Senior Analyst

Senior AnalystBudapest, Hungary (Hybrid)Join our client and be part of a team that celebrates your unique work style. With flexible work options, a supportive team, and rewards that reflect your value, you can focus on what matters most – driving your growth, while fueling ours.Our commitment to respect, transparency, and simplicity means you can trust us to always choose to do the right thing.As a trusted partner for purpose-built AI and intelligent automation, we solve highly complex problems for our enterprise
customers and put their information to work to transform the way they do business.
Over 10,000 customers trust our client,
including many Fortune 500 ones. You will work on further developing a portfolio already containing client names such as
DHL, Johnson & Johnson, FDA, DMV, PwC, KeyBank, Spotify, and H&R BLOCK.The Senior Analyst
in Information Security will be responsible for supporting the development, implementation, and maintenance of the organization’s governance, risk management, and compliance frameworks. This role will involve conducting risk assessments, ensuring adherence to security policies, and collaborating with various departments to promote a culture of compliance and security awareness.
Key Responsibilities:

• Governance Framework:
  Assist in the development and maintenance of the information security governance framework, including policies, procedures, and standards
• Risk Assessment:
  Conduct risk assessments to identify vulnerabilities and threats, and work with stakeholders to develop risk mitigation strategies
• Compliance Management:
  Monitor and evaluate the organization’s compliance with relevant regulations, standards, and best practices (e.g., GDPR, HIPAA, ISO 27001)
• Policy Development:
  Support the creation and revision of information security policies and procedures, ensuring alignment with industry standards and organizational goals
• Audit Support:
  Assist with internal and external audits, providing necessary documentation and evidence to demonstrate compliance with security policies and regulatory requirements
• Training and Awareness:
  Develop and deliver training programs to enhance employee awareness of governance, risk, and compliance issues, and promote best practices in information security
• Reporting and Metrics:
  Prepare reports and presentations for management, highlighting risk assessment findings, compliance status, and recommendations for improvement
• Continuous Improvement:
  Stay informed about emerging threats, regulatory changes, and industry trends to continuously enhance the GRC framework

Qualifications:

• Bachelor’s degree in Information Security, Risk Management, Business Administration, or a related field
• 5+ years of experience in information security, risk management, or compliance, with a focus on GRC frameworks
• Strong understanding of governance, risk management, and compliance principles and methodologies
• Familiarity with relevant regulations and standards (e.g., GDPR, HIPAA, PCI-DSS)
• Excellent analytical skills and attention to detail, with the ability to assess complex security and compliance issues
• Strong communication and interpersonal skills, capable of collaborating effectively with cross-functional teams
• Proficiency in GRC tools and software is a plus

Preferred Qualifications:

• Relevant certifications (e.g., CISSP, CISM, CRISC, CISA)
• Experience with risk assessment methodologies and tools