Senior Information Security Analyst - Compliance & GRC - agility

Key Responsibilities

• Lead comprehensive risk assessments and gap analyses to identify security weaknesses across the organization.
• Develop, implement, and maintain security policies, procedures, and controls aligned with ISO 27001, PCI‑DSS, and other regulatory frameworks.
• Coordinate and conduct internal and external security audits, ensuring timely remediation of findings.
• Collaborate with cross‑functional teams to embed security best practices into project lifecycles and technology deployments.
• Prepare and present detailed compliance reports to senior leadership and regulatory bodies.

Requirements

• 5+ years of experience in information security with a strong focus on compliance and GRC.
• In-depth knowledge of ISO 27001, PCI‑DSS, NIST, and other relevant standards.
• Proven ability to design and enforce security controls, conduct audits, and manage remediation efforts.
• Excellent communication skills, capable of translating technical findings into actionable business recommendations.
• Relevant certifications such as CISSP, CISM, or CRISC are highly desirable.