Overview
Senior Information Security GRC Analyst – Permanent | Hybrid
We’re working with a leading international financial services group to find an experienced Senior Information Security GRC Analyst. This role will sit within a collaborative security function and focus on driving governance, risk, and compliance initiatives across the business. You’ll help strengthen the organisation’s security posture, ensure alignment with key regulatory requirements, and work closely with stakeholders across multiple regions.
What You’ll Do
* Lead and coordinate governance, risk, and compliance activities across multiple international offices.
* Review, improve, and implement security policies, standards, and processes in line with industry frameworks.
* Manage security risk assessments, track remediation actions, and ensure ongoing compliance with regulations such as DORA and operational resilience requirements.
* Partner with security and risk teams to define KPIs/KRIs and report on the organisation’s security performance.
* Support awareness initiatives, third-party security reviews, and compliance monitoring using relevant security tools.
* Contribute to key security projects, ensuring GRC considerations are embedded from the start.
What We’re Looking For
* Experience in information security governance, risk, and compliance.
* Strong knowledge of frameworks such as ISO 27001, NIST, or similar.
* Proven track record in regulatory compliance and risk management in multi-jurisdiction environments.
* Experience with technical compliance activities, including Microsoft Purview and other Microsoft 365 security and compliance features.
* Excellent stakeholder engagement skills, with the ability to influence and collaborate across all levels.
* Relevant industry certification (e.g., ISC², ISACA, ISO lead auditor/implementer) is desirable.
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology and Other
Industries
* Banking, Investment Banking, and Financial Services
#J-18808-Ljbffr