Senior GRC Analyst (12 Month Fixed Term)

We are seeking a Senior GRC Analyst to strengthen our governance, risk, and compliance capabilities. The role will lead the organisation’s efforts to achieve ISO 27001 certification within the next 12 months and drive continued maturity across our security and compliance programmes.

Requirements

• Experienced in buy-side and sell-side due diligence, customer security questionnaires, and vendor risk assessments.
• Strong working knowledge of frameworks such as ISO 27001, NIST CSF, CIS Controls, and SOC 2.
• Skilled in developing cybersecurity policies, standards, and control requirements.
• Experienced with operational risk methodologies and control assurance.
• Comfortable with GRC platforms and workflow/ticketing tools.
• Analytical, detail-oriented, and capable of producing clear, audit-ready documentation.
• Excellent communicator able to simplify complex topics for non-technical audiences and influence stakeholders.
• Strong multitasker with the ability to lead parallel initiatives and work collaboratively.
• Proactive and committed to staying current on security trends, compliance standards, and emerging risks.

Benefits

• Competitive pay
• Bonus eligibility
• Flexible hybrid work environment