Information Security Analyst

Tasks

• Administer and maintain GRC platform
• Collect and maintain SOC 2 evidence
• Coordinate phishing simulations
• Draft and maintain RFP responses
• Maintain governance policy inventory
• Maintain risk register
• Maintain trust page content
• Manage access reviews
• Run security awareness training
• Support ISO 27001 compliance
• Support ISO 42001 compliance
• Track compliance evidence and reporting
• Track penetration test findings remediation
• Track vendor security assessments

Perks/Benefits

• AI governance alignment
• Cross-functional exposure

Skills/Tech-stack

Access Review | Awareness Training | GDPR | GRC | ISO 27001 | ISO 42001 | Incident Response | Incident response documentation | NIST CSF | Penetration Testing | Phishing simulation | RFP Response | Response documentation | Risk Management | Risk register | SOC 2 | Security Awareness Training | Security assessment | Security awareness | Third Party | Third-Party Risk | Third-party risk management | Vanta | Vendor Security Assessment | Vendor security | Vulnerability Management