Information Security Analyst GRC

Information Security Analyst GRC

Information Security Analyst GRC



Use URL to apply.

Job description

The Security GRC Analyst will be responsible for

  • Responding/supporting client security assessments including due diligence activity, compliance questionnaires, vendor assurance, and RFPs in a timely, accurate, and effective manner
  • Work closely with GRC team to do periodic assessment & audit activities in areas of cloud, identity & data governance, risk and compliance related assessments, policy and procedures, awareness, and training for end users, change management, internal control identification and measurement per applicable guidelines and frameworks: ISO 27001, C5, NIST 800, NIST/CSF, PCI, GDPR etc.
  • Support the company in achieving security accreditations such as ISO27001, SOC 2, SOX and C5

Skills and Experience:

  • Minimum of 2 years hands-on experience in Information Security or a role that is focused on information technology internal controls design, test, audit, risk assessments, investigations, findings, and remediation.
  • Knowledge of policies, standards and frameworks including ISO, NIST 800-53, NIST/CSF, C5, HITRUST, SOX, SOC2 etc.
  • Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents. Proficiency in oral and written English
  • Ability to set priorities independently
  • Strong project management, analytical and interpersonal skills
  • Functional skills such as the ability to direct the action of others, to facilitate meetings, and to report status in a clear and concise manner
  • Knowledge and expertise in the use of project management and CI/CD Agile methodologies and tools will be a big plus
  • Experience with Microsoft Power BI or similar business analytics tools



  • Bachelors Degree in Computer Science, Cybersecurity, Risk Management or equivalent preferred
  • If any Certifications are awesome, more the better like: CISSP, CCSP, Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), ISO or equivalents.

Role: System Security Engineer

Industry Type: Recruitment / Staffing

Department IT & Information Security

Employment TypeFull Time, Permanent

Role Category IT Security


UG :Any Graduate

PG :Any Postgraduate

Key Skills

(i) Change management

(ii) ISO

(iii) Project management

(iv) Business analytics

(v) Analytical

About Company

Resource Access Management Solutions Pvt. Ltd.