Cyber Security Analyst

As an Associate - Cyber Security (Governance, Risk, and Compliance) at our organization, your role will involve supporting governance, risk, and compliance initiatives. You should possess a foundational understanding of cybersecurity principles, strong analytical skills, and a keen interest in risk assessment and regulatory compliance. **Key Responsibilities:** - Assist in developing, implementing, and maintaining the organization's cybersecurity GRC framework. - Conduct security assessments and evaluate risk posture in alignment with industry standards. - Support phishing simulation campaigns and cybersecurity awareness initiatives. - Develop articles, newsletters, training materials, and security guides to enhance user awareness. - Collaborate with internal teams to improve security compliance and policy implementation. - Assist in the maintenance and enhancement of cybersecurity policies, procedures, and frameworks. - Perform internal audits to assess compliance with ISO 27001, CIS Benchmarks, and NIST CSF. - Help configure workflows and automate GRC processes to improve efficiency. - Provide technical assistance and security recommendations to stakeholders. - Stay updated on emerging cybersecurity regulations and suggest necessary policy revisions. **Qualifications Required:** - Bachelor's degree in IT/computer science or related field. - 2 - 4 years of overall experience in Information Security/GRC. - Strong IT/Computer Science background with proven experience in cybersecurity training and communications. - In-depth understanding of cybersecurity concepts, threats, and best practices, with the ability to create user-friendly technical content. - Proficiency in designing and delivering effective cybersecurity training programs, workshops, and awareness sessions. - Hands-on experience with governance frameworks, risk management, and compliance standards, including ISO 27001:2022, CIS Benchmarking, and NIST CSF. - Strong written and verbal communication skills for crafting security policies, articles, newsletters, and user guides. - Understanding of Security Operations Center (SOC) incident management processes and best practices. - Ability to prepare and deliver cybersecurity presentations that align with organizational risk and compliance strategies. - Knowledge of security testing methodologies, ethical hacking principles, and penetration testing tools based on OWASP guidelines. - Familiarity with GRC system design, workflow configuration, and automation processes for efficient governance. - Ability to collaborate with cross-functional teams and provide cybersecurity technical assistance to stakeholders. - Capability to work both independently and as part of a team in managing security awareness initiatives and compliance projects. As an Associate - Cyber Security (Governance, Risk, and Compliance) at our organization, your role will involve supporting governance, risk, and compliance initiatives. You should possess a foundational understanding of cybersecurity principles, strong analytical skills, and a keen interest in risk assessment and regulatory compliance. **Key Responsibilities:** - Assist in developing, implementing, and maintaining the organization's cybersecurity GRC framework. - Conduct security assessments and evaluate risk posture in alignment with industry standards. - Support phishing simulation campaigns and cybersecurity awareness initiatives. - Develop articles, newsletters, training materials, and security guides to enhance user awareness. - Collaborate with internal teams to improve security compliance and policy implementation. - Assist in the maintenance and enhancement of cybersecurity policies, procedures, and frameworks. - Perform internal audits to assess compliance with ISO 27001, CIS Benchmarks, and NIST CSF. - Help configure workflows and automate GRC processes to improve efficiency. - Provide technical assistance and security recommendations to stakeholders. - Stay updated on emerging cybersecurity regulations and suggest necessary policy revisions. **Qualifications Required:** - Bachelor's degree in IT/computer science or related field. - 2 - 4 years of overall experience in Information Security/GRC. - Strong IT/Computer Science background with proven experience in cybersecurity training and communications. - In-depth understanding of cybersecurity concepts, threats, and best practices, with the ability to create user-friendly technical content. - Proficiency in designing and delivering effective cybersecurity training programs, workshops, and awareness sessions. - Hands-on experience with governance frameworks, risk management, and compliance standards, including ISO 27001:2022, CIS Benchmarking, and NIST CSF. - Strong written and verbal communication skills for crafting security policies, articles, newsletters, and user guides. - Understanding of Security Operations Center (SOC) incident management processes and best practices. - Ability to prepare and deliver cyb