GRC Analyst

About Rimes

Rimes provides enterprise data management solutions to the global investment community. Driven by our passion for solving the most complex data problems, we provide our clients with investment intelligence that powers more than US$75 trillion in assets under management annually. The world’s leading institutional investors, asset managers and service providers rely on Rimes to help them make better investment decisions using accurate information and industry-leading technology.

The Opportunity: 

The role of GRC Analyst has been created to complement our growing Cyber Security team by working closely with our Senior GRC Analyst and Head of Security to drive maturity in our information security compliance initiatives, as well as by assisting in policy development, risk assessments, and audits. This is a great opportunity for someone passionate about cybersecurity and looking to build a career in information security and risk management. 

What you will do: 

• Assistance in completing client and prospective client security audits 

• Assistance in acquiring and maintaining ISO27001 certification and assurance of ongoing compliance  

• Assisting in the remediation planning and execution against compliance gaps 

• Engaging with suppliers with an aim to complete the due diligence processes  

• Assistance in the management of supplier risk 

• Assist in the development, review, and implementation of security policies, procedures, and standards. 

• Ensure alignment with industry best practices, regulatory requirements (e.g., ISO 27001, NIST, GDPR), and company objectives. 

• Work closely with IT, security teams, and business units to improve security governance processes. 

• Stay updated with emerging security threats, frameworks, and compliance trends. 

Who you are: 

• Experience with buy and sell side due diligence processes 

• Understanding and working knowledge of control frameworks based on industry best practices such as NIST, CIS, SOC2, and ISO27001  

• Understanding of cybersecurity policies and standards 

• Experience with operational risk frameworks 

• Understanding of risk assessment methodologies and security controls. 

• Familiarity with GRC tools and ticketing systems is a plus. 

• Strong analytical, problem-solving, and attention to detail. 

• Excellent written and verbal communication skills. 

• Ability to work in a team environment and manage multiple tasks. 

• Strong written and verbal communication skills to efficiently convey technical concepts to non-technical stakeholders 

• Strong desire to learn and keep up with latest trends and security frameworks 

• If you have certifications like CompTIA Security+, ISO 27001, Certified in Governance, Certified in Cybersecurity, or Risk & Compliance (CGRC), it’s a plus but not required! 

What We Offer:  

• Career Growth – Gain hands-on experience in information security and GRC. 

• Training & Development – Access to security certifications, courses, and mentorship. 

• Impact – Play a role in protecting company assets and ensuring compliance. 

• Supportive Team – Work in a collaborative and inclusive environment. 

Compensation: Competitive pay and bonus eligibility 

Work Life Balance: Flexible hybrid work environment 

Our Values:  

• Client excellence 

• Innovation 

• Integrity 

• Empowerment 

Only selected candidates will be contacted for interviews. We appreciate your understanding. Thank you for considering a career with us.

Rimes is committed to promote the values of diversity and inclusion throughout the business. Whether it’s through recruitment, retention, career progression or training and development, we are committed to improving opportunities for people regardless of their background or circumstances.

Visit our Careers page to see our complete listings.