Security Analyst (GRC)

Overview

We are seeking an experienced Security Analyst to support the governance, compliance, and assurance activities of a large, multi-agency technology environment. This role is ideal for a security professional with strong ISO27001, audit, and risk management experience who enjoys working across complex partnerships and regulatory frameworks.

You will play a key role in ensuring information security controls, policies, and standards are consistently implemented, measured, and improved across multiple stakeholders.

Responsibilities

• Conduct security assurance and compliance assessments
• Support and maintain the ISO27001 ISMS
• Coordinate ISMS, E8 and security audits
• Manage audit evidence, control owners and remediation
• Perform risk, vulnerability and access reviews
• Maintain security metrics and compliance reporting
• Provide security governance and policy advice to partner agencies...