GRC Analyst - Third Party Risk Management Fixed Term Contract, 12 months - £45k - £50k Location: Hybrid - Birmingham Your new company: I am looking to recruit a GRC Analyst, focusing on Third Party Risk Management, to join a leader in the hospitality space, with the role focusing on GRC activities, with a strong focus on information security, privacy, and regulatory assurance across the organisation. The role responsibilities: This role focusses on supplier assurance and third-party risk management, ensuring that vendors handling company data or connecting to company systems operate in line with security, privacy, and compliance expectations. Key parts of the role: Conducting and coordinating security and privacy risk assessments for new and existing third-party suppliers. Evaluating supplier controls relating to data protection, information security, data hosting, subcontractor usage, and system access. Cataloguing and maintaining records of data shared with third parties, including purpose of use, information security classification, data sensitivity, and processing location. Ensuring third party data handling arrangements clearly define data retention, archiving, and deletion requirements in line with policies and regulatory obligations. Maintaining third party risk documentation and tracking remediation actions with suppliers and internal teams. Working closely with Vendor Management, Procurement, Legal, Information Security, and IT to ensure supplier risks are identified early and addressed prior to onboarding or renewal. Escalating high risk supplier findings to the IT Licensing & Compliance Manager and relevant stakeholders. You will need: Strong understanding of GDPR, the UK Data Protection Act, and privacy and security control requirements. Experience working in GRC, information security, data protection, supplier assurance, or a related compliance role. Ability to interpret and assess technical and organisational controls. Strong analytical skills with excellent attention to detail. Confident written and verbal communication skills, able to engage across legal, technical, and operational teams. Experience contributing to incident or breach investigations. Ability to manage multiple competing priorities and constructively challenge established processes. Minimum 3 years' experience in a relevant role. CIPP/E, CIPM, CompTIA Security+, or BCS Practitioner Certificate in Data Protection, desirable. What you'll get in return: Salary of between £45k-£50k Hybrid working Company discounts A pension contribution matched at 1.5x, up to 5%. Private healthcare, dental plan, cycle to work, and keep-fit schemes. 26 days annual leave plus bank holidays. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 01, 2026
Full time
GRC Analyst - Third Party Risk Management Fixed Term Contract, 12 months - £45k - £50k Location: Hybrid - Birmingham Your new company: I am looking to recruit a GRC Analyst, focusing on Third Party Risk Management, to join a leader in the hospitality space, with the role focusing on GRC activities, with a strong focus on information security, privacy, and regulatory assurance across the organisation. The role responsibilities: This role focusses on supplier assurance and third-party risk management, ensuring that vendors handling company data or connecting to company systems operate in line with security, privacy, and compliance expectations. Key parts of the role: Conducting and coordinating security and privacy risk assessments for new and existing third-party suppliers. Evaluating supplier controls relating to data protection, information security, data hosting, subcontractor usage, and system access. Cataloguing and maintaining records of data shared with third parties, including purpose of use, information security classification, data sensitivity, and processing location. Ensuring third party data handling arrangements clearly define data retention, archiving, and deletion requirements in line with policies and regulatory obligations. Maintaining third party risk documentation and tracking remediation actions with suppliers and internal teams. Working closely with Vendor Management, Procurement, Legal, Information Security, and IT to ensure supplier risks are identified early and addressed prior to onboarding or renewal. Escalating high risk supplier findings to the IT Licensing & Compliance Manager and relevant stakeholders. You will need: Strong understanding of GDPR, the UK Data Protection Act, and privacy and security control requirements. Experience working in GRC, information security, data protection, supplier assurance, or a related compliance role. Ability to interpret and assess technical and organisational controls. Strong analytical skills with excellent attention to detail. Confident written and verbal communication skills, able to engage across legal, technical, and operational teams. Experience contributing to incident or breach investigations. Ability to manage multiple competing priorities and constructively challenge established processes. Minimum 3 years' experience in a relevant role. CIPP/E, CIPM, CompTIA Security+, or BCS Practitioner Certificate in Data Protection, desirable. What you'll get in return: Salary of between £45k-£50k Hybrid working Company discounts A pension contribution matched at 1.5x, up to 5%. Private healthcare, dental plan, cycle to work, and keep-fit schemes. 26 days annual leave plus bank holidays. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
GRC Analyst - Data Protection & GDPR Compliance Fixed Term Contract, 12 months - £45k - £50k Location: Hybrid - Birmingham Your new company: I am looking to recruit a GRC Analyst, focusing on Data Protection and GDPR, to join a leader in the hospitality space, with the role focusing on GRC activities, with a strong focus on information security, privacy, and regulatory assurance across the organisation. The role responsibilities: This role focusses on data protection assurance and GDPR compliance, ensuring personal data is processed lawfully, and in line with regulatory and organisational requirements. Key parts of the role: Reviewing how personal data is used across systems, business processes, and technology solutions. Identifying opportunities to reduce, anonymise, or eliminate personal data processing where it is not essential to business needs. Support the review, development, and rollout of information security and data protection policies. Contribute to the management of information security, third party, and privacy risk registers. Assist with internal and external audits, including GDPR assurance, PCI DSS, and financial audits. Track remediation of identified security, privacy, and compliance issues to ensure timely closure. Support incident and breach response activities, including investigation, documentation, and follow up actions. You will need: Strong understanding of GDPR, the UK Data Protection Act, and privacy and security control requirements. Experience working in GRC, information security, data protection, supplier assurance, or a related compliance role. Ability to interpret and assess technical and organisational controls. Strong analytical skills with excellent attention to detail. Confident written and verbal communication skills, able to engage across legal, technical, and operational teams. Experience contributing to incident or breach investigations. Ability to manage multiple competing priorities and constructively challenge established processes. Minimum 3 years' experience in a relevant role. CIPP/E, CIPM, CompTIA Security+, or BCS Practitioner Certificate in Data Protection, desirable. What you'll get in return: Salary of between £45k-£50k Hybrid working Company discounts A pension contribution matched at 1.5x, up to 5%. Private healthcare, dental plan, cycle to work, and keep-fit schemes. 26 days annual leave plus bank holidays. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 01, 2026
Full time
GRC Analyst - Data Protection & GDPR Compliance Fixed Term Contract, 12 months - £45k - £50k Location: Hybrid - Birmingham Your new company: I am looking to recruit a GRC Analyst, focusing on Data Protection and GDPR, to join a leader in the hospitality space, with the role focusing on GRC activities, with a strong focus on information security, privacy, and regulatory assurance across the organisation. The role responsibilities: This role focusses on data protection assurance and GDPR compliance, ensuring personal data is processed lawfully, and in line with regulatory and organisational requirements. Key parts of the role: Reviewing how personal data is used across systems, business processes, and technology solutions. Identifying opportunities to reduce, anonymise, or eliminate personal data processing where it is not essential to business needs. Support the review, development, and rollout of information security and data protection policies. Contribute to the management of information security, third party, and privacy risk registers. Assist with internal and external audits, including GDPR assurance, PCI DSS, and financial audits. Track remediation of identified security, privacy, and compliance issues to ensure timely closure. Support incident and breach response activities, including investigation, documentation, and follow up actions. You will need: Strong understanding of GDPR, the UK Data Protection Act, and privacy and security control requirements. Experience working in GRC, information security, data protection, supplier assurance, or a related compliance role. Ability to interpret and assess technical and organisational controls. Strong analytical skills with excellent attention to detail. Confident written and verbal communication skills, able to engage across legal, technical, and operational teams. Experience contributing to incident or breach investigations. Ability to manage multiple competing priorities and constructively challenge established processes. Minimum 3 years' experience in a relevant role. CIPP/E, CIPM, CompTIA Security+, or BCS Practitioner Certificate in Data Protection, desirable. What you'll get in return: Salary of between £45k-£50k Hybrid working Company discounts A pension contribution matched at 1.5x, up to 5%. Private healthcare, dental plan, cycle to work, and keep-fit schemes. 26 days annual leave plus bank holidays. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
Apr 01, 2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
Apr 01, 2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
Information Security Analyst (GRC) Attractive salary & package. Hertfordshire - with flexibility to work from home. A global client of ours are looking to hire an Information Security Analyst. T his company offer the chance for you to work in a very attractive industry, with a great benefit package also. This Information Security Analyst (GRC) role would suit someone with experience with information security risk assessments, reporting risks and who holds the ISO 27001 lead implementer/auditor certification. Any other certifications that you hold will be beneficial. Experience dealing with non-UK entities & stakeholder management experience will also be very attractive. In this role you will be performing regular checks and audits of the Security environment. If you would like to know more, please do get in touch. Unfortunately, this company is unable to provide sponsorship
Oct 07, 2025
Full time
Information Security Analyst (GRC) Attractive salary & package. Hertfordshire - with flexibility to work from home. A global client of ours are looking to hire an Information Security Analyst. T his company offer the chance for you to work in a very attractive industry, with a great benefit package also. This Information Security Analyst (GRC) role would suit someone with experience with information security risk assessments, reporting risks and who holds the ISO 27001 lead implementer/auditor certification. Any other certifications that you hold will be beneficial. Experience dealing with non-UK entities & stakeholder management experience will also be very attractive. In this role you will be performing regular checks and audits of the Security environment. If you would like to know more, please do get in touch. Unfortunately, this company is unable to provide sponsorship
If you are a current Jazz employee please apply via the Internal Career site. Jazz Pharmaceuticals is a global biopharma company whose purpose is to innovate to transform the lives of patients and their families. We are dedicated to developing life-changing medicines for people with serious diseases - often with limited or no therapeutic options. We have a diverse portfolio of marketed medicines, including leading therapies for sleep disorders and epilepsy, and a growing portfolio of cancer treatments. Our patient-focused and science-driven approach powers pioneering research and development advancements across our robust pipeline of innovative therapeutics in oncology and neuroscience. Jazz is headquartered in Dublin, Ireland with research and development laboratories, manufacturing facilities and employees in multiple countries committed to serving patients worldwide. Please visit for more information. Brief Description: The Senior Analyst of Medical Affairs (Medical Education Grants) will be an integral member of the Medical Affairs, Medical Education Grant team. This role is essential for enhancing efficiency and effectiveness of the department's operational and management of Independent Medical Education grant requests from external organizations. Essential Functions Monitor the Educational Grant Management System and perform initial review of grant requests for completeness and alignment to industry and company guidelines Partner with Grants Manager to track routed requests against the budget to ensure approvals do not exceed the target forecast Process grant requests, to include communication of grant decisions to internal and external parties and issuing of payment to requestors Maintain a schedule of supported educational events across all Neuroscience molecules Track outcomes from supported programs Gather and assist analyze performance metrics under Grant Managers' oversight and communicate the results to stakeholders within the organization as needed. Prepare presentations for use by Grants Manager and other internal departments as needed Respond to reported problems and work with a diverse team of internal and external stakeholders to identify resolutions Schedule monthly EGRC meetings, distribute review materials to the team prior to the meeting, and prepare presentation materials Identify potential process improvements related to the grant workflow Update documentation related to IME grant processes and workflow diagrams to ensure business continuity and aid in continuous improvement efforts Communicate regularly with grant requestors regarding status, payment, program materials and outcomes of supported activities Analyze operational processes and systems and establish best practices Participate in professional meetings to evaluate the impact that regulatory and policy decisions have on IME grants Partner with IME Director on special projects Required Knowledge, Skills, and Abilities Pharmaceutical industry and/or agency/medical education company experience is required Experience working with Microsoft Office, including Excel, PowerPoint, Outlook and Word is required Experience working with Pivot Tables, Macros and/or Visual Basic for Applications is preferred Experience working with publication software (e.g., Microsoft Publisher, Adobe InDesign) is desired Knowledge/understanding of FDA and regulatory guidelines for industry support of medical education events (e.g., PhRMA guidelines, OIG, AMA, ACCME, Sunshine Act) is desired Knowledge of CME/CE outcomes assessments (e.g., MOOREs, TELMs) is desired Experience working with reporting solutions (e.g., Izenda, SmartSheets) is desired Experience working with a request management or customer management system is desired (e.g., CyberGrants, Vision Tracker, CRM systems) Required/Preferred Education and Licenses Relevant degree, direct experience working in independent medical education grants or a mix of both Jazz Pharmaceuticals is an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any characteristic protected by law. The successful candidate will also be eligible to participate in various benefits offerings, including, but not limited to, medical, dental and vision insurance, retirement savings plan, and flexible paid vacation. For more information on our Benefits offerings please click here: .
Oct 04, 2025
Full time
If you are a current Jazz employee please apply via the Internal Career site. Jazz Pharmaceuticals is a global biopharma company whose purpose is to innovate to transform the lives of patients and their families. We are dedicated to developing life-changing medicines for people with serious diseases - often with limited or no therapeutic options. We have a diverse portfolio of marketed medicines, including leading therapies for sleep disorders and epilepsy, and a growing portfolio of cancer treatments. Our patient-focused and science-driven approach powers pioneering research and development advancements across our robust pipeline of innovative therapeutics in oncology and neuroscience. Jazz is headquartered in Dublin, Ireland with research and development laboratories, manufacturing facilities and employees in multiple countries committed to serving patients worldwide. Please visit for more information. Brief Description: The Senior Analyst of Medical Affairs (Medical Education Grants) will be an integral member of the Medical Affairs, Medical Education Grant team. This role is essential for enhancing efficiency and effectiveness of the department's operational and management of Independent Medical Education grant requests from external organizations. Essential Functions Monitor the Educational Grant Management System and perform initial review of grant requests for completeness and alignment to industry and company guidelines Partner with Grants Manager to track routed requests against the budget to ensure approvals do not exceed the target forecast Process grant requests, to include communication of grant decisions to internal and external parties and issuing of payment to requestors Maintain a schedule of supported educational events across all Neuroscience molecules Track outcomes from supported programs Gather and assist analyze performance metrics under Grant Managers' oversight and communicate the results to stakeholders within the organization as needed. Prepare presentations for use by Grants Manager and other internal departments as needed Respond to reported problems and work with a diverse team of internal and external stakeholders to identify resolutions Schedule monthly EGRC meetings, distribute review materials to the team prior to the meeting, and prepare presentation materials Identify potential process improvements related to the grant workflow Update documentation related to IME grant processes and workflow diagrams to ensure business continuity and aid in continuous improvement efforts Communicate regularly with grant requestors regarding status, payment, program materials and outcomes of supported activities Analyze operational processes and systems and establish best practices Participate in professional meetings to evaluate the impact that regulatory and policy decisions have on IME grants Partner with IME Director on special projects Required Knowledge, Skills, and Abilities Pharmaceutical industry and/or agency/medical education company experience is required Experience working with Microsoft Office, including Excel, PowerPoint, Outlook and Word is required Experience working with Pivot Tables, Macros and/or Visual Basic for Applications is preferred Experience working with publication software (e.g., Microsoft Publisher, Adobe InDesign) is desired Knowledge/understanding of FDA and regulatory guidelines for industry support of medical education events (e.g., PhRMA guidelines, OIG, AMA, ACCME, Sunshine Act) is desired Knowledge of CME/CE outcomes assessments (e.g., MOOREs, TELMs) is desired Experience working with reporting solutions (e.g., Izenda, SmartSheets) is desired Experience working with a request management or customer management system is desired (e.g., CyberGrants, Vision Tracker, CRM systems) Required/Preferred Education and Licenses Relevant degree, direct experience working in independent medical education grants or a mix of both Jazz Pharmaceuticals is an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any characteristic protected by law. The successful candidate will also be eligible to participate in various benefits offerings, including, but not limited to, medical, dental and vision insurance, retirement savings plan, and flexible paid vacation. For more information on our Benefits offerings please click here: .
If you are a current Jazz employee please apply via the Internal Career site. Jazz Pharmaceuticals is a global biopharma company whose purpose is to innovate to transform the lives of patients and their families. We are dedicated to developing life-changing medicines for people with serious diseases - often with limited or no therapeutic options. We have a diverse portfolio of marketed medicines, including leading therapies for sleep disorders and epilepsy, and a growing portfolio of cancer treatments. Our patient-focused and science-driven approach powers pioneering research and development advancements across our robust pipeline of innovative therapeutics in oncology and neuroscience. Jazz is headquartered in Dublin, Ireland with research and development laboratories, manufacturing facilities and employees in multiple countries committed to serving patients worldwide. Please visit for more information. Brief Description: The Senior Analyst of Medical Affairs (Medical Education Grants) will be an integral member of the Medical Affairs, Medical Education Grant team. This role is essential for enhancing efficiency and effectiveness of the department's operational and management of Independent Medical Education grant requests from external organizations. Essential Functions Monitor the Educational Grant Management System and perform initial review of grant requests for completeness and alignment to industry and company guidelines Partner with Grants Manager to track routed requests against the budget to ensure approvals do not exceed the target forecast Process grant requests, to include communication of grant decisions to internal and external parties and issuing of payment to requestors Maintain a schedule of supported educational events across all Neuroscience molecules Track outcomes from supported programs Gather and assist analyze performance metrics under Grant Managers' oversight and communicate the results to stakeholders within the organization as needed. Prepare presentations for use by Grants Manager and other internal departments as needed Respond to reported problems and work with a diverse team of internal and external stakeholders to identify resolutions Schedule monthly EGRC meetings, distribute review materials to the team prior to the meeting, and prepare presentation materials Identify potential process improvements related to the grant workflow Update documentation related to IME grant processes and workflow diagrams to ensure business continuity and aid in continuous improvement efforts Communicate regularly with grant requestors regarding status, payment, program materials and outcomes of supported activities Analyze operational processes and systems and establish best practices Participate in professional meetings to evaluate the impact that regulatory and policy decisions have on IME grants Partner with IME Director on special projects Required Knowledge, Skills, and Abilities Pharmaceutical industry and/or agency/medical education company experience is required Experience working with Microsoft Office, including Excel, PowerPoint, Outlook and Word is required Experience working with Pivot Tables, Macros and/or Visual Basic for Applications is preferred Experience working with publication software (e.g., Microsoft Publisher, Adobe InDesign) is desired Knowledge/understanding of FDA and regulatory guidelines for industry support of medical education events (e.g., PhRMA guidelines, OIG, AMA, ACCME, Sunshine Act) is desired Knowledge of CME/CE outcomes assessments (e.g., MOOREs, TELMs) is desired Experience working with reporting solutions (e.g., Izenda, SmartSheets) is desired Experience working with a request management or customer management system is desired (e.g., CyberGrants, Vision Tracker, CRM systems) Required/Preferred Education and Licenses Relevant degree, direct experience working in independent medical education grants or a mix of both Jazz Pharmaceuticals is an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any characteristic protected by law. The successful candidate will also be eligible to participate in various benefits offerings, including, but not limited to, medical, dental and vision insurance, retirement savings plan, and flexible paid vacation. For more information on our Benefits offerings please click here: .
Oct 04, 2025
Full time
If you are a current Jazz employee please apply via the Internal Career site. Jazz Pharmaceuticals is a global biopharma company whose purpose is to innovate to transform the lives of patients and their families. We are dedicated to developing life-changing medicines for people with serious diseases - often with limited or no therapeutic options. We have a diverse portfolio of marketed medicines, including leading therapies for sleep disorders and epilepsy, and a growing portfolio of cancer treatments. Our patient-focused and science-driven approach powers pioneering research and development advancements across our robust pipeline of innovative therapeutics in oncology and neuroscience. Jazz is headquartered in Dublin, Ireland with research and development laboratories, manufacturing facilities and employees in multiple countries committed to serving patients worldwide. Please visit for more information. Brief Description: The Senior Analyst of Medical Affairs (Medical Education Grants) will be an integral member of the Medical Affairs, Medical Education Grant team. This role is essential for enhancing efficiency and effectiveness of the department's operational and management of Independent Medical Education grant requests from external organizations. Essential Functions Monitor the Educational Grant Management System and perform initial review of grant requests for completeness and alignment to industry and company guidelines Partner with Grants Manager to track routed requests against the budget to ensure approvals do not exceed the target forecast Process grant requests, to include communication of grant decisions to internal and external parties and issuing of payment to requestors Maintain a schedule of supported educational events across all Neuroscience molecules Track outcomes from supported programs Gather and assist analyze performance metrics under Grant Managers' oversight and communicate the results to stakeholders within the organization as needed. Prepare presentations for use by Grants Manager and other internal departments as needed Respond to reported problems and work with a diverse team of internal and external stakeholders to identify resolutions Schedule monthly EGRC meetings, distribute review materials to the team prior to the meeting, and prepare presentation materials Identify potential process improvements related to the grant workflow Update documentation related to IME grant processes and workflow diagrams to ensure business continuity and aid in continuous improvement efforts Communicate regularly with grant requestors regarding status, payment, program materials and outcomes of supported activities Analyze operational processes and systems and establish best practices Participate in professional meetings to evaluate the impact that regulatory and policy decisions have on IME grants Partner with IME Director on special projects Required Knowledge, Skills, and Abilities Pharmaceutical industry and/or agency/medical education company experience is required Experience working with Microsoft Office, including Excel, PowerPoint, Outlook and Word is required Experience working with Pivot Tables, Macros and/or Visual Basic for Applications is preferred Experience working with publication software (e.g., Microsoft Publisher, Adobe InDesign) is desired Knowledge/understanding of FDA and regulatory guidelines for industry support of medical education events (e.g., PhRMA guidelines, OIG, AMA, ACCME, Sunshine Act) is desired Knowledge of CME/CE outcomes assessments (e.g., MOOREs, TELMs) is desired Experience working with reporting solutions (e.g., Izenda, SmartSheets) is desired Experience working with a request management or customer management system is desired (e.g., CyberGrants, Vision Tracker, CRM systems) Required/Preferred Education and Licenses Relevant degree, direct experience working in independent medical education grants or a mix of both Jazz Pharmaceuticals is an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any characteristic protected by law. The successful candidate will also be eligible to participate in various benefits offerings, including, but not limited to, medical, dental and vision insurance, retirement savings plan, and flexible paid vacation. For more information on our Benefits offerings please click here: .
IT Security Analyst Location: Hybrid - Middlesbrough Salary: 50,000 - 60,000 + Benefits 83zero are partnered with a market-leading software company who are on a mission to transform the construction and related industries through their end-to-end digital solutions. With teams across the UK, Europe, USA and India, they are delivering large-scale transformation projects on a global scale and are continuing to expand. We are now looking for a highly organised and detail-driven IT Security Analyst to join their growing security function. This role plays a key part in securing customer trust and supplier integrity, ensuring compliance with recognised frameworks, and supporting wider security initiatives. The Role Own and manage responses to customer security questionnaires (SIG, CAIQ, bespoke). Work cross-functionally with Legal, Compliance, Procurement, Product and Security teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 Lead Auditor. Familiarity with SaaS/cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working Excellent career development and training opportunities
Oct 03, 2025
Full time
IT Security Analyst Location: Hybrid - Middlesbrough Salary: 50,000 - 60,000 + Benefits 83zero are partnered with a market-leading software company who are on a mission to transform the construction and related industries through their end-to-end digital solutions. With teams across the UK, Europe, USA and India, they are delivering large-scale transformation projects on a global scale and are continuing to expand. We are now looking for a highly organised and detail-driven IT Security Analyst to join their growing security function. This role plays a key part in securing customer trust and supplier integrity, ensuring compliance with recognised frameworks, and supporting wider security initiatives. The Role Own and manage responses to customer security questionnaires (SIG, CAIQ, bespoke). Work cross-functionally with Legal, Compliance, Procurement, Product and Security teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 Lead Auditor. Familiarity with SaaS/cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working Excellent career development and training opportunities
IT Security Analyst Location: Hybrid - Buckinghamshire Salary: 50,000 - 55,000 + Benefits 83zero are partnered with a market-leading software company who are on a mission to transform the construction and related industries through their end-to-end digital solutions. With teams across the UK, Europe, USA and India, they are delivering large-scale transformation projects on a global scale and are continuing to expand. We are now looking for a highly organised and detail-driven IT Security Analyst to join their growing security function. This role plays a key part in securing customer trust and supplier integrity, ensuring compliance with recognised frameworks, and supporting wider security initiatives. The Role Own and manage responses to customer security questionnaires (SIG, CAIQ, bespoke). Work cross-functionally with Legal, Compliance, Procurement, Product and Security teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 Lead Auditor. Familiarity with SaaS/cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working Excellent career development and training opportunities
Oct 03, 2025
Full time
IT Security Analyst Location: Hybrid - Buckinghamshire Salary: 50,000 - 55,000 + Benefits 83zero are partnered with a market-leading software company who are on a mission to transform the construction and related industries through their end-to-end digital solutions. With teams across the UK, Europe, USA and India, they are delivering large-scale transformation projects on a global scale and are continuing to expand. We are now looking for a highly organised and detail-driven IT Security Analyst to join their growing security function. This role plays a key part in securing customer trust and supplier integrity, ensuring compliance with recognised frameworks, and supporting wider security initiatives. The Role Own and manage responses to customer security questionnaires (SIG, CAIQ, bespoke). Work cross-functionally with Legal, Compliance, Procurement, Product and Security teams. Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2. Act as the key point of contact for security assurance queries. Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls. Manage the third-party due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal/external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 Lead Auditor. Familiarity with SaaS/cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working Excellent career development and training opportunities
Security Risk Analyst 6-month contract London/Remote Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role, you will be responsible for identifying, assessing, and tracking security risks across assets, systems, and third parties, ensuring compliance with internal standards, policies, and regulatory frameworks. Key Skills from the Security Risk Analyst: Strong background in Security Risk and Governance with hands-on experience in Archer (experience with other GRC tools is also valuable). Solid understanding of risk assessment methodologies, security frameworks (NIST, ISO (phone number removed , and compliance requirements (GDPR, PCI DSS, SOX). Strong written communication skills, able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the Security Risk Analyst: Maintain and improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party/vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic and ad-hoc risk assessments in line with organisational policies. The Security Risk Analyst is required onsite in London, once a week. Apply now to speak with VIQU IT in confidence about the Security Risk Analyst role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
Oct 02, 2025
Contractor
Security Risk Analyst 6-month contract London/Remote Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role, you will be responsible for identifying, assessing, and tracking security risks across assets, systems, and third parties, ensuring compliance with internal standards, policies, and regulatory frameworks. Key Skills from the Security Risk Analyst: Strong background in Security Risk and Governance with hands-on experience in Archer (experience with other GRC tools is also valuable). Solid understanding of risk assessment methodologies, security frameworks (NIST, ISO (phone number removed , and compliance requirements (GDPR, PCI DSS, SOX). Strong written communication skills, able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the Security Risk Analyst: Maintain and improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party/vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic and ad-hoc risk assessments in line with organisational policies. The Security Risk Analyst is required onsite in London, once a week. Apply now to speak with VIQU IT in confidence about the Security Risk Analyst role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
Are you ready to make a meaningful impact in the world of cyber security? At UK Power Networks, we're seeking a dedicated Senior Cyber Security Risk Specialist to join our Information Systems directorate in either our London or Crawley office. With a competitive salary of up to 75,000.00 plus a 7.5% bonus. Step into a pivotal role where your skills and insights will help shape the security posture of a leading energy distribution company. You'll report directly to the Cyber Security Governance, Risk & Compliance Manager and play a vital part in safeguarding essential business operations from evolving cyber threats. The role is dynamic and collaborative, involving close teamwork with a group of 8-10 GRC professionals and expert partners. You'll mentor less experienced analysts, offer guidance and training, and occasionally deputise for the GRC Manager, representing UK Power Networks at industry forums and regulatory working groups. Communication is at the heart of this position; you'll interact regularly with senior management across IT, IS, and the broader business, as well as with auditors and third-party partners, translating technical risks into actionable recommendations. Your main accountabilities will revolve around conducting cyber security risk assessments using the UK Power Networks framework, identifying, tracking, and remediating control environment risks, and ensuring third-party risks are also addressed. You'll produce management information and regulatory submissions, maintain compliance with major standards like ISO 27001/27002, and provide assurance for policy compliance. Establishing robust GRC policies and procedures, developing the IT controls framework, and supporting business continuity and disaster recovery planning will all fall under your remit. You'll operate and improve our information security management system, ensure ongoing compliance with legal and regulatory requirements such as Cyber Essentials, NIS Regulations, and the Smart Energy Code, and support technical implementation of GRC tools. Imagine being part of a team that is integral to delivering seamless technology solutions and continuous improvement throughout the organisation. The Information Systems Department underpins our commitment to operational excellence, customer service, and cyber resilience. In this role, you'll assess IT and cyber risks, drive improvements in our cyber maturity, collaborate with a variety of internal and external partners, and enable UK Power Networks to maintain its license to operate by demonstrating a strong and sustainable security posture. We're looking for someone with practical experience in GRC, audit, or cyber security, and with relevant training in cyber risk assessment. You should have a deep knowledge of at least three specialist areas such as industry standards, operational controls, risk management, business continuity, or supply chain security. Professional certifications like CISSP, CompTIA, CISA, CISM, CRISC, or an academic background in information security will be highly valued, along with hands-on experience in compliance frameworks, IT/OT risk assessments, and audit engagements. Familiarity with regulated environments, especially within the energy sector, will be advantageous. Beyond a competitive salary and bonus, we offer 25 days of annual leave plus bank holidays, reservist leave, a generous pension plan, tenancy loan deposit and season ticket schemes, tax-efficient benefits, health support, retail discounts, and an employee assistance programme. We are committed to supporting your health, safety, and wellbeing, and are proud to be an equal opportunity employer who values diversity and inclusion at every level. If you are motivated to support a critical infrastructure business, thrive in a collaborative environment, and are passionate about advancing cyber security, we invite you to apply and become a key player in the future of UK Power Networks. Take the next step towards an exciting and rewarding career-your expertise could make all the difference. Click apply to view the full job description on our careers page with a closing date of 28/09/2025
Sep 23, 2025
Full time
Are you ready to make a meaningful impact in the world of cyber security? At UK Power Networks, we're seeking a dedicated Senior Cyber Security Risk Specialist to join our Information Systems directorate in either our London or Crawley office. With a competitive salary of up to 75,000.00 plus a 7.5% bonus. Step into a pivotal role where your skills and insights will help shape the security posture of a leading energy distribution company. You'll report directly to the Cyber Security Governance, Risk & Compliance Manager and play a vital part in safeguarding essential business operations from evolving cyber threats. The role is dynamic and collaborative, involving close teamwork with a group of 8-10 GRC professionals and expert partners. You'll mentor less experienced analysts, offer guidance and training, and occasionally deputise for the GRC Manager, representing UK Power Networks at industry forums and regulatory working groups. Communication is at the heart of this position; you'll interact regularly with senior management across IT, IS, and the broader business, as well as with auditors and third-party partners, translating technical risks into actionable recommendations. Your main accountabilities will revolve around conducting cyber security risk assessments using the UK Power Networks framework, identifying, tracking, and remediating control environment risks, and ensuring third-party risks are also addressed. You'll produce management information and regulatory submissions, maintain compliance with major standards like ISO 27001/27002, and provide assurance for policy compliance. Establishing robust GRC policies and procedures, developing the IT controls framework, and supporting business continuity and disaster recovery planning will all fall under your remit. You'll operate and improve our information security management system, ensure ongoing compliance with legal and regulatory requirements such as Cyber Essentials, NIS Regulations, and the Smart Energy Code, and support technical implementation of GRC tools. Imagine being part of a team that is integral to delivering seamless technology solutions and continuous improvement throughout the organisation. The Information Systems Department underpins our commitment to operational excellence, customer service, and cyber resilience. In this role, you'll assess IT and cyber risks, drive improvements in our cyber maturity, collaborate with a variety of internal and external partners, and enable UK Power Networks to maintain its license to operate by demonstrating a strong and sustainable security posture. We're looking for someone with practical experience in GRC, audit, or cyber security, and with relevant training in cyber risk assessment. You should have a deep knowledge of at least three specialist areas such as industry standards, operational controls, risk management, business continuity, or supply chain security. Professional certifications like CISSP, CompTIA, CISA, CISM, CRISC, or an academic background in information security will be highly valued, along with hands-on experience in compliance frameworks, IT/OT risk assessments, and audit engagements. Familiarity with regulated environments, especially within the energy sector, will be advantageous. Beyond a competitive salary and bonus, we offer 25 days of annual leave plus bank holidays, reservist leave, a generous pension plan, tenancy loan deposit and season ticket schemes, tax-efficient benefits, health support, retail discounts, and an employee assistance programme. We are committed to supporting your health, safety, and wellbeing, and are proud to be an equal opportunity employer who values diversity and inclusion at every level. If you are motivated to support a critical infrastructure business, thrive in a collaborative environment, and are passionate about advancing cyber security, we invite you to apply and become a key player in the future of UK Power Networks. Take the next step towards an exciting and rewarding career-your expertise could make all the difference. Click apply to view the full job description on our careers page with a closing date of 28/09/2025
