Contract Opportunity: GRC Analyst (Security Compliance Analyst)

Contract Opportunity: GRC Analyst (Security Compliance Analyst)

Location: Hybrid - Exeter (1-2 days per month on-site)
Rate: £400-£450 per day (Inside IR35)
Duration: 6 months

I'm recruiting for a GRC Analyst to join on a 6 month contract, supporting the organisation's security compliance function. Reporting directly to the Security Compliance Manager, you'll play a key role in ensuring information assets are protected, risks are identified and mitigated, and compliance with regulatory requirements is maintained.
This is a hands on role where you'll review IT policies and procedures, conduct an ISO 27001:2022 gap analysis, and provide actionable recommendations to strengthen the organisation's security posture.

Key Responsibilities

• Review and update IT security policies and procedures
• Conduct ISO 27001:2022 gap analysis across the Group
• Provide feedback and recommendations to enhance security measures
• Support the development and implementation of new security policies and systems
• Deliver training to staff on security protocols and compliance requirements

Essential Skills & Experience

• Strong knowledge of ISO 27001 (2022 standard)
• Ideally certified as Lead Auditor/Lead Implementer
• Experience in information security compliance and risk management
• Ability to translate regulatory requirements into practical business processes
• Excellent communication and stakeholder engagement skills

If this is of interest please respond with your most up to date CV and I'll give you a call if you look like a good fit