Sorry, this job is no longer available.

(Loading More Opportunities)

Security GRC Analyst

About the role The Security GRC Analyst is a direct support role for the GRC Principle, responsible for risk administration within the team as the risk interface for the rest of the Zellis business. It also has a dotted line of reporting to the corporate compliance and risk function. Youll provide management of the risk lifecycle in the GRC tool and will work closely on risk identification and will be exposed to a mixed and varied technical environment. The role is also accountable for reading and analysing multiple data sources, creating visual models to represent possible outcomes and preparing reports about business decisions where security is a factor. The reduction of risk is a key principle of this role and it will actively seek out security threats, weaknesses and vulnerabilities, assign owners and ensure remediation of these risk factors. Key responsibilities include: Identification, management and reduction of security risk. Management and production of all security risk intelligence and collateral. Support customer Security risk engagements with internal and external customers, ensuring required records, evidence and other artefacts are produced as needed. Provide 1st line response for customers, both internal and external, in relation to all information security risk requests. Monitor service queues in relation to requests and work packages assigned to the risk function, ensuring they are completed and communication to stakeholders is clear. Support the general information security function as required in relation to risk-based incidents. Assist with the day-to day running and monitoring of Information Security Systems and tooling as needed. Assist in ongoing investigations and report upon Information Security risks. Support Security Managers in conducting risk assessments and owning and maintaining the GRC risk register. Assist in all aspects of Security projects and service improvements as required as part of a multidiscipline agile team. Skills and experience required Working towards or owns a recognised qualification in a security or risk discipline, or the equivalent combination of education, professional training or work experience in a similar role. Develops an excellent understanding of current and emerging Security practices and standards, including ISO27001:2013, CSA, Cyber Essentials, and NIST principles. Can demonstrate the main principles of a risk management process and articulates the importance of maintaining accurate risk records and protecting a body of evidence. Can identify the threats, weakness and vulnerabilities associated with key assets and provide guidance on response and remediation. Knowledge of information risk analysis and security operations. Develops a good understanding of the risks that the organisation faces both internally and externally in its corporate, supplier and customer base. Develops a very good working knowledge of the procedures and tools used within the security practice. Demonstrates good communication skills, with a confident style. Can articulate in spoken and written English to a very high standard. Must be a good listener,be sure not to miss the important detail. Takes accountability and ownership of issues, being proactive in resolution. Carries out duties meticulously and thoroughly. Is always client centric, appreciating the expectations of our customers. About Us Zellis is the leading provider of payroll and HR solutions for the UK & Ireland. Together with Benefex and Moorepay we form the Zellis Group, serving a vast array of companies across every vertical and industry. Our purpose is to make people feel appreciated for the work they do through precision, choice, and magic. We have over 50 years of heritage and industry experience and weve been ahead of the curve throughout. More than half a century ago, we were founded as Peterborough Data Processing. Quite a lot has changed since then not least our name. We were acquired by Northgate, becoming NorthgateArinso in 2007 and NGA Human Resources UK and Ireland in 2014, where we were joined by Moorepay. In 2018, the UK and Ireland division was sold to Bain Capital and now we operate as a standalone company, Zellis. After acquiring Benefex, were now even better equipped to serve the complex needs of our customers. Our vision is to be the clear leader in pay, reward, analytics, and people experiences. Were proud of our culture and we work hard to create an environment where people want to join, belong to, and be part of a progressive organisation. Our values, which were defined with input from all of our 2,000 colleagues, are not empty words on a poster: Unstoppable together. Always learning. Make it count.
Bristol, England, UK