GRC Analyst

We are a consulting company with a bunch of tech-savvy and happy people

We love technology, we love design, and we love quality. Our diversity makes us unique and creates an inclusive and welcoming workplace where every individual is highly valued.

With us, everyone can be themselves while respecting others for who they are. We believe that when an amazing mix of people come together and share their knowledge, experiences, and ideas, we can help our clients on a completely different level.

We are looking for someone who can start immediately and wants to grow with us

With us, you have great opportunities to make real progress in your career and the chance to take on significant responsibility.

The Governance, Risk, Compliance & Resilience (GRC-R) Officer strengthens the organization's cyber security posture by developing governance structures, managing cyber risks, ensuring regulatory compliance, and enhancing resilience capabilities. This role ensures that security practices align with business objectives and are consistently applied across the organization.

Key Responsibilities

• Develop and improve cyber security GRC-R frameworks and governance structures.

• Ensure security policies and steering documents are clear, accessible, and adopted.

• Lead and oversee cyber risk assessments and maintain central risk registers.

• Plan and execute compliance audits and control testing.

• Support incident and crisis management, including root cause analysis and recovery guidance.

• Identify efficiencies and drive continuous improvement in controls and processes.

• Lead security awareness initiatives and promote strong security culture.

• Collaborate with internal teams and external partners, including vendors and auditors.

• 5+ years in cyber security; 7+ years in GRC and/or resilience.

• Education in GRC, information security, or equivalent experience.

• Knowledge of global regulatory requirements and standards (ISO 27001, ISO 31000, NIST, C2M2, CMMC, ISO

• Experience designing and governing cyber security frameworks.

• Strong communication, collaboration, and change-management skills.

• Experience working with auditors and in certification processes.

Preferred Certifications

• CISM, CISSP, CCISO

• ISO 27001 Lead Implementer / Lead Auditor

• Business Continuity certification (e.g., CBCP, ISO 22301)

Start date: ASAP

Mode of Work: Hybrid

Location: Stockholm

Form of employment: Full-time until further notice, we apply 6 months probationary employment.

We interview candidates on an ongoing basis, do not wait to submit your application.