InformationSecurityGRCAnalyst

**Job Title ** Information Security GRC Analyst I (Hybrid) **Job Description** For more than 80 years, Kaplan has been a trailblazer in education and professional advancement. We are a global company at the intersection of education and technology, focused on collaboration, innovation, and creativity to deliver a best in class educational experience and make Kaplan a great place to work. Our offices in India opened in Bengaluru in 2018. Since then, our team has fueled growth and innovation across the organization, impacting students worldwide. We are eager to grow and expand with skilled professionals like you who use their talent to build solutions, enable effective learning, and improve students’ lives. The future of education is here and we are eager to work alongside those who want to make a positive impact and inspire change in the world around them. The Information Security GRC Analyst I role will support and enhance IT governance, risk assessment, and compliance functions for the KNA organization. This position will be heavily involved in monitoring, maintaining, and improving elements of overall IT governance, enterprise risk management, and compliance with regulations and control frameworks such as ISO 27001, NIST, and COBIT. The Information Security GRC analyst I will focus on facilitating the review, development, implementation, and documentation supporting the ISMS policies, processes, procedures, and practices, while also identifying areas for improvement and efficiency. **_Primary/Key Responsibilities_** * Support the development, implementation, and maintenance of IT governance frameworks (e.g., COBIT, ITIL), ensuring alignment with organizational and regulatory requirements. * Oversee the lifecycle of IT policies and standards, including creation, review, approval, communication, and monitoring for compliance. * Manage third party vendor risk, including AI and cloud service providers, by conducting due diligence, security and compliance assessments,