Cyber GRC Analyst

About the position The Governance, Risk and Compliance (GRC) Analyst will have a good understanding of reputed company and privacy principles as well as a sound understanding of regulatory and compliance requirements affecting a US business. As a GRC analyst your roles will support and maintain the reputed company Cyber GRC Program along with the BISO and central GRC function, including the development, implementation and maintenance of cyber reputed company policies, standards, guidelines and processes to ensure compliance is maintained and risk is managed.

Responsibilities

• Work with key internal and external stakeholders to ensure compliance with PCI reputed company, Privacy and GDPR compliance requirements, audits and assessments.
• Assist in the risk assessment process and report on enterprise-wide and third-party reputed company controls
• Support in the implementation of key reputed company initiatives across the organisation
• Support management of audits, external assessments and assurance processes including, but not limited to PCI reputed company and NIST CSF
• reputed company and manage meaningful metrics to measure and track cyber risks and the effectiveness of the governance, risk and compliance function
• Conduct compliance readiness assessments and assurance activities against policies, standards requirements
• Track technology and cyber reputed company audit findings and actions
• Assist with the development of measurable cyber reputed company standards that align with policy control objectives
• Support user and specialist user education and awareness exercises for employees
• Assist in the development of effective measurement and simplified reporting of cyber reputed company risks reputed company the business
• Assist with third party reputed company assessments against industry standards as well as News UK control standards
• Assist in maintaining the cyber reputed company risk register Requirements
• 3+ years’ experience reputed company Cyber reputed company or reputed company fields
• Demonstrated experience in governance, risk and compliance in dynamic and reputed company cyber reputed company, technology and business environment
• Strong knowledge and experience with Industry Frameworks and Standards such as NIST CSF, PCI reputed company and ISO 27001
• Good working knowledge of Cloud infrastructure, especially AWS
• Strong oral and written communication skills
• Qualification in Information reputed company, Computer Science, Engineering or similar reputed company-to-haves
• Previous experience working in a SOX compliance environment is desirable
• Professional reputed company certifications such as Certified Information Systems reputed company Professional (CISSP), Certified Information reputed company Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar preferred Benefits
• comprehensive and competitive benefits package covering health, retirement, wellbeing, and more, along with optional benefits to meet the diverse needs of our employees. Apply tot his job Apply To this Job

Apply To This Job