Fortris

Senior GRC Analyst

Fortris

full-time

Posted on:

Location Type: Remote

Location: United Kingdom

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

ServiceNow

About the role

  • Execute and continuously enhance GRC processes, including risk assessments, compliance monitoring, and policy governance
  • Maintain and update the enterprise risk register, mapping controls and mitigation efforts to key risks
  • Support audit readiness and lead evidence collection for frameworks like ISO27001, SOC2, GDPR, DORA and other regulatory regimes
  • Coordinate internal control reviews and ensure that controls are effectively designed, implemented, and maintained
  • Contribute to the development and refinement of policies, standards, and procedures across the organization
  • Collaborate with Security, Product Security and Engineering to integrate governance and compliance into operational practices
  • Track regulatory changes and assess their impact on Fortris’s compliance and risk landscape
  • Support compliance training and awareness initiatives across all business functions
  • Work cross-functionally to assess risk in third-party vendors and support onboarding diligence
  • Generate clear, actionable reports and dashboards for internal stakeholders, including leadership

Requirements

  • Fluent level of English and strong written communication skills
  • Minimum 5+ years of experience in GRC, Compliance, Risk Management or related functions
  • In-depth knowledge of regulatory frameworks and standards like ISO27001, SOC2, NIST, GDPR, and others relevant to fintech/crypto
  • Hands-on experience with risk assessments, control design, compliance audits, and policy management
  • Experience working with GRC platforms (e.g. LogicGate, ServiceNow GRC, OneTrust) and audit workflows
  • Familiarity with security and privacy best practices in SaaS or financial services environments
  • Excellent problem-solving abilities and a pragmatic approach to risk mitigation
  • Strong interpersonal skills with the ability to influence across teams
  • Certifications such as CRISC, CISA, CGRC, or similar are a plus
Benefits
  • A remote-first culture, empowering you to work from anywhere
  • 25 paid vacation days + in lieu allowance for public holidays (depending on location)
  • Flexible working hours
  • Private health insurance (or equivalent benefits based on location)
  • Free optional English lessons
  • Personal training budget to support your development
  • Team building and company social events
  • Cutting-edge tech and Apple equipment
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GRC processesrisk assessmentscompliance monitoringpolicy governancecontrol designcompliance auditspolicy managementregulatory frameworksrisk mitigationaudit workflows
Soft Skills
strong written communicationproblem-solvinginterpersonal skillsinfluence across teamspragmatic approach
Certifications
CRISCCISACGRC