Cyber Security Senior Analyst - GRC

Security Policies and Procedures:

• Assist in the development and implementation of information security policies, standards, and procedures.
• Educate employees on information security best practices and enforce compliance with policies.

Security Awareness and Training:

• Collaborate in developing and delivering security awareness programs and training sessions.
• Educate customers on security best practices, policies, and procedures to foster a security-conscious culture.

Security Governance and Compliance:

• Support clients in establishing effective security governance frameworks, including roles, responsibilities, and accountability.
• Assist in implementing and managing compliance programs, ensuring adherence to relevant regulations, standards, and frameworks (e.g., PCI DSS, ISO 27001).
• Help clients prepare for and respond to external audits and compliance assessments.

Information Security Audits:

• Conduct information security assessments for clients, including risk assessments and Cybersecurity maturity assessments, compliance audits, Third-party audits, etc.
• Identify security gaps, vulnerabilities, and risks in client’s IT infrastructure and processes.
• Write good quality reports of security audits / assessments.
• Understanding of technical concepts relevant to the position.