GRC Analyst – Cybersecurity – £70-75k – Remote
 
Overview:
We are currently partnered with an award-winning cybersecurity firm specialising in Identity and Access Management (IAM) solutions. They are seeking a GRC Analyst with a strong background in ISO 27001 to support their clients in achieving their governance, risk, and compliance objectives. This is a fantastic opportunity for someone with consultancy experience who enjoys problem-solving, client interaction, and continuous learning in a fast-paced environment.
 
Role & Responsibilities:

Assist clients with the implementation, maintenance, and improvement of their ISO 27001 Information Security Management Systems (ISMS)
Conduct gap analysis, risk assessments, and internal audits to identify areas of non-compliance and recommend solutions
Develop and review information security policies, procedures, and controls
Support clients through ISO 27001 certification and surveillance audits
Deliver clear and actionable reports and recommendations
Provide advisory services on GRC best practices and industry standards
Collaborate with cross-functional teams to ensure projects are delivered on time and to the highest standard
Stay updated on industry trends, regulatory requirements, and emerging risks 
Essential Skills & Experience:

ISO 27001 expertise, including implementation, auditing, or consultancy experience
Previous experience in a consultancy or client-facing environment 
Strong understanding of risk management principles and GRC frameworks
Experience with other standards such as ISO 22301, NIST, or SOC 2 
Excellent communication, stakeholder management, and problem-solving skills
Relevant certifications (e.g., ISO 27001 Lead Auditor/Implementer, CISA, CISM) are a bonus 
Package:

Up to £70-75,000 basic salary
Excellent benefits
Professional development opportunities
Fully remote role