Information Security GRC Analyst
External
Gedu · London, UKFull-timeOn-site3w ago
ComplianceDocumentationInformation Security
Prepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
Responsibilities
- Perform risk assessments in line with security best practice and GBS/GEDU information security policies and procedures.
- Support the Information Security Manager in maintaining the corporate IS risk register and compiling monthly reporting to Senior Management via monthly and ad-hoc dashboards and summaries .
- Support the Information Security Manager to implement ISO 27001 framework for GBS and GEDU Group.
- Work with stakeholders to identify corrective action plans and reduce risks to acceptable levels.
- Continually improve the information security risk assessment process and documentation.
- Carry out third-party risk assessments for GBS and GEDU group.
- Produce, update and review all information security policies, and provide appropriate training where needed.
- Maintain and ensure compliance with all external regulatory requirements.
- Track and report on external and internal information security audit findings to ensure successful closure and completion.
- Maintain and assist in the regular update and provision of security awareness training to all levels of staff.
- Assist in efforts to plan and track progress toward security certifications (e.g., Cyber Essentials Plus)
- Assist with technical analysis and investigations by working collaboratively with technical analysts and the Information Security Manager
Requirements
- Bachelor's degree in information technology, Computer Science, or a related field.
- ISO 27001 Lead Implementor Certification /ISO 27001 Internal Auditor Certification. CGEIT/CRISC/CGRC Certification essential
- ESSENTIAL SKILLS and EXPERIENCE:
- Proven experience in implementing ISO 27001 compliance and Business Continuity/ITDR is mandatory.
- Experience in working with Governance Risk Compliance (GRC) and GRC reporting
- More than 5 years of experience in Information Security, Risk and IT
- Experience in performing impact, likelihood and risk analyses / assessments.
- Ability to 'translate' technical security issues into business risk.
- DESIRABLE SKILLS and EXPERIENCE:
- Knowledge of cyber audit and frameworks desirable
- Ability to form complex communications/messages/policies in a simple, clear and concise manner to various stakeholders and interested parties
- Analytical mindset and creative problem-solving links
Benefits
Time off that fits your lifestyle - 33 days annual leave (including bank holidays), 1-day extra leave per year of service (up to 5 days) and Buy/Sell additional holidays (up to 5 days)Opportunities for growth - tuition reimbursement for career development courses, wide variety of training coursesPension Scheme and Flexible Benefits (via salary sacrifice) - Cycle to Work, Workplace Nursery, Tech, Health, Dental and Life Assurance schemes, Women's Health scheme (via Hertlity), and much moreDiscounts, Perks and Employee Assistance: Perks@Work discounts platform, Employee Assistance Programme (EAP), discounted gym membership, eyecare vouchers and much moreReward for your impact - annual salary increase reviews, annual discretionary bonus, £500 award, employee referral schemeGBS is committed to equality, diversity and inclusion and providing a workplace free from discrimination or harassment. We welcome applications from all backgrounds and communities. We take our core values seriously and work hard to create an environment where everyone feels welcomed.
Additional Information
Department: IT Infrastructure Location: Greenford (UB6), West London Type of Contract: Permanent Working Pattern: Full-Time - 40 hrs Per Week Salary Range: £40,000 to £42,500 Our Vision: Changing lives through education. We're looking for an Information Security GRC professional to join our team! If you have experience in risk, compliance, and frameworks like ISO 27001 or NIST, this is a great opportunity to make an impact across GBS and the GEDU Group. Please note, we are unable to offer sponsorship for this position.
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at Gedu? Share your experience