GRC Analyst – Controls Testing & Assurance
Bury, GB-BUR, BL9 8RR, GBR
GBP 40K-45K (estimate) Mid-level Full Time
Tasks
- Assess control design adequacy
- Assess control operating effectiveness
- Collect review and evaluate control evidence
- Coordinate evidence requests for IT audits
- Determine root cause and risk impact
- Execute control testing of ITGC and cybersecurity controls
- Facilitate audit walkthroughs
- Identify control gaps and deficiencies
- Identify opportunities to improve ITGC testing program
- Maintain GRC tooling dashboards and metrics
- Maintain ITGC and cybersecurity control library
- Maintain working papers and test documentation
- Plan risk based control testing
- Prepare audit evidence packs
- Recommend remediation actions
- Report exceptions and testing results
- Support GRC policy standard and procedure updates
- Support audit readiness activities
- Support control remediation reporting
- Support control self-assessment processes
- Support technology controls framework maintenance
- Track control remediation and escalate overdue items
Perks/Benefits
Skills/Tech-stack
Access Management | Audit Methodology | Audit Reporting | COBIT | Change Management | Cloud Security | Computer Operations | Control Design | Control Evidence | Control Evidence Review | Control Operating Effectiveness | Control Self-Assessment | Control Testing | Control design assessment | Cybersecurity controls | Data Protection | Design assessment | Encryption | Evidence review | GRC Tooling | General controls | ISO 27001 | IT General Controls | Identity and Access Management | Identity and access | Incident Response | Logging and Monitoring | NIST | Network Security | Operating Effectiveness | Remediation planning | Risk-Based Testing | Risk-based | SOX ITGC | Self-assessment | Third Party | Third-Party Risk | Vulnerability Management
Education
N/A
Roles
Analyst | Audit Analyst | GRC Analyst | IT | IT Audit | IT Audit Analyst
Related jobs
-
Information Security Coordinator GBP 41K-44KAccess Management | Account provisioning | Customer Service | ISMS | IT SupportHybrid work | Permanent employment | Security clearance supportMid-level Full TimeBristol (SGB), United Kingdom19h ago
-
Senior CIRT / Threat Intel Analyst GBP 64K-80KCloud Security | Detection and Response | Endpoint Detection and Response | Endpoint detection | ForensicsContinuing education program | Continuous learning access | Family-friendly perks | Generous time off | Health care coverageSenior-level Full TimeUK - LONDON 25 ROPEMAKER STREET …19h ago
-
Security Operations Specialist GBP 51K-55KAzure | DLP | Detection engineering | IAM | Incident ResponseGenerous holiday package | Hybrid working model | Life assurance | Option to purchase additional holiday | Pension contributionSenior-level Full TimeLondon, United Kingdom1d ago
-
Security Operations Specialist GBP 51K-55KAzure | DLP | Detection engineering | IAM | Incident ResponseGenerous holiday package | Hybrid working | Life assurance | Option to purchase additional holiday | Pension contributionSenior-level Full TimeGlasgow, United Kingdom1d ago
-
Cyber Security Analyst - Risk GBP 44K-50KGDPR | ISO 27001 | Information security | NIST | PCI DSSColleague discount | Company pension | Employee assistance helpline | Inclusion networks | Parental leave policiesMid-level Full TimeAsda House, United Kingdom1d ago
-
IT Risk & Security Analyst GBP 40K-51KAccess Management | Active Directory | COBIT | Control Design | Control effectivenessEntry-level Full Time52 Lime Street, United Kingdom1d ago
-
Cyber Security Ops Analyst GBP 30K-38KAlert triage | Data Loss Prevention | Data Sanitization | Data loss | EDREmployee assistance programme | External training | Family leave | Hybrid work | Income protectionMid-level Full TimeBirmingham, UK2d ago
-
Information Security Analyst GBP 36K-38KData encryption | GDPR | ISO 27001 | Incident Response | NISTDiscounts | Employee assistance programme | Free bus travel | Hybrid working | Paid time offMid-level Full TimeStockport Shared Service Centre, United Kingdom2d ago
-
Junior Cyber Security Analyst GBP 36K-40KCybersecurity monitoring | Data handling | ISO 27001 | Incident Response | Information securityCourses | Critical illness cover | Cycle to work scheme | Flexible working patterns | Gym membershipEntry-level Full TimeLondon - Exchange Tower, United Kingdom2d ago
-
Cyber Security Analyst GBP 39K-50KAlert triage | Detection engineering | ISO27001 | Incident investigation | KQLCourses | Critical illness cover | Cycle to work scheme | Family-friendly policies | Flexible working patternsMid-level Full TimeLondon - Exchange Tower, United Kingdom2d ago
-
Cyber GRC Assessor GBP 47K-60KAudit Reporting | Compliance | Cyber Risk | Cyber Risk Assessment | Cyber Security25 days holiday entitlement | Critical illness cover | Cycle to work scheme | Family-friendly policies | Flexible working patternsMid-level Full TimeLondon - Exchange Tower, United Kingdom2d ago
-
Vulnerability Management Lead GBP 47K-65KCVSS | Cyber Essentials | Defender for Cloud | Exploitability analysis | ISO 2700125 days holiday | Critical illness cover | Generous pension | Gym membership | Health planSenior-level Full TimeLondon - Exchange Tower, United Kingdom2d ago
-
Manager, IT Security Engineering GBP 45K-55KAudit monitoring | Automation and response | Bash | Cloud Security | CryptographyMid-level Full TimeUK - Stockley Park, United Kingdom2d ago
-
Security Compliance Analyst GBP 45K-55KAudit planning | Controls Testing | Cyber Essentials | Cyber Essentials Plus | Evidence collectionFlexible scheduleMid-level Full TimeLondon, UK5d ago
-
Senior Cyber Security Analyst GBP 55K-65KGovernance Risk | Governance risk compliance | Information security | Risk Management | Risk complianceBonus | Career development | Employee assistance programme | Holiday allowance | Life assuranceSenior-level Full TimeSentinel Building, Glasgow, United Kingdom5d ago
-
Information Security GRC Analyst GBP 65K-72KDORA | GDPR | GRC platforms | GRC reporting | Governance RiskFlexible working arrangementsMid-level Full TimeGB London, United Kingdom5d ago
-
Onsite SIEM Analyst (Specialised) GBP 35K-45KAlert triage | Cyber Threat | Cyber Threat Intelligence | EDR | ElasticFlexible working arrangements | Hybrid working flexibility | Mental health support | Wellbeing programsEntry-level Full TimeWoking, GB5d ago
-
Onsite SIEM Analyst GBP 34K-40KAlert triage | Detection and Response | EDR | Elastic | Endpoint Detection and ResponseFlexible working options | Hybrid working | Training and development | Wellbeing supportEntry-level Full TimeWoking, GB5d ago
-
Senior IT Security Engineer GBP 72K-80KAccess Management | Active Directory | Agile | Application Firewall | Application SecurityBank holidays | Car salary sacrifice scheme | Company pension scheme | Cycle2work scheme | Discounts on retail and socialisingSenior-level Full TimeUnited Kingdom5d ago
-
Cyber Threat Intelligence (CTI) Analyst GBP 29K-31KAdversary TTPs | Cyber Threat | Cyber Threat Intelligence | ISO27001 | Indicators of compromiseCompany share purchase plan | Flexible work | Health and wellbeing rewards | Recognition awards | Team get-togethersMid-level Full TimeEdinburgh, United Kingdom6d ago
-
Cyber Threat Intelligence (CTI) Analyst GBP 29K-31KCountermeasures | Cyber Threat | Cyber Threat Intelligence | ISO 27001 | Indicators of compromiseEmployee share plan | Flexible work | Health and wellbeing rewardsMid-level Full TimeGreat Britain - Home Based, United … R6d ago
-
Chronicle | Detection and Response | EDR | Endpoint Detection and Response | Endpoint detectionAnnual leave | Employee discounts | Flexible benefits | Income protection | Life assuranceMid-level Full TimeLeeds, England, United Kingdom6d ago
-
Product Security Engineer (Multiple Levels) GBP 48K-57K800-53 | Access Management | CIS Controls | COBIT | Cloud SecurityContinuous Learning Hub | Cycle to work scheme | Discounted gym membership | Employee assistance programme | Flexible working optionsMid-level Full TimeBelfast 10 Mays Meadow, United Kingdom6d ago
-
Security SOC Analyst - UK Remote GBP 57K-70KAbnormal Security | Access Management | Cloud Security | Conditional Access | CrowdStrikeEmployee share options | Learning and development opportunities | Parental leave | Remote work | WFH office expense budgetMid-level Full TimeUnited Kingdom, WC1, United Kingdom R7d ago
-
Junior Penetration Tester (Cyber Analyst), Threat & Vulnerability Management – Cyber Security Division GBP 40K-45KApplication Security | Bash | Cloud Security | Governance Risk | Governance Risk and ComplianceAnnual leave | Career average pension | Flexible working | Hybrid working | Income protectionEntry-level Full TimeLeeds, United Kingdom R7d ago