Part-time, FTC
TryHackMe is the fastest-growing online cyber security training platform. Our mission is to make learning and teaching cyber security easier by providing gamified security exercises and challenges. Having only been around for handful of years, we've grown to more than 4 million community members and our growth isn't slowing down!
The Role
We’re looking for a GRC Analyst to help bridge the gap between TryHackMe’s vast content catalog and recognised industry frameworks. This role is a part-time, fixed-term contract (6 months) with the possibility of transitioning to fulltime in the future.
Technical Skills & Experience
To be considered for this opportunity, you must have at least 5 years of relevant cyber security industry experience, with at least 3 years in a role such as Information Security Analyst / Officer, Cybersecurity Consultant, GRC Analyst, etc.
You should be able to demonstrate:
* Strong knowledge of cybersecurity frameworks such as MITRE ATT&CK and MITRE Defend, NIST series (800-53, NIST NICE, etc.), ISO 27001, CIS, OWASP, etc.
* A good understanding of networking, web applications, computing, and operating systems as they relate to security practices.
* Familiarity with defensive and offensive security concepts.
* Experience in creating and enforcing security policies, preferably in a remote-first, cross-national SaaS company.
* Excellent English communication skills.
* Strong verbal and written communication skills.
Responsibilities
* Connecting TryHackMe’s content catalog to industry-recognized cybersecurity frameworks: performing mapping exercises, gap analysis and recommending coverage improvements.
* Collaborating with the Content Engineering team on core TryHackMe products in order to align them to industry best practices.
* Assisting with the company’s internal information security tasks and requirements.
* Preparing security-related content (multiple-choice questions, cheat sheets, expert articles, industry analysis, etc.).
* Creating training content about cybersecurity frameworks, key concepts in GRC, and more.
* Collaborating with the Content Leadership team in ensuring the company’s strategy aligns with industry frameworks and best practices.
Preferred Skills (nice-to-have)
* Instructional design or training experience (developing and running cybersecurity training).
* Certifications such as CISSP, CISM, ISO 27001, CISA, GSLC, ISO 27001 Lead Implementer are appreciated.
Benefits & Perks:
* 100% Remote: In a fully digital world, work from anywhere you want!
* Flexi Time: Choose your own hours as long as you have at least 4 hours of overlap with the UK timezone (from 8am - 6pm).
* Tools: A dedicated work laptop + any accessories you need to do your best work.
* Swag Pack: Start your TryHackMe journey with a branded swag bundle!
* Personal Development: £2,500 training budget to acquire certifications, and more.
* Company Retreat: An annual company retreat, fully paid for by us!
* Health Insurance: If you're in a country that doesn't have public health care.
* Enhanced Maternity & Paternity: An enhanced package on top of statutory requirements.
* 401k / Pension: TryHackMe makes it easy to save money for your retirement.
Our Hiring Process
* Stage 1: Short introduction call (30 mins)
* Stage 2: Technical Take Home Exercise
* Stage 3: Interview with our Content Engineering management (one hour)
* Stage 4: Final call with a Co-Founder (30 mins)
At this time, we are unable to provide sponsorship.
#J-18808-Ljbffr