Jobiglo

No results.

Jobs CV Templates NEW
Login Candidate Registration Employer Registration
English Français العربية Español

GRC Analyst – Governance, Risk & Compliance

Jobgether · Afrique du Sud

New Remote
Remote Mid 🇬🇧 English
Vanta Drata OneTrust SOC 2 PCI DSS ISO 27001 GDPR DORA NIS2 EU AI Act

Job description

About the role

This position is based in South Africa and operates in a fast‑scaling, payments‑focused environment. As a GRC Analyst you will own day‑to‑day governance, risk and compliance execution, ensuring continuous compliance across multiple regulatory frameworks while partnering with engineering, security, legal and leadership teams.

Key responsibilities

  • Own and manage audit readiness activities, including continuous evidence collection, control monitoring and coordination with external auditors for SOC 2, PCI DSS and ISO 27001.
  • Handle external security and compliance requests such as vendor assessments, security questionnaires and RFP responses.
  • Support enterprise risk and compliance programs aligned with GDPR, DORA, NIS2 and the EU AI Act.
  • Maintain the policy lifecycle – updates, exception handling, violation tracking and remediation follow‑ups.
  • Contribute to certification efforts and expand into new compliance frameworks as business needs evolve.
  • Collaborate with engineering and security teams to operationalise controls, strengthen vulnerability management and support security awareness initiatives.
  • Ensure ongoing compliance visibility through structured documentation and a continuous compliance approach.

Required profile

  • 3‑5 years of experience in GRC, compliance or information security governance.
  • Hands‑on experience supporting external audits such as SOC 2, PCI DSS or ISO 27001.
  • Familiarity with regulatory requirements including GDPR, DORA, NIS2 and emerging EU standards.
  • Experience managing vendor risk assessments and third‑party due diligence.
  • Strong organisational and communication skills, able to work across technical, legal and business stakeholders.

Required skills

  • Proficiency with GRC platforms such as Vanta, Drata or OneTrust.
  • Practical knowledge of SOC 2, PCI DSS and ISO 27001 frameworks.
  • Understanding of GDPR, DORA, NIS2 and the EU AI Act compliance requirements.
  • Experience with continuous control monitoring and evidence management practices.

Questions fréquentes

Le salaire n'est pas communiqué publiquement par le recruteur. Vous pouvez postuler et négocier directement avec Jobgether.
Cliquez sur "Postuler maintenant" en haut de la page. Vous pouvez importer votre CV en 1 clic — Jobiglo extrait automatiquement vos informations et postule pour vous.

Why are you reporting this job?

Thank you for your report. We will review this job.

Apply in 30 seconds

Enter your email to apply. An account will be created automatically.

By continuing, you accept our terms of use.

Already have an account? Login

Published 3 hours ago

Expires 1 month from now

3 views · 0 applications

Share Log in to earn credits by sharing

Boost your chances

Upload your CV — we will match you with relevant openings.

Analyzing your CV...

Jobgether

Afrique du Sud

Related job offers

Emplois à Afrique du Sud Métier : IT / Computer Science