Junior GRC Analyst
Lviv, Ukraine
1 днів тому


SoftServe is seeking a Security Governance, Risk, and Compliance (GRC) Analyst to work in a team environment to lead security governance processes and identify, measure, and report risks associated with SoftServe IT systems and applications.

IS Manager, the Security GRC Analyst will audit and document IT compliance, analyze the effectiveness of IT controls such as change management processes and user provisioning lifecycles and will operate tools that enable automated management of elevated system access within the SoftServe IT environment.


  • Сapable of working on multiple projects
  • Having knowledge of threat modeling or other risk identification techniques, system security vulnerabilities, and remediation techniques
  • Сapable of leading meetings, recording meeting minutes, and documenting decision outcomes
  • Hands-on in using change management, help desk
  • Experienced with process development, analysis, implementation, and continuous improvement methodologies preferred
  • Having excellent analytic skills
  • Able to describe processes and create technical documentation
  • Experient in records inventories and developing of file plans
  • Detail-oriented with strong organizational and prioritization skills
  • Showing strong communication and written skills
  • Demonstrating reliability through good attendance and punctuality
  • Having Upper-Intermediate English level (both speaking and writing)
  • Nice to have

  • Experience with IT control frameworks such as ITIL, COBIT, and ISO / 27002
  • Knowledge of data protection regulation (GDPR)

  • Annual Security Risk Assessment, documenting identified system vulnerabilities, mitigating controls and residual risk(s) for Executive signoff
  • Various audit teams (internal and external) to track system and application security weaknesses from identification to remediation / risk acceptance
  • Aiding and contributing to the assurance of adherence to corporate policies and documented internal controls
  • Different departments to describe processes
  • Gap analysis of processes to define possible non-compliance
  • Performance of any and all functions necessary for the successful operation of the company as determined by the IS Manager

  • Work in a friendly atmosphere with a proficient team
  • Participate in conferences, training sessions, seminars
  • Share a package of benefits (medical insurance / additional (paid) vacation, anniversary gifts / corporate events) and foreign language classes
  • Повідомте про це

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Надіслати заяву
    Моя електронна адреса
    Клацнувши по кнопці "# кнопка", я даю згоду neuvoo на обробку моїх даних та надсилання сповіщень електронною поштою, як це детально описано в Політиці конфіденційності neuvoo. Я можу будь-коли відкликати свою згоду або скасувати підписку.