CrawlJobs Logo
Crédit Agricole Logo Crédit Agricole · IT - Administration

Information Security – GRC Intern

United Kingdom, London · Job Posted February 14, 2026
Apply Position
Job Link Share

Job Description

Join our Information Security Services (ISS) UK team as an Information Security – GRC Intern, reporting directly to the Head of Information Security GRC Officer. This role is designed for a dynamic, self-motivated individual with a knack for Information Security and a passion for data analytics and automation. You will focus on automating information security controls, optimizing security control processes, and supporting IT risk management initiatives.

Job Responsibility

  • Map existing security controls to the CIS Critical Security Controls framework to identify coverage gaps and prioritize remediation efforts
  • Support the alignment and documentation of security policies and procedures with CIS Controls, ensuring the implementation of foundational safeguards across Implementation Groups
  • Build automated data collection and validation for key Security controls including access re-certifications, reconciliations, and periodic security routines
  • Develop scripts and workflows to eliminate manual, repetitive security tasks
  • Create automated sanity checks and data quality monitoring for security metrics
  • Produce KPIs, dashboards, and detailed reports for the team and business stakeholders
  • Identify automation opportunities within the security controls catalogue
  • Streamline existing manual processes through scripting or workflow automation
  • Measure and report on efficiency gains from automation initiatives

Requirements

  • Must have graduated in the past 18 months with a minimum of a 2:1 or equivalent
  • SQL and database querying capabilities
  • Strong analytical and problem-solving mindset with an automation-first thinking approach
  • Ability to work independently within established guidelines and procedures
  • Excellent interpersonal and communication skills, including tact and diplomacy
  • Ability to build effective working relations with users and colleagues
  • Ability to deliver various tasks within tight deadlines
  • Good knowledge of cybersecurity risks and data analytics tools
  • Advanced proficiency in Excel, VBA, and Power BI
  • Working knowledge of automation tools such as Power Automate, Python, and PowerShell

What we offer

  • Dynamic and collaborative work environment
  • CSR embraced in day-to-day business operation
  • Innovation encouraged
  • Diversity celebrated
  • Commitment to sustainability and corporate responsibility
  • People-centric culture where everyone is valued
  • Opportunities for personal and professional growth
Crédit Agricole - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Security – GRC Intern

8 matching positions

Information Security Technician

As an Information Security (IS) Technician, you are a member of the EarthSoft IT...
Location
Location
United States
Salary
Salary:
Not provided
earthsoft.com Logo
EarthSoft
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to research, troubleshoot, and resolve issues using a variety of resources and tools
  • Ability to use critical thinking and creative problem-solving skills
  • Ability to communicate with others accurately and professionally in high-stress situations
  • Willingness to learn and apply the learned information to perform assigned tasks
  • Able to work independently and adapt to different situations and assignments
  • Adaptability
  • Ability to manage and prioritize multiple tasks simultaneously, with input from team members and/or Manager as needed
  • 5+ years of experience working with a variety of software applications, computer and networking hardware, information security, and/or in the IT industry
  • Some flexibility in work schedule by performing certain tasks outside of normal business hours
  • Experience with Microsoft Azure services (with an emphasis on security tools and services)
Job Responsibility
Job Responsibility
  • Provide technical assistance and implementation to support ongoing information security compliance initiatives for various frameworks (including SOC 2, ISO 27001, FedRAMP, CMMC, and others)
  • Coordinate with other IT and IS staff to ensure that security tools and processes are implemented and configured to comply with established policies and procedures
  • Implement, maintain, and improve security tools and configurations with company’s Microsoft Office 365 and Microsoft Azure environments (both internal and hosting environments)
  • Coordinate with the Product Department to implement and improve our secure software development life cycle (SAST, DAST, penetration tests, vulnerability scans, dependency review, threat modeling, etc.)
  • Assist with the selection and implementation of regular company-wide and team-specific security trainings
  • Assist with responses to external security questionnaires
  • Monitor and manage company security tools (including GRC and SIEM system(s))
  • Respond to information security incidents promptly and appropriately
  • Assist with technical/security review of new vendors and contractors
  • Assist with other IT and/or IS tasks as needed
Read More
Arrow Right

Security GRC Analyst

Juni is seeking a Security GRC (Governance, Risk, and Compliance) Analyst to pla...
Location
Location
Sweden , Stockholm; Gothenburg
Salary
Salary:
Not provided
juni.co Logo
Juni
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2 to 4 years of experience in information security governance, risk, or compliance roles
  • Demonstrated experience with compliance frameworks and regulations (e.g., PCI DSS, ISO 27001, GDPR, PSD2, EBA outsourcing and DORA)
  • Degree in Cybersecurity or Information Systems or similar
  • Knowledge of security frameworks (e.g., CIS Controls, NIST CSF)
  • Solid understanding of risk assessment methodologies and hands-on experience with risk registers and third-party risk management
  • Experience in coordinating activities for security certifications and audits
  • Ability to develop and track security metrics (KPIs)
  • Strong analytical, problem-solving, and organisational skills
  • Excellent communication skills, comfortable presenting to various stakeholders
  • A proactive and independent worker who is also a strong team player
Job Responsibility
Job Responsibility
  • Maintain and update core security documentation, including policies, procedures, and instructions, ensuring they remain current and relevant
  • Identify, collect, and analyse data to track key security performance indicators (KPIs) and metrics, generating reports and dashboards to communicate security performance to stakeholders
  • Maintain the risk register and support daily risk management activities with growing independence
  • Follow up on the remediation of risks identified in new projects, third-party engagements, and other business initiatives
  • Conduct thorough security posture assessments of new vendors and perform periodic reviews of existing ones
  • Support our 3rd party procurement process
  • Monitor the implementation and effectiveness of security controls across the organisation
  • Coordinate and support activities to maintain key security certifications, including PCI-DSS and ISO 27001
  • Coordinate and support the implementation of remediation plans to address identified compliance gaps
  • Provide support in responding to security-related questions during partner due diligence and assist in providing necessary information for cyber insurance renewals
What we offer
What we offer
  • Work hybrid
  • Meet all Junis IRL at the company onsite each year
  • Diversity is at our core
  • Progress your career whether you choose to manage people or not
  • Stock options
  • Vacation 30 days
  • Private Health insurance
  • Beautiful offices in central Gothenburg and Stockholm, front row sea view
  • Fulltime
Read More
Arrow Right

Security GRC Analyst

Plan, perform and control the activities to assure Blockchain.com’s controls are...
Location
Location
Argentina , Buenos Aires
Salary
Salary:
Not provided
blockchain.com Logo
Blockchain
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Forward-looking and strategic minded, with an eye to understanding potential risks, legal and compliance implications
  • Good knowledge of IT risk areas including regulatory, operational, information and energy industry specific
  • Good overall knowledge of application and infrastructure security control mechanisms
  • Advanced command of the English language
  • 2+ years experience in audit and security certifications such as ISO, SOC and PCI
  • Education Four-year college degree (or equivalent)
Job Responsibility
Job Responsibility
  • Oversee execution and completion of applications related security controls ensuring effectiveness
  • Design, create and share policies, standards and procedures to ensure demonstrable regulatory /legal control. Communicate changes to internal stakeholders
  • Conduct preliminary self-assessment control tests of the applicable controls
  • Track and document remediation actions as result of audit findings
  • Host internal/external IT audits including walkthroughs, retaining test evidence for in scope assets and tracking action plans to either remediate or mitigate potential risk exposure findings
  • Conduct the quarterly User Access reviews process including information gathering, management responses tracking, and results review to follow through on corrective actions
  • Develop, implement and maintain a risk register. Contribute results to the corporate dashboard
  • Participate in new tools/partners/investors due diligences
  • Have an active participation in Digital projects and perform other activities assigned by the Manager
What we offer
What we offer
  • Amazing and accessible office location in Palermo
  • Apple equipment
  • Full-time salary based on experience and meaningful equity in an industry-leading company
  • The opportunity to be a key player and build your career at a rapidly expanding, global technology company in an emerging field
  • Flexible work culture
  • Work from Anywhere Policy: You can work remotely from anywhere in the world for up to 20 days per year
  • Fulltime
Read More
Arrow Right

Security Strategy and Risk Management Head of Department

The Security Strategy and Risk Management Head of Department is a senior leaders...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across Information Security, GRC/Risk Management, customer/vendor security management and/or strategic operations
  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Administration or a related discipline
  • Excellent stakeholder management, communication, and leadership skills
  • Demonstrated experience working across multi-disciplinary teams to achieve common objectives
  • Proficient in English for effective communication and coordination
Job Responsibility
Job Responsibility
  • Lead enterprise-wide risk assessment, risk issue management, and risk exception management
  • Maintain and enhance risk management frameworks aligned with industry best practices
  • Deliver insightful, data-driven risk reporting to senior leadership
  • Oversee the Information Security compliance and control assurance program
  • Lead coordination of internal and external audits, assessments, and certification processes
  • Lead the Third-Party Risk Management (TPRM) program
  • Oversee creation, governance, maintenance, and communication of Information Security policies, standards, and procedures
  • Direct the Information Security Training and Awareness program
  • Partner with the CISO to define and maintain the Information Security strategic roadmap
  • Lead budget planning, forecasting, tracking, and optimization for the full Information Security organization
  • Fulltime
Read More
Arrow Right

Information Security GRC Officer

As a leader of the Information Security function at Paystack, you will contribut...
Location
Location
South Africa
Salary
Salary:
Not provided
talentsafari.io Logo
Talent Safari
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience with information security governance, risk, and compliance for a global organization (preferably with reliance on cloud computing)
  • Experience developing and publishing company-wide policies, standards, and other governance documents
  • Experience in implementing industry standards frameworks/regulations such as Secure Controls Framework (SCF), ISO 27001, NIST Cybersecurity Frameworks, Business Continuity (as it aligns with ISO22301)
  • Ability to manage and prioritize multiple tasks and projects, and assist/advise your team in establishing appropriate priorities
  • Ability to manage key customer relationships, including with senior management across business units
  • Ability to influence a cross-functional and cross-business unit team to accomplish goals
  • Excellent analytical skills and ability to learn quickly
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Contributing to establishing strategic information security objectives across Paystack
  • Contributing to the strategic direction for Security Governance, Risk Management, and Compliance that aligns with the overarching Security objectives of the company
  • Understanding the unique challenges of securing the Paystack platform across different markets and demographics
  • Identifying control gaps and testing the design of existing controls
  • Determining risk management controls and recommending improvements to company-wide controls
  • Ability to work effectively with a team to execute various security projects, evaluate controls, and plan around solutions
  • Ability to communicate effectively
  • Ability to own and manage portions of the security program and provide consistent status updates to Security Leadership regarding progress against objectives
  • Raise accountability by escalating issues in a timely manner and creating and maintaining detailed documentation
  • Stay up-to-date with trends in the information security community
What we offer
What we offer
  • Competitive compensation package and benefits
  • Stripe Equity compensation
  • Full medical coverage
  • Wellbeing stipend
  • Generous leave and sabbatical policies
  • Hybrid working environment
  • Smart, kind colleagues who’re invested in your growth
  • Fulltime
Read More
Arrow Right

Senior GRC Consultant

The Information Security Analyst will be responsible for maintaining and enhanci...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in Information Security and GRC
  • Strong understanding of risk management methodologies and international security standards (e.g., ISO 27001, US NIST, TSA, etc.) and the ability to assess risks, identify vulnerabilities, etc.
  • Familiarity with data privacy legislation such as EU GDPR
  • Experience maintaining and auditing Information Security Management Systems (ISMS) in line with ISO 27001
  • Customer service-oriented with the ability to build strong relationships with internal stakeholders
  • Analytical and creative thinking skills, with the ability to identify pragmatic solutions
  • The ability to organize the daily work schedule and delegate where necessary
  • Strong verbal and written proficiency in English and German.
Job Responsibility
Job Responsibility
  • Maintain the Information Security Management System (ISMS) in accordance with ISO 27001
  • Conduct audit against Telecommunications Security Act (TSA) and other applicable local and regional compliance standards
  • Analyze and evaluate internal projects to identify risks and define appropriate compensatory measures
  • Prepare and present reports on information security including areas for improvement
  • Manage and update content for the information security awareness platform for employees and key suppliers, ensuring up-to-date training on information and cybersecurity best practices
  • Research and recommend security enhancements and improvements.
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options.
Read More
Arrow Right

GRC Consultant

The Information Security Manager will play a crucial role in safeguarding the or...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in Information Security and GRC
  • Strong understanding of risk management methodologies and international security standards (e.g., ISO 27001, US NIST, TSA, etc.) and the ability to assess risks, identify vulnerabilities, etc.
  • Familiarity with data privacy legislation such as EU GDPR
  • Experience maintaining and auditing Information Security Management Systems (ISMS) in line with ISO 27001
  • Customer service-oriented with the ability to build strong relationships with internal stakeholders
  • Analytical and creative thinking skills, with the ability to identify pragmatic solutions
  • The ability to organize the daily work schedule and delegate where necessary
  • Strong verbal and written proficiency in English and German.
Job Responsibility
Job Responsibility
  • Maintain the Information Security Management System (ISMS) in accordance with ISO 27001
  • Conduct audit against Telecommunications Security Act (TSA) and other applicable local and regional compliance standards
  • Analyze and evaluate internal projects to identify risks and define appropriate compensatory measures
  • Prepare and present reports on information security including areas for improvement
  • Manage and update content for the information security awareness platform for employees and key suppliers, ensuring up-to-date training on information and cybersecurity best practices
  • Research and recommend security enhancements and improvements
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options
Read More
Arrow Right

Information Security GRC Analyst

Our Financial Services client has an exciting vacancy within their Information S...
Location
Location
United Kingdom , Liverpool
Salary
Salary:
40000.00 - 50000.00 GBP / Year
brosterbuchanan.com Logo
Broster Buchanan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2 – 3 years’ experience in information security roles
  • Experience with risk assessment methodologies
  • Excellent analytical and problem-solving skills with attention to detail
  • Strong communication skills with the ability to explain complex security concepts to non – technical stakeholders
  • Knowledge of information security frameworks such as ISO 27001 or NIST
  • Eligibility to work in the UK
Job Responsibility
Job Responsibility
  • Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion
  • Support the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards
  • Support third party risk management processes
  • Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities
  • Manage security architecture reviews for new systems and services
  • Evaluate security controls and recommending improvements
  • Support the implementation of security tools and technologies
  • Provide oversight of the security incident management process
  • Provide security metrics for interested parties at all levels
  • Support the security awareness programme to promote a culture of security within all levels of the Group
  • Fulltime
Read More
Arrow Right