GRC Analyst

My client is looking for a GRC/ TPRM professional with a minimum of 3 years of experience to join their organisation in Cork. This is a permanent role.

Responsibilities:

• Conduct end to end Third Party Risk Management (TPRM) assessments, including due diligence, risk analysis, and control evaluations
• Identify security gaps and define pragmatic remediation and mitigation plans with internal and external stakeholders
• Support the ongoing development and enhancement of GRC frameworks, policies, and procedures
• Monitor vendor risk posture and ensure compliance with internal standards and regulatory requirements
• Collaborate with cyber, legal, procurement, and business teams to embed risk-aware decision making
• Contribute to reporting and dashboards, providing clear insights on risk exposure to senior stakeholders

Key Skills and Experience:

• Minimum 3 years of experience in Cyber Security, GRC, or Third-Party Risk Management roles
• Strong understanding of risk and compliance frameworks (e.g. ISO 27001, NIST, or similar)
• Hands on experience performing vendor/security risk assessments and managing remediation activities
• Knowledge of cyber threat landscapes and how they impact third-party risk exposure
• Ability to translate TPRM use cases into practical, scalable solutions and processes
• Strong stakeholder management and communication skills, with the ability to engage both technical and non technical audiences