Job Description :
Position - Governance, Risk and Compliance (GRC) Client Assurance Analyst
Location - London (News Building)
Hybrid - Three days in office
The Governance, Risk and Compliance (GRC) Client Assurance Analyst will have a good
understanding of information security and privacy principles as well as a sound
understanding of regulatory and compliance requirements affecting a global business.
As a GRC Client Assurance analyst, you will be supporting the Dow Jones Cyber GRC
Program for News Corp along with the BISO and central GRC function. In this role, you will be providing
Dow Jones corporate customers with the cyber related information necessary to feel
confident that our organization's security policies and controls are reliable and meet Industry
standards. This role sits at the intersection of security, compliance, and customer trust;
ensuring our customers have confidence in our risk posture while supporting sales,
renewals, and audits.
What’s the role?
● Assist with security questionnaires, RFPs, and assessments from Dow Jones’
corporate customers to verify our organization's security posture, often against tight
deadlines.
● Respond to client inquiries related to SOC2, ISO27001, GDPR, risk management,
and other security controls.
● Support Sales during enterprise deals, renewals, and escalations by providing
security related information.
● Participate in customer meetings to share evidence of security controls.
● Maintain standardized responses, evidence, and customer-facing security
documentation.
● Collaborate frequently with Product, Technology, Legal, and other Cyber SMEs to
gather accurate, timely information and validate responses.
● Track ownership, status, and deadlines for assurance deliverables to ensure on-time
completion.
● Track and manage control gaps, risks, and remediation efforts.
● Support in the implementation of key security initiatives across the organisation.
● Assist in the development and maintenance of effective measurement and simplified
reporting for the Client Assurance program.
● Assist with additional Cyber related projects as needed.
Who are you?
● 3+ years’ experience within Cyber Security or related fields.
● Experience in a B2B SaaS or a cloud-native environment.
● Demonstrated experience working in a highly cross-functional environment.
● Strong knowledge and experience with Industry Frameworks and Standards such as
NIST CSF, and ISO 27001.
● Knowledge of the Dow Jones B2B products (Risk & Compliance, Factiva, Newsplus)
is a bonus.
● Good working knowledge of Cloud infrastructure, preferably AWS.
● Strong oral and written communication skills with the ability to translate technical
security concepts into clear, customer-friendly language.
● Qualification in Information Security, Computer Science, Engineering or similar.
● Professional security certifications such as Certified Information Systems Security
Professional (CISSP), Certified Information Security Manager (CISM), Certified
Information Systems Auditor (CISA), Certified in Risk and Information Systems
Control (CRISC) or similar are preferred.
Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status or any other protected characteristic.
Reasonable Accommodation
We are committed to providing reasonable accommodation for qualified individuals with disabilities in our job application and/or interview process. If you need assistance or accommodation in completing your application or participating in an interview due to a disability, email us at humanresources@newscorp.com. Please put "Reasonable Accommodation" in the subject line and provide a brief description of the type of assistance you need. This inbox will not be monitored for application status updates.
Please refer to the privacy notice at the bottom of this page for submitting any data access, deletion, or other data subject rights requests, where permitted under your local laws and regulations.