Senior GRC Analyst

Posted 4 Days Ago
Be an Early Applicant
Kent, New Forest, Hampshire, England
Senior level
Information Technology • Consulting
The Role
The Senior GRC Analyst will help clients develop information security policies, assess vendor risks, and ensure compliance with regulatory requirements within the financial services sector. Responsibilities include performing due diligence assessments, providing guidance on risk management, and conducting security awareness training.
Summary Generated by Built In

Job Description:

We are seeking a highly skilled and experienced Senior Governance Risk and Compliance (GRC) Analyst to assist customers in meeting their cybersecurity regulatory and legal requirements.

Analysts will work with customers to develop formalized information security policies, analyze the efficacy of current policies and procedures, and evaluate the risks posed by third-party providers.

The ideal candidate will have a solid understanding of information security strategies suitable for small and mid-size businesses within the financial services sector coupled with a solid grasp. 

 

Responsibilities (including but not limited to):

  • Coordinating and working with clients to develop formalized Written Information Security Programs (WISPs)
  • Performing cybersecurity due diligence assessments on client vendors
  • Engaging with the cybersecurity engineering team to assist with client risk management and technical gaps with regulatory requirements.
  • Assist with providing strategic guidance and oversight on regulatory and risk management procedures for multiple clients’ cybersecurity programs.
  • Assisting clients in meeting regulatory requirements via policy review and testing (e.g., Incident Response tabletop exercises)
  • Assisting clients with their own due diligence questionnaire and fielding cybersecurity and compliance questions
  • Providing customized end-user security awareness training via presentations and simulated phishing campaigns
  • Researching and keeping up to date with industry compliance regulations, most specifically within the investment and financial services space including FCA, SEC, and DORA.
  • Build and maintain strong relationships with clients, understanding their unique compliance challenges and providing tailored solutions.
  • Internally assess, evaluate, and make recommendations to management regarding the adequacy of the security policies and documentation.
  • Serving as a lead resource for compliance-based information security gap assessments for various regulations and frameworks. (NIST CSF, CIS CSC v8, ISO27001, DORA, etc.)


Skills:

  • Basic operational capabilities for the Office 365 stack (Microsoft Word, Excel, Outlook)
  • Strong ability to direct self-work with excellent organizational and time management skills.
  • Excellent verbal and written communication skills, especially when communicating technical concepts to non-technical audiences.
  • Critical and creative thinking to strategize how to add value to customer engagements and improve processes
  • Exceptional spelling and grammar skills for writing and proofreading documents.
  • Ability to remain flexible as processes continuously improve.
  • Proficiency in regulatory and security framework gap assessments.
  • Proven expertise in the realm of identity and access management (IAM) leveraging solutions such as Privileged Identity Management (PIM) and conditional access policies.
  • Experience working with cloud automation to include infrastructure as code and compliance as code.
  • Experience configuring and supporting endpoint security tools (EDR, Encryption, Behavior Analysis)
  • Strong attention to detail and well organized.
  • Highly motivated to continuously learn, grow and innovate.

 

Qualifications:

Education:

  • Bachelors’ Degree (Masters’ Preferred) in one of the following areas of concentration: Computer Science, Software Development, Information Technology, Cybersecurity.

 

Experience:

  • 3+ years GRC experience including information security policy development and certification/regulatory gap analysis (such as ISO 27001, CIS CSC v8, etc.)
  • Experience within the investment and financial services state preferred.
  • ISACA CRISC, ISC2 CGRC, or CompTIA CySA+ preferred.
  • Knowledge of Secure Software Development Life Cycle (SSDLC) practices is a plus.
  • Automation and problem-solving skills a plus.
  • Must be available to work 8am-5pm GMT Monday-Friday

 

Certifications:

  • Relevant certifications such as CISM, CRISC, CGRC, CySA+, or Security+.

Top Skills

Cybersecurity
The Company
HQ: Dallas, Texas
310 Employees
On-site Workplace
Year Founded: 2008

What We Do

Abacus Group, LLC is a leading provider of hosted IT solutions and service focused on helping alternative investment firms by providing an enterprise technology platform specifically designed for the unique needs of the financial services industry. The innovative and award-winning Abacus Cloud platform allows investment managers to source all technology needs as a service, offering the capacity to scale on demand to meet current and future cybersecurity, storage and compliance requirements. The company has offices in New York, NY; San Francisco, CA; Boston, MA; Dallas, TX; Greenwich, CT; Los Angeles, CA; Charlotte, NC; and London, England. For more information, visit www.abacusgroupllc.com

Jobs at Similar Companies

Silverfort Logo Silverfort

Commercial Sales Manager- East

Information Technology • Sales • Security • Cybersecurity • Automation
Remote
8 Locations
357 Employees

Jobba Trade Technologies, Inc. Logo Jobba Trade Technologies, Inc.

Senior Back End Developer

Cloud • Information Technology • Productivity • Professional Services • Software
Remote
Hybrid
Chicago, IL, USA
45 Employees

InCommodities Logo InCommodities

Head of People & Culture - NA

Information Technology • Machine Learning • Analytics • Energy • Automation • Renewable Energy
Hybrid
Austin, TX, USA
234 Employees

Similar Companies Hiring

Silverfort Thumbnail
Security • Sales • Information Technology • Cybersecurity • Automation
GB
357 Employees
Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
InCommodities Thumbnail
Renewable Energy • Machine Learning • Information Technology • Energy • Automation • Analytics
Austin, TX
234 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account