Junior Information Security Grc Analyst (F/M/D) Milano

Junior Information Security Grc Analyst (F/M/D)
Milano
Lombardia, Milano

Purpose of Position

Assist the InfoSec GRC team by conducting thorough third-party due diligence, updating policies and processes, performing regular KPI reporting, and ensuring the maintenance of the security awareness program.

**Key Tasks

- Compile regular reports on the status and effectiveness of assurance and compliance initiatives, including the creation of monthly Key Performance Indicators (KPIs).

- Contribute to the administration and upkeep of the third-party risk management process.

- Participate in the onboarding process and conduct due diligence for third-party entities, assessing Awin's suppliers and partners.

- Address client audit requests systematically, highlighting failures and risks within a standardised framework.

- Enhance efficiency in responding to client audit requests by utilising and refining a Questionnaire Automation tool.

- Provide support for ISO 27001 certification and Information Security Management System (ISMS) activities, including assistance in internal and external audits.

- Cultivate awareness and advocate for sound cybersecurity practices by developing Information Security Awareness materials, such as monthly newsletters.

**Skills & Expertise

Professional experience

- Awareness of ISO 27001.

- Understanding of GDPR.

- Awareness of PCI/DSS.

- Interest in Information Security topics and staying up to date with the latest best practice.

- Microsoft Office Suite (essential)

- Microsoft Teams (essential)

- Experience of Asana (desirable)

- Experience of GRC software e. g.

OneTrust (desirable)

Personal Skills

- Clear and concise writing style.

- Attention to detail.

- Adaptability and flexibility.

- Analytical thinking.

- Willingness to constantly improve and expand your knowledge on security related topics.

- Very good English skills; both verbal and written.

Preferred Education

- Degree in Security related studies

- Security related course.

**Our Offer

- Use our company training offers gain and improve your knowledge on a variety of topics.

- You will work on 4 days per week; on the 5th day (to be agreed on with your manager) you can dedicate time to trainings or development, or finish up work if needed but without meetings, or simply take the day off for your own wellbeing, depending on the current team / business needs.

- Remote working: you can work from home or other location instead of at the office

- Say thank you to colleagues by sending them a voucher through our peer-to-peer programme.

- Enjoy our coffee machines with free drinks, including coffee, hot chocolate, tea, fresh fruit and snacks.

- Taking care of your mental wellbeing by offering access to various mental health initiatives

Established in 2000, Awin is proud of our dynamic, social and inclusive culture.

LI-MM1