GRC Analyst supporting ISO27001 certification preparation at Asiera. Collaborating with technical teams for documentation and compliance.
About the role
- Cyber GRC Senior Consultant supporting companies in enhancing cybersecurity and compliance. Collaborating with client teams to implement cybersecurity policies and conduct risk assessments.
Responsibilities
- Contribute to global projects within an international team, supported by over 330,000 technical specialists from our parent company
- Help develop consulting offerings and innovative go-to-market solutions for the C-suite to clarify and reduce cyber risks
- Lead and conduct risk analyses based on the NIST Cybersecurity Framework (NIST CSF)
- Responsible for designing innovative new services that leverage AI and ML where they provide real value
- Support presales, sales, and account management activities from the perspective of a subject matter expert
Requirements
- A relevant university degree (Bachelor's or Master's) in Information Security, Cybersecurity, or IT Security
- At least 1–5+ years of professional experience in Cyber Security / Information Security
- A broad business skills profile, including stakeholder management, problem-solving ability, and resilience
- Experience in collecting, validating, analyzing, documenting, and communicating information tailored to the audience
- Your diverse security experience ideally includes one or more of the following areas:
- Strong knowledge of the NIST Cybersecurity Framework (CSF)
- An advanced university degree in Cybersecurity or Information Security
- Familiarity with ISO 27001, NIS2, SOX, GDPR, and DORA
- Cyber due diligence assessments
- Cyber risk management for third parties and supply chains
- Review of incident response plans
- Support with tenders, RFP responses, and proposals
- Conducting crisis management exercises (CMX)
- Certifications such as CISSP, CISM, CISA, GSLC, GSTRT, GCPM
- Participation in the development of Target Operating Models (TOMs) and RACI matrices
- Creation of cyber security roadmaps
- Support for post-incident reviews
- Analysis and summarization of cyber threat intelligence reports
- Implementation of cyber compliance programs (GDPR, DORA, ISO 27001, NIS2, SOX)
- Cyber risk or maturity assessments
- Design and/or delivery of awareness training
- Work on identity & access management projects
- Work on privileged access management projects
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Internal Controls & Compliance Supervisor managing compliance with SOX and internal controls at Solventum, a healthcare company enhancing solutions for healthcare professionals.
Regulatory Affairs Specialist ensuring compliance and strategic oversight at Multiverse. Drafting regulatory submissions and coordinating oversight processes within a hybrid work environment.
Director of Deposit Compliance responsible for leading compliance efforts for deposit products at Northwest Bank. Ensuring adherence to regulations and managing risk assessment processes for effective compliance operations.
Chargé de la Qualité et Conformité en alternance pour Economie d’Energie. Soutenir la conformité et le contrôle interne tout en participant à la transition énergétique en France.
Senior Specialist responsible for corrective actions in Global Trade Compliance at L3Harris. Track compliance incidents and facilitate corrective action processes across US and non - US jurisdictions.
Regulatory Affair Specialist at Capgemini Engineering ensuring regulatory compliance with medical device documentation. Supporting regulatory activities and monitoring the regulatory context impact on site processes.
Compliance Analyst role at Leve Saúde ensuring adherence to regulations in the health sector. Responsibilities include audits, policy management, and due diligence processes.
Governance, Risk & Compliance Specialist at Quilter providing oversight on governance, risk, and compliance activities, strengthening Quilter Invest’s risk management culture across the organization.
Regulatory Specialist responsible for contributions in public consultations and regulatory studies. Engaging with institutional relations and ensuring adherence to energy regulations in Brazil.