Information Security Risk & Compliance GRC Analyst - Belfast

Information Security Risk & Compliance GRC Analyst - Belfast

  • Location

    Belfast, County Antrim

  • Sector:

    Cyber Security & IT Risk

  • Job type:


  • Salary:


  • Contact:

    Andrew Nitek

  • Contact email:


  • Job ref:


  • Consultant:


Superb opportunity to join a global organisation in their Belfast head office in a new role. The role will focus on the completion of client information security questionnaires, audit preparation/ execution, fault detection and resolution

On a day to day basis the role will involve:

  • Supporting the activity of the Information Security Team, including:
    • Virus reports
    • Investigations
    • Security incident response
    • ISO27001 audits & compliance
    • Security Awareness
    • Induction training
    • 3rd Party vendor security reviews
  • Support Information Security client assurance & compliance activity
  • Deal with security-related support calls in ServiceNow and liaise with both clients and other IT teams to resolve these calls promptly
  • Lead on security initiatives and project-manage them
  • Represent the Security Team in change control as required
  • Require the holder to achieve effective peer networking and form strong working relationships
  • Perform regular audits of user account administration and security exceptions

Key requirements

  • Must have experience in a technical environment, preferably within the legal or finance sectors. Usage of Active Directory, operating systems, computer networking and personal computer architectures, together with support call work in these areas.
  • A good understanding of security technologies such as:
    • Anti-virus
    • Encryption
    • Access control
    • OS security
    • IDS
    • Mobile security
    • Firewalls
    • Vulnerability analysis
    • Network security & TCP/IP
  • A considered, methodical approach with attention to detail and high accuracy rates
  • A focus on security and the capacity to consider the wider information security implications of an event and be able to carry out risk assessments
  • Be familiar with key legal/regulatory requirements such as the DPA, FOI, GDPR and CMA
  • Self-starter with the ability to plan, organise and deliver work to an acceptable timescale, without close supervision
  • Ability to plan and co-ordinate information from various sources
  • Ability to effectively prioritise and balance users' requests with good security practices. Ability to suggest secure solutions to a given problem.
  • Excellent communication skills, both written and verbal
  • Must display flexibility and a willingness to adapt to new working practices as required
  • Able to balance common sense with technical ability and to react clearly and consistently under pressure
  • Must be degree qualified (BSc Information Security, Computer Forensics or other Computing Science Degree)
  • Security certifications such as the following are advantageous:
    • CISSP
    • Microsoft security certification