Engineer the Quantum RevolutionYour expertise can help us shape the future of quantum computing at Oxford Ionics.

View Open Roles

Senior Governance, Risk, and Compliance (GRC) Analyst

London
7 months ago
Applications closed

Related Jobs

View all jobs

Head of Cybersecurity Governance Risk and Compliance

Senior Associate – Cybersecurity Risk Analyst: BAS Testing and Risk Profiling (Global role – in a virtual working environment)

Senior Associate – Cybersecurity Risk Analyst: BAS Testing and Risk Profiling (Global role – in a virtual working environment)

Governance & Risk Information Security Analyst

Senior Cyber Security Analyst

Senior Cyber Security Architect

Job Title: Senior Governance, Risk, and Compliance (GRC) Analyst

Location: London (Remote) once a month in office for meetings

Salary: £75,000 to £90,000 Depending on experience

Employment Type: Full-Time

Function description:

Support the delivery of the Third-Party Risk / Vendor Management process including managing assessments and tooling.
Play a key role in supporting the Cyber Intelligence, Threat Detection, Crisis Preparedness and Response, Penetration Testing and Vulnerability Management efforts at the OSB.
Support operational workflows by performing risk-based security reviews of operational systems, applications and third-party integrations.
Engage with Technology colleagues and relevant partners to realise the full potential of the OSB's Security Operations capabilities.
Leverage a mix of technologies (detection and prevention), processes and human capital to ensure emerging, new, and existing cyber security threats to the organisation are managed appropriately.

Role Description:

Responsibilities will include:

Monitor external intelligence sources to research and evaluate emerging cyber security and technology developments, threats and vulnerabilities of relevance to the OSB, and determine how to manage them adequately and effectively.
Plan for disaster recovery and create response and contingency plans in the event of security incidents.
Test and evaluate security solutions and advise on how they can be leveraged to address security challenges.
Coordinate penetration testing and 'ethical hacking efforts for the OSB and ensure the delivery of actionable contextualised reports.
Perform security assessments of applications, systems, and networks, to identify potential weaknesses and ensure adequate defence against exploits of applicable vulnerabilities.
Monitor identity and access management, including monitoring for abuse of permissions by authorised system users.
Generate customised reports for both technical and non-technical staff and stakeholders on new threats or vulnerabilities driven by analysis, incidents, and adversary engagement.
Maintain an information security risk register and assist with internal and external audits relating to information security.
Assist with the creation, maintenance and delivery of a cyber security awareness programme for colleagues and other stakeholders.
Be an advocate of Information Security both within the Operations function and throughout the rest of the organisation. Provide advice and guidance to staff and other stakeholders on a wide range of security issues.
Partner with the Technology team and the wider organisation to ensure that activities and projects are secure by design and implementation.

Skills, Competencies, Experience:

Wide experience in a cyber security position
MSSP
CRISC, CISM Qualifications or equivalent preferred
Strong technical background in security controls / operations, system, network security and security frameworks such as SOC, NIST, ISO27002, CIS.
Expert understanding of the elements of cyber malware-space. Specifically, key threat actors and their motivations, attack types, routes of attack, services, and tools.
Extensive experience of Threat Intelligence, Anomaly Detection and Response, Data Leakage Prevention, Intrusion Analysis and SIEM solutions.
Experienced working with, and enabling organisations heavily invested / investing in cloud-based technologies.
Previous relevant experience of working within an international and complex professional services, start-up or highly regulated industry would be an advantage.
Strong analytical and problem-solving skills with ability to balance multiple priorities and meet deadlines, adjust to changing priorities.
Identify and drive opportunities to further enhance the security posture of the OSB.
Experience of working in a Security Operations Centre or partnering with / working for a Managed Security Service Provider would be an advantage.
A hands-on, forward thinker, with a flexible mindset and ability to work in a fast-moving environment that embraces autonomy and is accountable for results.

If you are a forward-thinking cybersecurity professional ready to take on new challenges, we encourage you to apply. Join our client in their mission to enhance security and compliance in a dynamic environment.

Our client is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Adecco is a disability-confident employer. It is important to us that we run an inclusive and accessible recruitment process to support candidates of all backgrounds and all abilities to apply. Adecco is committed to building a supportive environment for you to explore the next steps in your career. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

The Future of Cybersecurity Jobs: Careers That Don’t Exist Yet

Cybersecurity has moved from a specialist concern to a national and global priority. Once seen as an IT issue, it is now a boardroom subject, a government responsibility, and a daily reality for individuals. With the increasing reliance on digital infrastructure, cloud platforms, and artificial intelligence, the risks posed by cyber threats have never been higher. The UK’s cybersecurity sector is thriving. It is home to thousands of companies offering defence services, penetration testing, encryption solutions, and critical infrastructure protection. Demand for cybersecurity skills continues to rise, with both the public and private sector investing heavily to defend against ransomware, nation-state cyber operations, and new forms of digital crime. Yet the industry is still at the beginning of its journey. The technologies that will define the next two decades—artificial intelligence, quantum computing, extended reality, and the Internet of Things—are only just starting to reshape cybersecurity. This means that many of the most important cybersecurity jobs of the future don’t even exist today. This article explores why new roles will emerge, what they might look like, how today’s jobs will evolve, why the UK is well-positioned to lead, and how professionals can prepare.

Seasonal Hiring Peaks for Cybersecurity Jobs: The Best Months to Apply & Why

The UK's cybersecurity sector has emerged as one of the most critical and lucrative technology markets, with roles spanning from security analysts to penetration testers and chief information security officers. With cybersecurity positions commanding salaries from £28,000 for junior security analysts to £140,000+ for senior security architects, understanding when organisations actively recruit can dramatically impact your career trajectory in this essential field. Unlike traditional IT sectors, cybersecurity hiring follows distinct patterns influenced by threat landscapes, regulatory compliance cycles, and incident response requirements. The sector's unique combination of perpetual threat evolution, regulatory pressures, and skills shortages creates predictable hiring windows that strategic professionals can leverage to advance their careers in protecting Britain's digital infrastructure. This comprehensive guide explores the optimal timing for cybersecurity job applications in the UK, examining how cyber threat cycles, compliance deadlines, and government initiatives influence recruitment patterns, and why strategic timing can determine whether you join a cutting-edge security consultancy or miss the opportunity to defend against tomorrow's cyber threats.

Pre-Employment Checks for Cyber Security Jobs: DBS, References & Right-to-Work and more Explained

The cyber security sector in the UK stands at the forefront of protecting national infrastructure, business operations, and personal data from increasingly sophisticated cyber threats. As organisations across all sectors recognise cyber security as a critical business function, employers are implementing the most rigorous pre-employment screening processes in the technology industry to ensure they recruit professionals capable of defending against advanced persistent threats and maintaining the highest standards of security and trustworthiness. Whether you're a penetration tester, security analyst, incident response specialist, or chief information security officer, understanding the comprehensive vetting requirements is essential for successfully advancing your career in this security-critical field. This detailed guide explores the extensive background checks and screening processes you'll encounter when applying for cyber security positions in the UK, from fundamental eligibility verification to the most stringent security clearance requirements and specialised threat intelligence assessments.