Candidates: Create an Account or Sign In
Candidates: Create an Account or Sign In
Job Title: GRC Security Analyst
Location: Southampton
Salary: Up to £50,000 per annum (DOE)
Hours: 37.5 hours per week
Hybrid Working: Initially office-based, with hybrid options available after onboarding
Cooper Lomaz is partnering with a global organisation to recruit a GRC Security Analyst. This is a fantastic opportunity to join a growing team where you will play a pivotal role in governance, risk, and compliance (GRC), ensuring adherence to industry security standards and frameworks.
About the Role
As a GRC Security Analyst, you will work closely with the wider security team to develop, maintain, and enhance the organisation's ISMS. Your expertise in risk management, compliance, and security policies will help strengthen the organisation's security posture and ensure ongoing adherence to ISO 27001 and other regulatory requirements.
Key Responsibilities
Develop, implement, and maintain security policies, procedures, and governance frameworks.
Lead and support compliance efforts for ISO 27001, GDPR, and other relevant regulations.
Manage and maintain risk registers, conducting risk assessments and recommending mitigation strategies.
Conduct internal and external audits, address findings, and oversee continuous improvement initiatives.
Ensure effective security asset management, identifying and mitigating potential vulnerabilities.
Collaborate with internal stakeholders to strengthen security awareness and compliance culture.
Support incident response, ensuring swift resolution and future risk reduction.
Oversee patch management processes to ensure security risks are minimised.Skills & Experience Required
Minimum 3 years' experience in a GRC or IT security role.
Certifications such as CompTIA Security+, ISO 27001 Lead Implementer/Auditor, CISSP, or CISM (desirable).
Strong understanding of ISO 27001 compliance, audits, and risk management.
Proven experience in developing and maintaining security policies and governance frameworks.
Hands-on experience managing an Information Security Management System (ISMS).
Excellent analytical and problem-solving skills, with the ability to assess risks and propose solutions.Additional Information
Sponsorship is not available - applicants must have the right to work in the UK.
Candidates must be local to Southampton due to initial on-site requirements.Our client is looking to hire quickly, so if you meet the criteria and are ready for your next challenge, apply now
