Job Description
Job Overview:
The GRC Risk Analyst will be responsible for identifying, analysing and influencing the management of Enterprise IT (EIT) and Enterprise Security (ES) risks.
Responsibilities:
- Support internal and external partners on matters of risk assessments, security controls, and framework requirements. Ensuring security and compliance requirements are understood.
- Coordinate EIT responses to regulatory inquiries and audits, making sure Arm is compliant.
- Support EIT business continuity management (BCM) needs. Operationalizing and assuring a capability of safeguarding our services and operations in the face of disruption and disaster. Further, to mature this capability to put us on a firm path to becoming operationally resilient.
- Ensuring continuity and recovery plans are detailed, approved, tested, and maintained by asset owners and custodians.
- Develop tactical and positive relationships within the business, partners and vendors.
- Develop Standard Operating Procedures (SOP) to detail procedures for risk assessments, third party assessments, and business process workflows for Security Governance, Risk, Resilience and Compliance.
- Ensure that fundamental information on accountable technology is accurate (e.g. KB Articles / process maps / training documents and presentations / RACI / Contract information).
- Identify and raise ris...