Lead GRC Analyst

Role Overview

The Lead GRC Analyst will be responsible for establishing and embedding a unified approach to information security governance, risk, and compliance across a diverse portfolio of software businesses operating globally. This individual will drive alignment across 31 business units towards a common ISO 27001-based Information Security Management System (ISMS), ensuring consistent application of cyber risk management practices, control implementation, and evidence collection. This role is central to the company’s mission to mature its security posture as it continues its growth through acquisitions, integrating new entities into a cohesive, compliant, and well-governed ecosystem.

Key Responsibilities

1. Governance & ISMS Implementation – Lead the design, implementation, and ongoing management of a group-wide ISMS, aligned to the ISO 27001 framework. Develop, publish, and maintain all information security and compliance policies, standards, ...