Analyst, GRC Client Assurance

Job Description :

Position - Governance Risk and Compliance (GRC) Client Assurance Analyst

Location - London (News Building)

Hybrid - Three days in office

The Governance Risk and Compliance (GRC) Client Assurance Analyst will have a good
understanding of information security and privacy principles as well as a sound
understanding of regulatory and compliance requirements affecting a global business.
As a GRC Client Assurance analyst you will be supporting the Dow Jones Cyber GRC
Program for News Corp along with the BISO and central GRC this role you will be providing
Dow Jones corporate customers with the cyber related information necessary to feel
confident that our organizations security policies and controls are reliable and meet Industry
standards. This role sits at the intersection of security compliance and customer trust;
ensuring our customers have confidence in our risk posture while supporting sales
renewals and audits.

Whats the role
Assist with security questionnaires RFPs and assessments from Dow Jones
corporate customers to verify our organizations security posture often against tight
deadlines.
Respond to client inquiries related to SOC2 ISO27001 GDPR risk management
and other security controls.
Support Sales during enterprise deals renewals and escalations by providing
security related information.
Participate in customer meetings to share evidence of security controls.
Maintain standardized responses evidence and customer-facing security
documentation.
Collaborate frequently with Product Technology Legal and other Cyber SMEs to
gather accurate timely information and validate responses.
Track ownership status and deadlines for assurance deliverables to ensure on-time
completion.
Track and manage control gaps risks and remediation efforts.
Support in the implementation of key security initiatives across the organisation.
Assist in the development and maintenance of effective measurement and simplified
reporting for the Client Assurance program.
Assist with additional Cyber related projects as needed.

Who are you
3 years experience within Cyber Security or related fields.
Experience in a B2B SaaS or a cloud-native environment.
Demonstrated experience working in a highly cross-functional environment.
Strong knowledge and experience with Industry Frameworks and Standards such as
NIST CSF and ISO 27001.
Knowledge of the Dow Jones B2B products (Risk & Compliance Factiva Newsplus)
is a bonus.

Good working knowledge of Cloud infrastructure preferably AWS.
Strong oral and written communication skills with the ability to translate technical
security concepts into clear customer-friendly language.
Qualification in Information Security Computer Science Engineering or similar.
Professional security certifications such as Certified Information Systems Security
Professional (CISSP) Certified Information Security Manager (CISM) Certified
Information Systems Auditor (CISA) Certified in Risk and Information Systems
Control (CRISC) or similar are preferred.

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race color religion sex age national origin protected veteran status disability status or any other protected characteristic.

Reasonable Accommodation

We are committed to providing reasonable accommodation for qualified individuals with disabilities in our job application and/or interview process. If you need assistance or accommodation in completing your application or participating in an interview due to a disability email us at . Please put Reasonable Accommodation in the subject line and provide a brief description of the type of assistance you need. This inbox will not be monitored for application status updates.

Please refer to the privacy notice at the bottom of this page for submitting any data access deletion or other data subject rights requests where permitted under your local laws and regulations.