CrawlJobs Logo

Senior Cyber Security GRC Analyst

finxl.com.au Logo

FinXL

Location Icon

Location:
Australia , North Sydney

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are currently seeking a Senior Cyber Security GRC Analyst to join FinXL and to support the definition, documentation & assurance of security controls aligned to NIST SP 800-53.

Job Responsibility:

Support the definition, documentation & assurance of security controls aligned to NIST SP 800-53

Requirements:

  • Experience as a Senior Cyber Security GRC Analyst
  • Strong experience in Cyber Security GRC, Risk, or Compliance roles
  • Experience working with control frameworks such as NIST SP 800-53
  • Experience writing policies, standards, and control documentation from scratch
  • Experience conducting control assurance, testing or audit support activities
  • Experience in stakeholder engagement, running workshops & influencing outcomes
  • Experience implementing security controls
  • Experience in control uplift or transformation programs
  • Experience translating NIST security controls into clear, business-friendly requirements
  • Experience defining control objectives, parameters & implementation guidance aligned to organisational context
  • Experience enabling control owners to provide accurate attestation of control effectiveness
  • Experience identifying gaps and driving remediation activities where required

Additional Information:

Job Posted:
May 11, 2026

Work Type:
On-site work
Icon
FinXL - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Cyber Security GRC Analyst

Cyber Manager's Control Assessment (MCA) Lead Analyst

This role will report to the Cybersecurity MCA Group Manager, responsible for pr...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Have at least 8+ years of relevant experience
  • Experience in Manager’s Control Assessment (MCA), Operational Risk, Information Security, Cybersecurity, Risk Management, and/or Governance, Risk and Control (GRC)
  • Risk Management, Cybersecurity, and/or Project Management certifications are a plus (e.g. CRISC, CISA, CISM, CISSP, PMP)
  • Proven experience in implementing sustainable solutions and improving processes
  • Bring creative approaches to help us drive value for clients
  • Ability to influence decisions with senior leadership and business partners when confronted with differing opinions on information security risks
  • Proficiency with Microsoft Office, advanced Excel skills (e.g. macros, pivots, complex formulas)
  • Knowledge of data visualization/analytics business applications such as Tableau, QlikView, and Microsoft Power BI
  • Familiarity with Machine Learning and Artificial Intelligence (AI) is a plus
  • Fluent in English (ability to read, write, and speak)
Job Responsibility
Job Responsibility
  • Manage the planning, coordination, and execution of MCA Transformation program for CISO
  • Drive MCA best practices, transformation, and execution consistency across business/functions
  • Lead efforts in Global Process MCA Profiles (GPMPs) and Continuous Risk Management (CRM) for CISO
  • Gain expert-level knowledge of MCA Standard, Procedure, and tools to support future-state MCA
  • Support CISO Business Processes, Control Owners, and Global Assessment Unit (GAU) Owners in their responsibilities related to MCA execution
  • Identify and document key controls necessary for mitigation of cybersecurity risk
  • Be a hands-on Subject Matter Expert (SME) with the ability to drive problem solving and root cause analyses, simplify complex messages and summarize key points
  • Partner with CISO’s Enterprise Architecture Methodology (EAM) Lead team by which taxonomies and processes interlink with each other, establishing a multifaceted matrix to inform decision-making and simplification
  • Foster constructive dialogue and facilitate open discussion, sharing of knowledge and experience with customers and stakeholders
  • Actively manage relationships with CISO business partners and risk management teams to achieve sustained success
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Cyber Security Assessment & Authorization Analyst

The Cyber Security Assessment & Authorization Analyst role at NTT DATA involves ...
Location
Location
United States , Rockville
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Management Information Systems, Computer Science, or related cybersecurity discipline
  • Minimum 8 years of experience with assessment and accreditation (A&A)
  • Minimum 8 years of experience as a security control assessor or validator
  • Minimum 8 years of experience with maintaining IT security policies, processes, and guidance
  • Minimum 3 years of experience with using GRC tool – CSAM
  • Ability to obtain a Public Trust Clearance
Job Responsibility
Job Responsibility
  • Support a client as an assessment and authorization (A&A) analyst, including A&A efforts for various agency systems
  • Leads the team on ISSO and Assessors in the day to day tasks
  • Maintain responsibility for supporting federal clients obtaining the authority to operate (ATO) for new and modernized systems
  • Serve as senior team lead providing guidance and working with team members in performance/delivery of all assigned A&A efforts
  • Adhere to the NIST Risk Management Framework (RMF) to support the A&A process, including analyzing the development of supporting policies, procedures, and plans, designing and implementing security controls, testing and validating security controls, and analyzing and tracking corrective action plans
  • Ensure all supporting artifacts and results will be documented in the A&A repository
  • Performing security controls assessments on security boundaries and producing required security documentation
  • Experience with NIST special publications (SPs) regarding the SA process, including SP 800-53, SP 800-137, and SP 800-37
  • Experience with continuous monitoring and plans of action and milestones (POA&M) management
  • Experience with assessing systems deployed in Cloud Environments
Read More
Arrow Right

Senior Risk Analyst

Join us as a Senior Risk Analyst and play a pivotal role in shaping the future o...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
tmgm.com Logo
TMGM
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years' experience across enterprise risk, operational risk, cyber security risk or internal audit, preferably within financial services
  • Demonstrated exposure to the design and implementation of effective risk management frameworks, and a sound working knowledge of ASIC requirements
  • Tertiary qualification in a related discipline (e.g., Finance, Business, Commerce, Risk, IT, Audit, or a related discipline)
  • Professional certifications such as FRM, CISA, CA, CPA, CIA, or equivalent are desirable
  • Prior exposure to Forex and CFD trading (or financial services) risk environment is preferred
  • Prior exposure to ICT, cybersecurity or IT Audit will be a plus
  • Excellent interpersonal and stakeholder engagement skills
  • Structured thinker with strong written and verbal communication skills
  • High attention to detail with strong analytical and reporting capabilities
  • Highly adaptable and able to manage multiple priorities in a demanding environment
Job Responsibility
Job Responsibility
  • Contribute to distinct types of risk identification, assessments, mitigation strategies, reporting, and monitoring across our businesses in alignment with our Enterprise Risk Management Framework
  • Proactively monitor emerging risks, trends, and systemic issues, escalating risks through appropriate channels, and supporting resolution as required
  • Manage Incidents and Breaches via Jira, including registering incidents in incident register and risk register, updating incident status, replying to customers, and notifying assessments and evaluations results to customers
  • Participate in cross-functional incident reviews, including CEO risk meetings, supporting timely resolution and comprehensive post-incident risk reporting
  • Support both short- and long-term initiatives stemming from incidents, helping embed risk management practices into core business operations
  • Help to drive improvements in risk reporting, analytics, and visualization to support decision-making
  • Promote a culture of continuous improvement by driving lessons-learned reviews and supporting the implementation of preventative measures
  • Assist in the delivery of assurance activities including RCSA, walkthroughs and control testing
  • Leverage data insights to identify control weaknesses and improvement opportunities, collaborating with control owners to implement effective enhancements
  • Help to prepare and update Business Continuity Plan (BCP) and the implementation of business continuity testing
What we offer
What we offer
  • Competitive salary and performance-based bonuses
  • Opportunities for career growth and development within a global company
  • Collaborative and inclusive work environment with exposure to cross-region operations
  • Health and wellness benefits
  • Flexible working arrangements
  • Fulltime
Read More
Arrow Right

Senior IT Risk Analyst

Berkshire Hathaway Specialty Insurance (BHSI) has an exciting opportunity for a ...
Location
Location
United States , Boston
Salary
Salary:
95000.00 - 125000.00 USD / Year
bhspecialty.com Logo
Berkshire Hathaway Specialty Insurance
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in IT risk, IT audit/compliance, or cyber GRC
  • Experience running RCSAs, defining KRIs/KPIs, and presenting risk insights to senior stakeholders
  • Strong documentation skills, including writing risk narratives, control designs, control matrices, testing procedures, and remediation plans
  • Effective communication and partnership skills
  • able to challenge constructively and receive challenge professionally
  • Experience conducting vendor risk reviews, including SOC 2 analysis, control gap identification, and remediation follow‑up
  • Solid background knowledge of major risk and control frameworks (Technology, Cyber, Enterprise), such as NIST CSF, COSO ERM, COBIT, etc.
  • Working knowledge of U.S. IT regulations (e.g., SOX, CCPA/CPRA, PCI, NY‑DFS) is recommended
  • Ability to work in a team-based environment and communicate effectively and efficiently with others domestically and globally
Job Responsibility
Job Responsibility
  • Lead risk identification, risk assessment, and ongoing monitoring
  • maintain the IT risk register and ensure risks map to business objectives and risk appetite/tolerances
  • Drive Risk and Control Self‑Assessments (RCAs) with different risk and control owners
  • advise on control design for identity & access, change/release, resiliency/DR, cloud security, data protection, and vulnerability management
  • Define and socialize KRIs/KPIs, risk dashboards, trends, and heat maps
  • deliver clear status to Technology leadership, and key stakeholders
  • Partner with Vendor Risk Management Team to evaluate critical vendors (including AI‑enabled services), review SOC reports/certifications, assess control gaps, and track remediation/compensating controls through closure
  • Track risk issues, action plans, and target dates
  • validate remediation and retest where needed
  • participate in lessons‑learned and scenario exercises
What we offer
What we offer
  • Comprehensive Health, Dental and Vision benefits
  • Disability Insurance (both short-term and long-term)
  • Life Insurance (for you and your family)
  • Accidental Death & Dismemberment Insurance (for you and your family)
  • Flexible Spending Accounts
  • Health Reimbursement Account
  • Employee Assistance Program
  • Retirement Savings 401(k) Plan with Company Match
  • Generous holiday and Paid Time Off
  • Tuition Reimbursement
  • Fulltime
Read More
Arrow Right

Sr. Risk Operations Analyst

The Risk Operations Senior Analyst plays a critical role within the Integrated R...
Location
Location
United States , Irvine
Salary
Salary:
120000.00 - 170000.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in Technology Risk, Cyber Risk, GRC, or IT Risk Management
  • Hands-on experience running technology risk assessments, issue management, exception processes and maintaining control libraries, policies, and standards
  • Familiarity with GRC platforms
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer science or a related field
  • Strong knowledge of technology control frameworks (e.g., NIST CSF/800-53, ISO 27001, CIS)
  • Proven ability to create risk dashboards and executive-level reporting
  • Strong analytical, documentation, and process design skills
  • Excellent stakeholder management and communication skills
  • Proficient in English for effective communication and coordination
Job Responsibility
Job Responsibility
  • Maintain and evolve the enterprise technology control library, ensuring alignment with internal policies, standards, and external frameworks
  • Own the lifecycle management of technology risk policies and standards, including updates, reviews, approvals, and communications
  • Ensure controls, policies, and standards are clearly mapped to regulatory, legal, and business requirements
  • Run and continuously improve core Risk Operations processes, including: Technology Risk Assessments, Risk Issue Management, Risk Exception Management
  • Ensure risk processes are executed consistently, on time, and in accordance with defined methodologies
  • Act as a subject matter expert for risk process guidance to technology, security, and business teams
  • Design, build, and maintain risk dashboards and reporting
  • Translate risk data into meaningful insights for senior leadership, customers and risk committees
  • Ensure accuracy, completeness, and audit-readiness of risk data across systems
  • Partner closely with Customers, Senior and Executive Leaders, Legal and other groups, to drive timely remediation and risk ownership
  • Fulltime
Read More
Arrow Right

Platform Lead - Identity compliance

Currently, Airbus is looking for an Platform Lead - Identity compliance, to join...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
airbus.com Logo
Airbus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Graduate/Post Graduate with 7+ years of experience in IT, Cyber or equivalent field
  • Deep experience in Identity governance and administration(IGA) processes and framework
  • Advanced understanding of IGA platforms(such as Radiant logic/Brainwave GRC or similar) including disaster recovery and scalability
  • Proven experience leading the design, configuration and deployment of IGA modules, role mining, SOD policies
  • Experience in scripting languages for automation and task orchestration
  • Exceptional ability to influence and communicate complex technical risks to senior management and non-technical stakeholders
  • Capability to understand and deliver new business and customer requirements in the Digital domain
  • Strong project management skills for overseeing large-scale platform upgrades or implementation initiatives
  • Possession of industry-recognized certifications (relevant vendor certifications like SailPoint or Radiant logic) is highly desirable
  • Tools: Jira, Zoho, Confluence and/or Planisware knowledge is a plus
Job Responsibility
Job Responsibility
  • Lead the strategic roadmap and future architecture of the Identity Governance platform, ensuring alignment with enterprise security policies and digital security transformation goals
  • Manage the platform, applications associated with the platform and timely upgrades of the platform
  • Define and enforce platform governance standards, KPIs, and reporting metrics for recertification success, compliance gaps, and remediation processes
  • Collaborate with other IAM teams, business owners and security stakeholders to ensure seamless integration and alignment of security policies and procedures
  • Lead major platform lifecycle events (e.g., version upgrades, migrations, new module deployments), managing risks and coordinating dependent infra teams
  • Propose and implement performance tuning and optimization strategies for the platform (e.g., database query optimization, high-volume data loading)
  • Manage vendor relationships (e.g., Radiant Logic) concerning support issues, future features, and licensing strategy
  • Act as a SME for identity and access recertification audits, supporting internal and external compliance reporting
  • Provide technical leadership and direction to security analysts, setting best practices for operations and troubleshooting
  • Ensure support to the team members when required (decision, escalation, guidance)
  • Fulltime
Read More
Arrow Right
New

Dental Nurse

Join Our Team at New Lodge Dental Practice – Oxted, Surrey. Are you an experienc...
Location
Location
United Kingdom , Oxted
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • GDC-registered Dental Nurse (or a trainee enrolled on a course with solid chairside experience)
  • Friendly, approachable, and a real team player
  • Comfortable in a busy practice and eager to learn
  • Keen to expand your knowledge in more complex treatments
Job Responsibility
Job Responsibility
  • Work alongside an experienced dentist as well as an implantologist and oral surgeon
  • Support your training in implantology and oral surgery if needed
What we offer
What we offer
  • Competitive Pay
  • Birthday Off (Paid!)
  • Free Parking
  • Modern, Bright Practice
  • Supportive Team
  • Specialist Experience
  • Referral Bonus
  • Uniform Provided
  • Discretionary Dental Care
  • Team socials and activities
  • Parttime
Read More
Arrow Right
New

Advanced Pharmacy Technician, Back End

We’re building a world of health around every individual — shaping a more connec...
Location
Location
United States , Spartanburg
Salary
Salary:
17.00 - 28.46 USD / Hour
https://www.cvshealth.com/ Logo
CVS Health
Expiration Date
June 28, 2026
Flip Icon
Requirements
Requirements
  • Certification/licensed/registered pharmacy technician or as required by state law
  • One (1) or more years of experience as a pharmacy technician or equivalent experience
Job Responsibility
Job Responsibility
  • Partnering with function supervisor to coordinate workflow for assigned areas that prepare and process medications
  • Rotating and working in various assigned pharmacy workstations including Packaging, Staging, Returns, Receiving, Narcotics, IV, Ekit, Compounding, Omnicell Cycle Fill, Machine Packaging
  • Receiving product deliveries, pull and stage product for distribution, rotate stock, and coordinate activities with drivers to ensure shipments are accurate and deliveries are timely
  • Performing physical inventories of medication
What we offer
What we offer
  • Affordable medical plan options
  • 401(k) plan (including matching company contributions)
  • Employee stock purchase plan
  • No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching
  • Benefit solutions including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access
  • Fulltime
Read More
Arrow Right