About Grant Thornton Grant Thornton is one of the world’s leading professional services networks with member firms in over 145 countries, 72,000 people and global revenues of $7.5bn. Member firms offer audit, tax, and advisory services to privately owned companies, publicly listed companies, public sector and not for profit organisations, both domestically and internationally. Grant Thornton International Ltd (GTIL) is the umbrella legal entity for the Grant Thornton global network of member firms. GTIL sets the strategic direction, convenes member firms, connects global communities, and protects the brand and reputation of the network. GTIL and the member firms will continually improve the sustainability of their operations and strive to make a positive impact on clients, people, markets, and the communities in which we operate, in line with the UN’s Sustainable Development Goals (SDGs). Role purpose In our Go Beyond network strategy 2025 our vision is to become ‘the most valued network in the profession’. The primary purpose of this role is to support Grant Thornton International Ltd.’s internal cyber risk assessment programme, which manages information security risk associated with suppliers, products, transactions and shared services. The ideal candidate will have experience evaluating vendors, IT solutions and technologies and will bring strong information technology audit or security consulting experience to the programme. Main Responsibilities The Senior Associate will support with the implementation of the cybersecurity risk management programme, including: Collaboration with key stakeholders in IT, Procurement, Shared Service Lines and Member Firms Prioritisation and evaluation of new and existing suppliers Performance of risk assessments for products or services used internally and within the network of firms Assessment of transaction risk in the network, including mergers and acquisition activities Reporting of operational risk in the network, including cybersecurity compliance and risk monitoring programmes Review of data provided during the assessment process, including reviews for completeness, consistency and clarity Producing clear and concise assessment reports Evaluation of cybersecurity risks and advising on risk mitigation activities Tracking cybersecurity risks and providing risk trend analysis reports Location European time zones. However we will consider strong applications from all locations. Person Specification Bachelors degree in IT/Computer Science desirable One of or similar to: Certified in Risk and Information Systems Control (CRISC) CompTIA A+ (Plus) Experience - essential Demonstrable experience in a similar role. Prior experience within a security compliance or risk analyst position Understanding of relevant regulatory requirements and assurance processes, including industry standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and/or data into useful insight Excellent communication skills, both verbal and written Problem-solving mindset and disposition to find solutions Ability to prioritise and manage a varying workload Experience - desirable Experience with using GRC solutions as part of a risk management programme Understanding of cyber security best practices including knowledge of the general cyber threat landscape and common security controls architecture Due to the global scope of the role, any multi-language capability would be highly desirable Benefits There are many benefits of being part of Grant Thornton International, working with a global and diverse team in a virtual setting is just one of them. We pride ourselves on our inclusive culture and believe it's one of our most valuable assets. We also recognise the importance of time off at Grant Thornton International. Taking time away can lead to improved wellbeing and better productivity, which is why we don’t cap your leave. So if you need to take that extra Friday off (and Monday too), no problem. We believe work is no longer a location, it is what we do. This should help all of us deliver our best work, while achieving the right balance in our lives. We want to build a culture of virtual inclusivity. One where all our people have the ability to choose what works best for them but also provides our people the best shared working experience utilising the digital tools we have available. GTIL will provide individuals with the necessary support and equipment to work effectively from home. We also have a collaborative space to offer should you prefer working outside of your home. We will offer you access to digital learning options, as well as external training, should you role and development needs require this. We fully understand the importance of balancing your life and we aim to support that with remote working and flexibility within your role. We understand the time you spend outside of work helps shape what you bring into work, so we encourage flexibility on both sides. However, if you prefer to work from the office, this is also something we offer. We also understand the importance of working comfortably in a remote office - most likely your home, which is why we offer all staff a monthly home office allowance to ensure you're well equipped and able to undertake your role to the fullest. These are just some of the benefits of working at Grant Thornton International. We also have a wide range of attractive core benefits including pension, health insurance, wellbeing programmes and much much more.
