Summary: The GRC Business Analyst will play a crucial role in enhancing governance, risk management, and compliance frameworks, focusing on SOC 2 and IT best practices. This position involves bridging technical implementation with business objectives, defining controls, analyzing risks, and ensuring compliance with regulatory standards. The role is remote hybrid, allowing for flexible working arrangements. The ideal candidate will have experience in SOC 2 and ISO 27001 implementations and strong analytical and communication skills.

Key Responsibilities:

• Bridge the gap between technical implementation and business objectives.
• Define controls and analyze risks to ensure compliance with regulatory standards.
• Support SOC 2 Type II frameworks and other compliance initiatives.
• Utilize GRC tools to enhance governance and risk management processes.
• Collaborate with stakeholders to ensure alignment with industry standards.

Key Skills:

• Demonstrable experience with SOC 2 and ISO 27001 implementations.
• 3 years of experience as a Business Analyst, preferably in IT, GRC, or IT security.
• Experience with GRC tools (e.g., Vanta, OneTrust, ServiceNow GRC, LogicGate).
• Excellent analytical and documentation skills.
• Strong communication and stakeholder management capabilities.
• Familiarity with audit processes and risk assessment methodologies.

Salary (Rate): 75000

City: undetermined

Country: UK

Working Arrangements: hybrid

IR35 Status: undetermined

Seniority Level: Mid-Level

Industry: IT