FIND_THE_RIGHTJOB.
GRC Analyst
JOB_REQUIREMENTS
Hires in
Not specified
Employment Type
Not specified
Company Location
Not specified
Salary
Not specified
Department: INFORMATION SECURITY Experience: 1 YearDeadline: December 24, 2025Location: Rawalpindi, Pakistan
Job Profile
Job Summary
The GRC Analyst will support the development, implementation, and maintenance of Governance, Risk, and Compliance (GRC) frameworks, ensuring organizational alignment with regulatory requirements and industry best practices. The role involves assisting in risk assessments, compliance monitoring, documentation management, and audit readiness to strengthen the overall security posture of the organization.
Key Responsibilities
- Support in the implementation and maintenance of Governance, Risk, and Compliance frameworks and policies.
- Conduct and document risk assessments; track and monitor mitigation activities.
- Ensure compliance with standards such as ISO 27001, NIST, HIPAA, GDPR, or other applicable local regulations.
- Maintain and update policies, procedures, and compliance documentation.
- Coordinate with internal teams to ensure audit readiness and support external/internal audits.
- Stay informed of evolving regulations, standards, and best practices related to GRC.
Requirements
- Bachelor’s degree in Computer Science, Information Security, Risk Management, or related field.
- 1–3 years of experience in GRC, information security, compliance, or related roles.
- Familiarity with frameworks such as ISO 27001, NIST, HIPAA, GDPR, and risk management methodologies.
- Strong analytical and documentation skills.
- Relevant certifications (preferred): ISO 27001 Lead Implementer/Lead Auditor, CISA, CRISC, or similar.
Tools / Skills
Skills & Competencies – GRC Analyst
- Strong understanding of Governance, Risk, and Compliance frameworks including ISO 27001, NIST, HIPAA, GDPR, COBIT, SOC 2, and PCI-DSS.
- Hands-on experience with risk assessment methodologies, compliance monitoring, and audit preparation.
- Ability to develop, document, and maintain security policies, procedures, and controls.
- Familiarity with GRC tools and platforms (e.g., Archer, ServiceNow GRC, MetricStream, OneTrust).
- Strong analytical and problem-solving skills with the ability to translate technical requirements into business needs.
- Excellent reporting, documentation, and presentation skills for both technical and executive audiences.
- Effective communication and collaboration skills to work with cross-functional teams (IT, Legal, Audit, Operations).
- High attention to detail, organizational skills, and adaptability to evolving compliance standards.
- Preferred certifications: ISO 27001 Lead Auditor/Implementer, CISA, CRISC, CISM, or Data Privacy certifications (GDPR/CCPA).
Additional Information
Total Position(s)
1 Positions
Gender
Does not matter
Minimum Education
Bachelors Degree
Degree Title
Bachelors Degree
Shift
Evening
Nature of Job
Work From Office
Similar jobs
Social Media Consultant
Logic Valley (Pvt) Ltd
Rawalpindi, Pakistan
4 days ago
Sales/Recruiting Analyst
EMIT Learning PK
Rawalpindi, Pakistan
4 days ago
SEO Specialist
The Smart Object
Rawalpindi, Pakistan
4 days ago
SEO Expert
Think Higher Consultants
Rawalpindi, Pakistan
4 days ago
Jr. SEO Executive
Tech Solutions Pro
Rawalpindi, Pakistan
4 days ago
Ecommerce Analyst (On-SIte, Night Shift)
Cloud Rexpo Pvt. Ltd.
Rawalpindi, Pakistan
5 days ago
© 2025 Qureos. All rights reserved.