Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • âś… Top Match: We help you identify job offers where you're a perfect fit.
  • âś… Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • âś… Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

GRC Analyst - Colombia

Remote: 
Full Remote
Contract: 
Full time
Salary: 
27 - 28K yearly
Experience: 
Mid-level (2-5 years)
Work from: 
Canada

Offer summary

Qualifications:

3+ years in GRC or similar role, Experience in managing ISO audits, Strong documentation and reporting skills, Familiar with IT governance frameworks, Excellent communication in English.

Key responsabilities:

  • Develop and maintain ISMS for GRC coverage
  • Ensure compliance with security standards
  • Conduct audits and manage vendor security processes
  • Support risk management and business continuity exercises
  • Liaise with teams on information security matters
PartnerOne logo
PartnerOne SME https://partnerone.com/
201 - 500 Employees
About PartnerOne
PartnerOne is an enterprise software company that manages the world’s largest data environments through virtualized cloud storage, hyper-automation, artificial intelligence, and metadata analytics. Contrary to other software companies, we play a mission-critical role in not just one, but many aspects of the enterprise Big Data cycle. Over 1250 of the world’s largest data environments rely on our software for their most critical needs and to safeguard their most valuable data.
See more PartnerOne offers

Job description

Due to the continued growth of our organisation and our focus on strengthening governance, risk management, and compliance (GRC), we are seeking an experienced GRC Analyst to join our multidisciplinary IT, Security, and Compliance team

This role will be responsible for covering a wide variety of GRC activities and supporting the groups’ compliance with various security standards and will report directly to the Head of IT & Security.

Tasks & Responsibilities:

  • Develop, implement, and maintain the Information Security Management System (ISMS) to ensure comprehensive GRC coverage across the organisation
  • Ensure conformance to necessary security standards (e.g., ISO 27001, ISO 27701) for all systems managed by IT, Security, and technical teams
  • Support risk management activities and lead audit preparations, including conducting business continuity exercises and maintaining documentation
  • Develop, update, and enforce information security policies, procedures, and guidelines to ensure compliance and mitigate risks
  • Lead internal audits and support external assessments against adopted security standards (ISO 27001, ISO 27701, GDPR, etc.)
  • Manage vendor security and data privacy questionnaires, coordinating responses from internal teams to ensure timely completion
  • Regular interaction with members of the Service Delivery Team and members of IT staff in matters related to information security and security awareness materials
  • Liaise with service delivery areas to ensure Security incident and privilege access management processes are effective and have been implemented in the Service Delivery areas

Requirements

Minimum Requirements:

  • 3+ years of experience in a GRC role or similar capacity
  • Proven experience in executing and managing internal and external ISO audits
  • Strong skills in writing high-quality documentation, audit reports, and compliance summaries
  • Agile and adaptable to changing business and regulatory priorities
  • Experience working in a global, collaborative, and often virtual team environment
  • Proficient in IT governance, security frameworks, and audit methodologies (e.g., ISO, GDPR, etc.)
  • Excellent written and verbal communication skills in English
  • Previous experience working with NIST CSF / NIST 800-53b

Nice to have qualifications:

  • Certified Internal Auditor (ISO 27001, ISO 27701, or equivalent) preferred
  • Experience with FedRAMP is highly desirable
  • Familiarity with quality management systems, such as ISO 9001, is a plus

Required profile

Experience

Level of experience: Mid-level (2-5 years)
Spoken language(s):
EnglishEnglish
Check out the description to know which languages are mandatory.

Hard Skills

Information Security Management SystemsRisk ManagementGeneral Data Protection Regulation (GDPR)Documentation GenerationAudit ProcessesIT GovernanceFedRAMPQuality Management SystemsInternal AuditingISO 14644Application FrameworksVendor ManagementCompliance RequirementsISO/IEC 27001

Other Skills

  • Adaptability
  • Collaboration
  • Governance
  • Verbal Communication Skills
Are you interested?

Related jobs

See more jobs
Sign in or sign up with Google or LinkedIn