GRC Risk Analyst
5 days ago
The GRC Risk Analyst will be responsible for identifying, analysing and influencing the management of Enterprise IT (EIT) and Enterprise Security (ES) risks.
**Responsibilities:**
● Support internal and external partners on matters of risk assessments, security controls, and framework requirements. Ensuring security and compliance requirements are understood.
● Coordinate EIT responses to regulatory inquiries and audits, making sure Arm is compliant.
● Support EIT business continuity management (BCM) needs. Operationalizing and assuring a capability of safeguarding our services and operations in the face of disruption and disaster. Further, to mature this capability to put us on a firm path to becoming operationally resilient. Ensuring continuity and recovery plans are detailed, approved, tested, and maintained by asset owners and custodians.
● Develop tactical and positive relationships within the business, partners and vendors.
● Develop Standard Operating Procedures (SOP) to detail procedures for risk assessments, third party assessments, and business process workflows for Security Governance, Risk, Resilience and Compliance.
● Ensure that fundamental information on accountable technology is accurate (e.g. KB Articles process maps training documents and presentations RACI Contract information).
● Identify and raise risks, threats and vulnerabilities of technology security matters. Working with risk owners to shepherd the risks to conclusion where possible.
**Required Skills and Experience:**
● Experience in conducting internal security assessments and reviews, articulating and documenting information security risks.
● Strong familiarity with security standards and audit requirements including NIST CSF, 800-53, ISO 27001, PCI DSS, and SOC 2 Type 2 reports.
● BCM programme governance - the development and maintenance of a strategy and enabling governance framework, ideally ISO22301 aligned.
● Interpersonal skills are required to interact effectively within the Enterprise Security group, customers and vendors at a tactical level.
● Agile, self-starter and can prioritise quickly and effectively. Contributes through the quality, accuracy and timeliness of the tasksservices provided by self, and quality control of work provided by others.
**“Nice To Have” Skills and Experience:**
● Hands on experience implementing security within public cloud services (AWS, Azure, Google).
● Demonstrates a good understanding of the variety of technical security control concepts, procedures and systems (e.g., Email Security, AV, EDR, Firewalls).
● Security qualifications i.e., CISSP, CISM.
● Good familiarity with other Enterprise Security organization (can identify which team fulfills which roles) and a solid grasp of ITIL processes
**In Return:**
You will be a key person to help our leaders focus on the risk that truly matters. This is a global role with responsibility for responding to information security needs across the entire Arm corporation
#LI-JW
**Accommodations at Arm**
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.
**Hybrid Working at Arm**
Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groupsteams to determine their own hybrid working patterns, depending on the work and the team’s needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.
**Equal Opportunities at Arm**
Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
-
Contract GRC Analyst
5 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: Contract GRC AnalystJob Type: ContractLocation: Hybrid (Remote and On-Site)Job Description:We are seeking an experienced GRC Analyst to join our team on a contract basis. As a GRC Analyst, you will play a crucial role in supporting stakeholders with risk assessments and ensuring security and compliance requirements are met.Key...
-
Contract GRC Analyst
5 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: Contract GRC AnalystJob Type: ContractLocation: Hybrid (Remote and On-Site)Job Description:We are seeking an experienced GRC Analyst to join our team on a contract basis. As a GRC Analyst, you will play a crucial role in supporting stakeholders with risk assessments and ensuring security and compliance requirements are met.Key...
-
Contract GRC Analyst
4 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: Contract GRC AnalystJob Type: Contract (Inside IR35)Location: Hybrid (Remote and On-Site)Job Description:We are seeking an experienced GRC Analyst to join our team on a contract basis. As a GRC Analyst, you will play a crucial role in supporting stakeholders with risk assessments and ensuring security and compliance requirements are met.Key...
-
Contract GRC Analyst
5 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: Contract GRC AnalystJob Type: Contract (Inside IR35)Location: Hybrid (Remote and On-Site)Job Description:We are seeking an experienced GRC Analyst to join our team on a contract basis. As a GRC Analyst, you will play a crucial role in supporting stakeholders with risk assessments and ensuring security and compliance requirements are met.Key...
-
GRC Analyst
8 hours ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: GRC Analyst - Contract PositionWe are seeking an experienced GRC Analyst to join our client's team on a contract basis. The ideal candidate will have a strong background in risk management and compliance, with experience in assessing security risks and implementing security controls in large enterprises/cloud environments.Key...
-
GRC Analyst
6 hours ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: GRC Analyst - Contract PositionWe are seeking an experienced GRC Analyst to join our client's team on a contract basis. The ideal candidate will have a strong background in risk management and compliance, with experience in assessing security risks and implementing security controls in large enterprises/cloud environments.Key...
-
Contract GRC Analyst
5 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeAbout the RoleWe are seeking an experienced GRC Analyst to join our client's team on a contract basis. This is a hybrid position, requiring only 2 days on-site per week, with the remaining time spent working remotely.Key Responsibilities:Support stakeholders in conducting risk assessments and ensuring compliance with security requirements, including NIST...
-
Contract GRC Analyst
5 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeAbout the RoleWe are seeking an experienced GRC Analyst to join our client's team on a contract basis. This is a hybrid position, requiring only 2 days on-site per week, with the remaining time spent working remotely.Key Responsibilities:Support stakeholders in conducting risk assessments and ensuring compliance with security requirements, including NIST...
-
Contract GRC Specialist
4 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob DescriptionWe are currently seeking an experienced GRC Analyst on a contract basis for one of our clients in the technology industry. This is a hybrid position with only 2 days required on site per week.Job DetailsRole: GRC AnalystLocation: Remote/HybridType: Contract (Inside IR35)Length: 4 months+The client is looking for an enthusiastic member to join...
-
Contract GRC Specialist
4 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob DescriptionWe are currently seeking an experienced GRC Analyst on a contract basis for one of our clients in the technology industry. This is a hybrid position with only 2 days required on site per week.Job DetailsRole: GRC AnalystLocation: Remote/HybridType: Contract (Inside IR35)Length: 4 months+The client is looking for an enthusiastic member to join...
-
ServiceNow GRC Specialist
2 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob DescriptionJob Title: ServiceNow GRC SpecialistJob Type: Contract (Inside IR35)Location: Cambridgeshire (Hybrid)Job Description:We are seeking an experienced GRC Analyst to join our team on a contract basis. As a GRC Analyst, you will be responsible for supporting stakeholders with risk assessments and ensuring security/compliance requirements are...
-
ServiceNow GRC Specialist
2 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob DescriptionJob Title: ServiceNow GRC SpecialistJob Type: Contract (Inside IR35)Location: Cambridgeshire (Hybrid)Job Description:We are seeking an experienced GRC Analyst to join our team on a contract basis. As a GRC Analyst, you will be responsible for supporting stakeholders with risk assessments and ensuring security/compliance requirements are...
-
GRC Risk Management Specialist
5 hours ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: GRC Risk Management SpecialistWe are seeking an experienced GRC Risk Management Specialist to join our team at Vivid Resourcing. As a key member of our team, you will be responsible for supporting stakeholders with risk assessments and ensuring security/compliance requirements are understood.Key Responsibilities:Drive changes in the Technology and...
-
GRC Risk Management Specialist
3 hours ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob Title: GRC Risk Management SpecialistWe are seeking an experienced GRC Risk Management Specialist to join our team at Vivid Resourcing. As a key member of our team, you will be responsible for supporting stakeholders with risk assessments and ensuring security/compliance requirements are understood.Key Responsibilities:Drive changes in the Technology and...
-
Contract GRC Specialist
3 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeAbout the RoleWe are seeking an experienced GRC Analyst to join our client's team on a contract basis. This is a hybrid position with only 2 days required on site per week.Key ResponsibilitiesSupport stakeholders with risk assessments and ensure security/compliance requirements are understood.Drive changes in the Technology and Security Risk program to meet...
-
Contract GRC Specialist
3 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeAbout the RoleWe are seeking an experienced GRC Analyst to join our client's team on a contract basis. This is a hybrid position with only 2 days required on site per week.Key ResponsibilitiesSupport stakeholders with risk assessments and ensure security/compliance requirements are understood.Drive changes in the Technology and Security Risk program to meet...
-
Contract Risk Analyst
4 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob OpportunityWe are currently seeking an experienced Contract Risk Analyst to join our team at Vivid Resourcing. This is a hybrid position with a mix of on-site and remote work.Job DetailsRole: Contract Risk AnalystLocation: Remote/HybridType: ContractLength: Minimum 4 monthsThe ideal candidate will have experience in risk assessments, security compliance,...
-
Contract Risk Analyst
4 days ago
Cambridge, Cambridgeshire, United Kingdom Vivid Resourcing Full timeJob OpportunityWe are currently seeking an experienced Contract Risk Analyst to join our team at Vivid Resourcing. This is a hybrid position with a mix of on-site and remote work.Job DetailsRole: Contract Risk AnalystLocation: Remote/HybridType: ContractLength: Minimum 4 monthsThe ideal candidate will have experience in risk assessments, security compliance,...
-
Global GRC Leader
1 month ago
Cambridge, United Kingdom ARM Full timeJob Overview:Leading a global Governance, Risk, and Compliance (GRC) team to drive best in class security, risk programmes and policies to safeguard Arm and its partners.This is a senior role responsible for multiple aspects of Enterprise IT (EIT) risk methodology, business continuity, third-party risk framework, critical assets programme, security education...
-
GRC Senior Manager
3 months ago
Cambridge, United Kingdom arm limited Full timeJob Description Job Overview: Leading a global Governance, Risk, and Compliance (GRC) team to drive best in class security, risk programmes and policies to safeguard Arm and its partners. This is a senior role responsible for multiple aspects of Enterprise IT (EIT) risk methodology, business continuity, third-party risk framework, critical...
