Summary: The GRC Business Analyst will play a crucial role in enhancing governance, risk management, and compliance frameworks, focusing on SOC 2 and IT best practices. This position involves bridging technical implementation with business objectives, defining controls, analyzing risks, and ensuring compliance with regulatory standards. The role is remote hybrid, allowing for flexible working arrangements. The contract duration is between 6 to 12 months.

Key Responsibilities:

• Bridge the gap between technical implementation and business objectives.
• Define controls and analyze risks in alignment with SOC 2 Type II frameworks.
• Ensure processes meet regulatory and industry standards.
• Lead or support SOC 2 and ISO 27001 implementations across multiple entities.
• Utilize GRC tools effectively in project execution.
• Document processes and maintain excellent analytical standards.
• Manage stakeholder communications and relationships.
• Familiarize with audit processes and risk assessment methodologies.

Key Skills:

• 3+ years of experience as a Business Analyst, preferably in IT, GRC, or IT security.
• Experience with SOC 2 and ISO 27001 implementations.
• Proficiency in GRC tools (e.g., Vanta, OneTrust, ServiceNow GRC, LogicGate).
• Excellent analytical and documentation skills.
• Strong communication and stakeholder management capabilities.
• Familiarity with audit processes and risk assessment methodologies.

Salary (Rate): 75000

City: undetermined

Country: England

Working Arrangements: hybrid

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT