Grc Analyst

Description:

Are you a dynamic and passionate professional eager to make an impact in the InfoSec & Business Consulting space? Join Global GCB, a fast-growing company at the intersection of technology and compliance.

Role Overview:

As a GRC Analyst, sitting in between the technology and compliance teams, you will be responsible for managing information security governance, as well as provide consultancy to the business on information/ business risk and security controls. You will also be responsible for managing ISO 27001 or related standard / regulated compliance, as well as conducting security assessments and working with external auditors.

Primary Responsibilities:

• Develop, review, and update policies, procedures, and any other documents related to Information Security and associated domains.

• Conduct risk assessments and business impact analysis (BIA).

• Maintain the Information Security Risk Register and take active follow-ups on open items with relevant stakeholders.

• Liaison with Information Technology, Internal Audit Compliance Departments, and External Audit and act as a primary point of contact on behalf of the Information Security Department.

• Liaison with HR Department, develop and execute employee awareness program by delivering in-house and online InfoSec training and issuance of security advisories regularly.

Requirements:

· Bachelor's degree in Computer Science, IT, Software Engineering, Information Systems, or a related field.

· Strong communication skills.

· Preferred Certifications: ISO 27001 Lead Implementer/Auditor, ISO 22301 Lead Implementer/Auditor, ITIL Foundation, COBIT Foundation.