analyst:
- Develop and maintain security policies, standards, and procedures aligned to recognised frameworks
- Lead ISO 27001 readiness and certification activities, including ISMS support and audit coordination
- Conduct risk assessments across systems, processes, and third parties, tracking remediation actions
- PoC for legal department - onboarding/vendor/contract risk management
- Act as the primary liaison for internal stakeholders and external auditors
- Design, test, and monitor security and compliance controls, ensuring evidence is audit-ready
- Manage GRC tools and reporting to provide clear insight into risk and compliance posture
- Embed security and risk considerations into projects, suppliers, and business initiatives
- Monitor regulatory and standards changes and advise on required organisational updates
The GRC Analyst can work fully remote for the duration of the contract.
GRC Analyst employer: VIQU IT
At VIQU IT, we pride ourselves on being an excellent employer by offering a fully remote work environment that promotes flexibility and work-life balance. Our collaborative culture encourages professional growth through continuous learning opportunities and the chance to lead significant projects like ISO 27001 certification. Join us to be part of a dynamic team where your expertise in governance, risk, and compliance will be valued and rewarded.
StudySmarter Expert Advice🤫
We think this is how you could land GRC Analyst
✨Tip Number 1
Network like a pro! Reach out to your connections in the GRC space and let them know you're on the lookout for opportunities. You never know who might have the inside scoop on a role that’s perfect for you.
✨Tip Number 2
Get your online presence sorted! Make sure your LinkedIn profile is up-to-date and showcases your GRC skills and experience. Join relevant groups and engage with posts to get noticed by potential employers.
✨Tip Number 3
Prepare for those interviews! Brush up on your knowledge of ISO 27001, SOC 2, and other frameworks. Be ready to discuss how you've tackled risk assessments and compliance challenges in the past.
✨Tip Number 4
Apply through our website! We’ve got loads of exciting roles like the GRC Analyst position waiting for you. Don’t miss out on the chance to land your dream job with us!
We think you need these skills to ace GRC Analyst
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the GRC Analyst role. Highlight your experience with ISO 27001 and any relevant frameworks like NIST or SOC 2. We want to see how your skills match what we're looking for!
Showcase Your Experience:In your application, don’t just list your previous roles; explain how they relate to governance, risk, and compliance. We love seeing hands-on experience, especially with ISO certification activities, so make that shine!
Be Clear and Concise:When writing your cover letter, keep it clear and to the point. We appreciate good communication skills, so make sure you express your thoughts in a straightforward manner. Let us know why you're the perfect fit for this role!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the GRC Analyst position. Don’t miss out on this opportunity!
How to prepare for a job interview at VIQU IT
✨Know Your Standards
Make sure you brush up on ISO 27001, SOC 2, and other relevant frameworks before the interview. Being able to discuss these standards confidently will show that you understand the core requirements of the GRC Analyst role.
✨Showcase Your Experience
Prepare specific examples from your past roles where you've successfully managed risk assessments or led compliance activities. This will help demonstrate your hands-on experience and how it aligns with the responsibilities of the position.
✨Communicate Clearly
Since strong communication skills are essential, practice articulating your thoughts clearly and concisely. Be ready to explain complex concepts in a way that’s easy to understand, especially when discussing vendor relationships and compliance controls.
✨Ask Insightful Questions
Prepare thoughtful questions about the company's current GRC practices and future goals. This not only shows your interest in the role but also gives you a chance to assess if the company is the right fit for you.
