Plus
Включить Plus
Назад
Company hidden
1 день назад

Technical GRC Analyst (EdTech)

Формат работы
remote (только United_kingdom)/onsite
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
UK
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Technical GRC Analyst (EdTech/SaaS): Managing governance, risk, and compliance processes for an EdTech platform with an accent on GDPR, information security, and security assurance. Focus on performing risk assessments, managing compliance evidence via Vanta, and ensuring audit readiness for ISO 27001.

Location: Remote or On-site in Bromley, United Kingdom

Company

A growing EdTech SaaS provider delivering software solutions for the education sector.

What you will do

  • Administer IT risk and compliance processes aligned with internal policies and GDPR requirements.
  • Perform data protection and information security risk assessments using structured frameworks.
  • Coordinate third-party supplier risk assessments and review security documentation.
  • Operate compliance tooling (Vanta) for evidence collection, test management, and remediation tracking.
  • Support internal and external audits, specifically focusing on ISO 27001.
  • Handle compliance-related requests, including Subject Access Requests (SARs) and data sharing.

Requirements

  • Experience in IT risk, compliance, or GRC roles within a SaaS or technology environment.
  • Strong understanding of GDPR and the handling of personal/student data.
  • Proven experience in performing structured risk assessments.
  • Ability to coordinate with cross-functional teams such as engineering, product, and operations.
  • Experience in operational security assurance, including evidence collection and audit preparation.
  • Must be based in the United Kingdom

Nice to have

  • Familiarity with ISO 27001, Cyber Essentials, or similar frameworks.
  • Experience with GRC platforms like Vanta or Drata.
  • Exposure to Microsoft 365 security tooling (Entra ID, Intune, Defender).
  • Basic understanding of cloud/SaaS architecture and common security controls.
  • Experience with vendor/third-party risk management.

Culture & Benefits

  • Equal opportunities employer.
  • Flexible work arrangement with both on-site and remote options.
  • Collaborative environment working across technical and non-technical teams.
  • Opportunity to work within a growing SaaS organization.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →