We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Lead Analyst Information Security Governance Risk Compliance at PSI Services LLC. Location Information: Remote, United Kingdom. . Title:. Lead Analyst, Information, Security, Governance, Risk and Compliance. . Location:. Remote-UK. . Salary:. £60,000 / annually . . About PSI. . We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers. . . We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent.. . At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That’s why you’ll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle. . . Learn more about what we do at: . https://www.psiexams.com/. . . About the Role. . The Lead Analyst, Information Security – GRC plays a key role in supporting PSI’s commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems.. . This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 – 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments.. . Role Responsibilities. . . Act as the primary point of contact for implementing and maintaining the security GRC framework.. . Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization.. . Collaborate with internal teams to ensure documentation of security control in the form of system architecture diagrams, data flow diagrams and Information System Continuity Plans are in place.. . Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices.. . Monitor and assess the effectiveness of security controls across business systems and processes.. . Ensure alignment with client, regulatory, and internal compliance requirements.. . Support the automation and continual improvement of GRC processes and tools.. . Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership.. . Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses.. . Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls.. . Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives.. . Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions.. . Deliver training and awareness programs related to information security, policies, and best practices.. . Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities.. . Prepare and support audit plans and compliance documentation for internal or external stakeholders.. . Conduct vetting for access to sensitive systems and data, including continuous monitoring and clearance reviews.. . . . . Knowledge, Skills and Experience Requirements. . . Experience working within, achieving and/or maintaining ISO standards such as ISO 27001, 9001, 14001 and 20000 (essential).. . Experience in implementing and maintaining externally awarded certifications such as ISO27001 is essential.. . Proficient with MS Office. . Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended. . Extensive training and experience in computer disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines. . Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired. . Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) desirable.. . Experience in a fast-paced GRC/ISO function (desirable).. . . Benefits & Culture. . At PSI, our culture is to be transparent and fair. That’s why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the . salary. so you can see if we align with your expectations when looking for your next role.. . In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes:. . . 401k/Pension/Retirement Plan – with country specific employer % . . Enhanced PTO/Annual Leave. . Medical insurance – country specific . . Dental, Vision, Life and Short-Term Disability for US . . Flexible Spending Accounts – for the US. . Medical Cashback plan covering vision, dental and income protection for UK . . Employee Assistance Programme. . Commitment and understanding of work/life balance . . A culture of embracing wellness, including regular global initiatives. . Access to supportive and professional mechanisms to help you plan for your future . . Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities. . .