Think Beyond The Label Jobs

Description

Title: Governance, Risk and Compliance Analyst

Location: UK Remote

About PSI

We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers.

We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent.

At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That’s why you’ll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle.

Learn more about what we do at: https://www.psiexams.com/

About the Role

The Governance, Risk and Compliance Analyst role works collaboratively with stakeholders across the business on various activities related to quality, environment, risk, data security, privacy and compliance, with the aim of enabling Lifelong Learner and its subsidiaries to comply with ISO, PCI and other industry standard frameworks.

This is a full time, permanent position, Monday to Friday with flexible hours around a standard 0900-1700. The role can be performed remotely, with occasional travel to offices and test centres required to support with audits.

Role Responsibilities

• Responsible for ensuring the 3rd Party Risk Assessment program is categorised and handled in line with industry standards and best practice, including maintenance of the 3rd party risk assessment library and annual reviews.

• Supporting the development, documentation and maintenance of policies, procedures, and standards across the organisation, ranging from Information Security and Data Protection to Quality Management and Environmental Management.

• Supporting the continuation of ISO 27001, ISO 9001, ISO 14001, and any other relevant certifications.

• Supporting the maintenance of Management Committees relevant to the compliance function, including governance related responsibilities.

• Assisting with ensuring compliance with established key metrics that measure system objectives and provide evidence of compliance for internal and external audits.

• Assisting with the development of GRC related newsletters and training.

• Identifying and reporting on gaps related to security and compliance and other tasks to support the group’s underlying data and information security processes, infrastructure and ensuring measures are fit for purpose and scaled to deliver an appropriate level of protection.

• Building and maintaining close relationships with business units and teams to assist with the gathering of information for activities related to BCDR, Security Technical Control Identification and operational procedures.

• Maintaining close relationships with the providers of any outsourced contracts for services such as annual audits or other 3rd party contracts.

• Being a Security and Compliance Champion in promoting and developing awareness of different security and compliance risks and best practices across the company.

Essential:

• Information security or compliance experience with a proven ability to engage confidently with Senior Management and staff from all other departments globally.

• Governance experience – organising meetings/training, writing agendas, taking minutes, managing action logs.

• Someone who is highly organised, reliable, flexible and has exceptional attention to detail.

• Experience in working on Microsoft products and can learn new systems quickly.

• Experience in working on an ISO standard (preferably ISO 27001, 9001, 14001 or any other relevant certifications) – a good knowledge of ISO structures, gathering evidence for audits and gap analysis.

Desirable:

• A solid understanding and of data management plus data and information security, including working knowledge of latest trends and technologies.

• Information security management qualifications or similar.

• Consultancy experience and/or demonstratable experience of providing support to various teams and stakeholders.

• Background in the technology sector.

Benefits & Culture

At PSI, our culture is to be transparent and fair. That’s why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role.

In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes;

• 401k/Pension/Retirement Plan – with country specific employer %

• Enhanced PTO/Annual Leave

• Medical insurance – country specific

• Dental, Vision, Life and Short Term Disability for US

• Flexible Spending Accounts – for the US

• Medical Cashback plan covering vision, dental and income protection for UK

• Employee Assistance Programme

• Commitment and understanding of work/life balance

• Dedicated DE&I group that drive core people initiatives

• A culture of embracing wellness, including regular global initiatives

• Access to supportive and professional mechanisms to help you plan for your future

• Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities