GRC Analyst Cybersecurity £70-75k Remote
Overview:
We are currently partnered with an award-winning cybersecurity firm specialising in Identity and Access Management (IAM) solutions. They are seeking a GRC Analyst with a strong background in ISO 27001 to support their clients in achieving their governance, risk, and compliance objectives. This is a fantastic opportunity for someone with consultancy experience who enjoys problem-solving, client interaction, and continuous learning in a fast-paced environment.
Role & Responsibilities:
* Assist clients with the implementation, maintenance, and improvement of their ISO 27001 Information Security Management Systems (ISMS)
* Conduct gap analysis, risk assessments, and internal audits to identify areas of non-compliance and recommend solutions
* Develop and review information security policies, procedures, and controls
* Support clients through ISO 27001 certification and surveillance audits
* Deliver clear and actionable reports and recommendations
* Provide advisory services on GRC best practices and industry standards
* Collaborate with cross-functional teams to ensure projects are delivered on time and to the highest standard
* Stay updated on industry trends, regulatory requirements, and emerging risks
Essential Skills & Experience:
* ISO 27001 expertise, including implementation, auditing, or consultancy experience
* Previous experience in a consultancy or client-facing environment
* Strong understanding of risk management principles and GRC frameworks
* Experience with other standards such as ISO 22301, NIST, or SOC 2
* Excellent communication, stakeholder management, and problem-solving skills
* Relevant certifications (e.g., ISO 27001 Lead Auditor/Implementer, CISA, CISM) are a bonus
Package:
* Up to £70-75,000 basic salary
* Excellent benefits
* Professional development opportunities
* Fully remote role