Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. EEO/AA/M/F/Disabled/Vets
Job Description :
Senior Governance, Risk and Compliance (GRC) Analyst
The Governance, Risk and Compliance (GRC) Analystwill have a strong understanding of cyber security control principles, privacy principles and a sound understanding of regulatory and compliance requirements.
Support the maintenance of the Newscorp Global Cyber GRC Program, including the management, monitoring and reporting of cyber risks and issues, cyber security policy exceptions, performing cyber due diligence against Newscorp’s 3rd party supply chain, support the review and implementation of standards guidelines and processes to ensure compliance is maintained and cyber risk is reduced.
What’s the role?
Support assessment of cyber security controls to identify compliance with cyber security policy requirements across the business.
Support the implementation and review of cyber risk assessments and cyber control assurance by collaborating with both local and global team members.
Support the management and monitoring of 3rd party vendors through vendor risk assessments. Review vendor findings and work transparently with key stakeholders on remediating, mitigating or accepting the cyber risks and issues identified.
Support internal and external stakeholders for Cyber Security compliance requirements for PCI DSS, SOX and Privacy compliance.
Support the Cyber Security Awareness Manager during awareness campaigns, including the reporting of findings, points of interest and lessons learnt analysis.
Contribute to the regular reporting of cyber security metrics to measure and track cyber risk and the effectiveness of the Cyber risk and issue management function.
Who are you?`
4+ years’ experience within Cyber Security or Technology Risk related fields
Demonstrated experience in cyber governance, cyber risk and compliance in dynamic and complex business environment
Knowledge and (preferably) experience with industry frameworks and standards such as NIST CSF, PCI DSS, IT General Controls and ISO 27001
Strong communication skills and the ability to work autonomously
Qualification in information security or risk management highly regarded
What’s in it for you?
Collaborative environment
Opportunity to innovate, challenge the norm and pioneer the way forward
Variety of work where no two days are the same
Exposure to global operations, teams and networks
Preferred Certifications (not required)
CRISC (Certified in RIsk and Information Security)
CISSP (Certified Informations Systems Security Professional)
Any other relevant certifications in the space of cyber security
This job is posted with NTS Technology Services Pvt. Ltd.
Job Category:
