GRC Analyst/Consultant

LinkGroup is hiring for a Cybersecurity GRC (Governance, Risk & Compliance) Analyst role focused on building core GRC and risk management processes from scratch.

• 5+ years of experience in GRC Analyst, Information Security Risk, or IT Compliance roles.
• Strong hands-on knowledge of ISO/IEC 27001; familiarity with ISO 27005 or NIST CSF is a plus.
• Experience contributing to risk methodology design or implementing GRC workflows from scratch.
• Exceptional analytical skills with attention to detail.
• Fluency in English with strong stakeholder management skills.

Process Design & Framework Support:

• Collaborate on design, development, and deployment of corporate Cybersecurity GRC policies and procedures.
• Map out and operationalize risk management processes, remediation workflows, and control patterns.
• Assist in establishing compliance controls aligned with ISO 27001.

Risk Analysis & Mitigation:

• Execute risk identification and assessment cycles across business and IT assets.
• Conduct gap analyses against security frameworks.
• Manage the corporate IT/Cyber Risk Register, documenting and prioritizing threats.

Stakeholder Collaboration & Documentation:

• Work with IT infrastructure, Legal, and Business Leaders to meet compliance requirements.
• Translate regulatory requirements into clear operating procedures and checkpoints.