Cambridge
GRC Analyst Duration - 12 months Location - Cambridge, UK (Hybrid working 2-3 days per week in HQ) Inside ir35 A GRC Analyst ensures an organization is compliant with industry standards, regulations, and policies while identifying and mitigating cybersecurity risks. Their responsibilities include conducting risk assessments, developing and maintaining security policies, preparing for audits, managing controls, providing training on security and data privacy, and reporting on risk and compliance status to stakeholders. This role requires a blend of business and cybersecurity knowledge, strong analytical skills, and effective communication to maintain a strong security posture. Key Responsibilities • ___:Assist in identifying, assessing, and documenting IT and business risks, and maintain a risk register., • ___:Support the creation and review of governance policies, risk frameworks, and security standards., • ___:Track and ensure adherence to regulatory requirements, industry frameworks (like ___), and legal standards (such as ___ or ___)., • ___:Help prepare for internal and external audits and gather necessary evidence., • ___:Implement, test, and document security controls to ensure their effectiveness., • ___:Conduct or support security awareness and data privacy training for employees., • ___:Participate in incident response planning and help ensure incident response plans are up-to-date., • ___:Prepare and present reports to management on the organization's compliance status and risk levels, offering recommendations for improvement. Required Skills and Knowledge • Technical Skills:Governance, risk management, compliance, risk analysis, and familiarity with cybersecurity best practices and controls. SOC2 experience, • Regulatory Knowledge:Understanding of relevant compliance frameworks and regulations like ISO 27001, GDPR, and HIPAA., • Communication Skills:Ability to clearly communicate with and advise stakeholders, management, and various departments., • Analytical & Problem-Solving:Strong ability to analyze issues, solve problems, and make strategic recommendations., • Documentation:Proficiency in maintaining comprehensive documentation for controls, risks, and compliance activities. Ideal Industries GRC Analysts are crucial in industries with strong compliance requirements and sensitive data, such as: • Finance, • Healthcare, • Technology and Software
Chef & Cook
Waiters
Bar Staff
Retail
Kitchen Porter
Barista
Fast Food
Accounting & Finance
Animal Care
Art, Media, Design
Child Care
Cleaning
Construction & Trades
Customer Service
Driver & Delivery
Education
Engineering
Events & Promotion
Fashion
Healthcare
Information Technology
Legal
Management
Manufacturing
Office & Admin
Online Jobs
Sales & Marketing
Salon & Beauty
Science
Security
Sports & Wellness
Warehouse
Writing & Editing
Other