Your security and compliance partner, delivering trust worldwide Cognisys are your trusted security and compliance partner delivering GRC consulting, CREST-accredited penetration testing and industry-leading vulnerability management. As Vanta’s #1 Global Service Partner, we’ve helped hundreds of businesses achieve their security compliance goals. We have a proven track record of delivering trust to companies of all sizes – from tech startups to global industry leaders.
About the Role
At Cognisys, our Governance, Risk, and Compliance (GRC) team is central to our mission of ensuring that our client’s data is protected to the highest security and compliance standards.
Due to our continued expansion, we are excited to announce this opportunity to further develop our GRC team with a motivated and enthusiastic individual. Your contribution will be valuable to our team’s ongoing success.
As a Junior Compliance Analyst, you will assist the GRC (Governance, Risk, and Compliance) team in supporting Cognisys and our clients in maintaining compliance with industry and regulatory information security standards. This role is perfect for individuals early in their cybersecurity careers who are eager to learn, have strong communication skills, and are passionate about problem-solving.
Key Responsibilities
• Assist with ongoing consultancy projects to ensure compliance with standards such as ISO27001 & SOC2.
• Supporting customer-facing compliance activities and discussions under the guidance of senior team members.
• Helping to perform security risk assessments and compile reports.
• Contribute to the creation, maintenance, and review of security policies and procedures.
• Assisting in third-party supplier assessments and due diligence checks.
• Participating in governance activities, including documenting findings, reporting, and internal audit tasks.
Requirements
• Education/experience – Some experience or education in cybersecurity, GRC, Information Security, or a related field.
• Basic knowledge – Familiarity with information security standards (e.g., ISO27001) would be a plus.
• Certifications – Entry-level certifications (e.g., CompTIA Security+, ISO27001 Foundation) are advantageous, but not required.
• Willingness to learn – Strong motivation to develop skills in governance, risk and compliance.
• Communication Skills – Ability to communicate clearly and professionally with team members and stakeholders.
• Problem Solving – Analytical mindset with the ability to identify issues and propose solutions.
• Team Collaboration – Comfortable working within a team environment and seeking support or input when needed.
• Attention to Detail – A keen eye for detail when reviewing policies or performing audits.
• Time Management – Ability to prioritise tasks and manage time effectively.
If you think you can deliver but don’t match the criteria above, please don’t be put off. We are very open-minded and focus on ability and attitude above skills.
What We Offer
- A dynamic and supportive work environment where customer care and innovation drive everything we do.
- A dedicated budget for your professional development.
- EMI Employee Share Schemes provide the opportunity to share in the company’s success.
- Access to an Employee Wellness Hub supported by Kara Connect for health and well-being resources.
- Frequent team social events and celebrations.
- 22 days holiday rising to 25, plus a birthday holiday.
- Refer a friend bonus scheme, up to £2,000!
APPLY