Responsibilities

We are looking for an exceptional Senior GRC Analyst to join our growing team. In this role, you will lead compliance assessments for frameworks such as NIST 800-171, ISO 27001, NIST 800-53 (FedRAMP), PCI, MLPS and IRAP, while also driving broader security compliance efforts. The ideal candidate will use strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and recommend improvements across security domains. You will also be responsible for:

• Lead and participate in both internal and external audits for frameworks including ISO 27001/27701, PCI-DSS, NIST 800-171, NIST 800-53 (FedRamp), and IRAP

• Experience using or exploring AI/automation tools to enhance, streamline, or scale Governance, Risk, and Compliance (GRC) processes and workflows

• Manage and oversee risk, compliance, and governance initiatives across teams

• Coordinate with process owners, control owners, auditors, and consultants to ensure findings are tracked and addressed

• Conduct risk assessments, security audits, and third-party/vendor risk reviews

• Review contracts to ensure security and compliance requirements are met

• Identify process gaps and recommend improvements to enhance the organization’s security posture

• Communicate risks and compliance requirements clearly to both technical and non-technical stakeholders

• Perform regular user access reviews

• Develop and track remediation plans for identified risks and issues

• Maintain and update the risk register

• Oversee vendor security assurance processes

• Collaborate with stakeholders to design and implement effective internal controls aligned with regulatory standards

• Support risk and security discussions across cross-functional teams

• Build strong working relationships across departments

• Take on additional responsibilities as needed

Requirements

Qualifications / Experience / Technical Skills

Please note that the working hours for this position are from 2:00 PM to 11:00 PM IST (overlap with U.S. Pacific Time required)

• 8+ years of experience in cybersecurity programs, audits, risk management, compliance, or remediation

• Experience working with cloud platforms such as AWS, Azure, or Google Cloud

• Proven ability to negotiate and prioritize risk remediation with internal stakeholders

• Bachelor’s degree in Information Systems, Computer Science, Information Security, or a related field

• Strong understanding of security controls, including cloud environments, firewalls, IDS/IPS, and vulnerability management

• Familiarity with NIST 800-171 and NIST Risk Management Framework (NIST 800-53)

• Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701

• Relevant certifications (CISSP, CISA, PCI ISA, ISO, or similar) are preferred

• Ability to manage multiple priorities independently with minimal supervision

Soft Skills / Personal Characteristics

• Strong communication skills with the ability to translate compliance requirements into technical actions

• High energy and adaptability in a fast-paced environment

• Strong collaboration and a knowledge-sharing mindset

• Excellent time management and organizational skills

• High attention to detail, integrity, and ethical standards

• Willingness to learn and take on new challenges

Additional requirements

• May involve some international travel

• This position requires overlap with U.S. Pacific Time (PST) working hours. Candidates should be available and flexible to work from 2:00 PM to 11:00 PM IST.

• Strong hands-on experience with PCI audits, ISO 27001, NIST 800-171, FedRamp, SOC 2, and potentially IRAP is required.

To help your application stand out, please take time to answer the Job Application Questions below clearly and concisely. All submissions are reviewed by our Hiring Team, not evaluated by AI.

(REQ ID: 2760)

Why we're hiring:

The Threat Hunter is responsible for proactively identifying advanced threats that evade traditional security controls. This role involves hypothesis-driven investigations, leveraging threat intelligence, and analyzing telemetry across endpoints, networks, and cloud environments to uncover stealthy adversary activity. The Threat Hunter plays a critical role in reducing dwell time and strengthening organizational resilience under the Autonomic Security Operations model.

What you'll be doing:

Proactive Threat Hunting

· Execute hypothesis-driven hunts based on adversary TTPs and threat intelligence.

· Analyze telemetry from SIEM, EDR/XDR, NDR, and cloud-native platforms to identify anomalies.

· Develop and maintain hunting queries and scripts for automation and repeatability.

· Validate detection coverage through purple team exercises and adversary emulation.

Threat Intelligence Integration

· Incorporate emerging threat intelligence into hunting hypotheses and detection pipelines.

· Maintain awareness of global threat actor tactics, techniques, and procedures (MITRE ATT&CK).

Continuous Improvement

· Document hunt findings and feed insights into detection engineering and SOC workflows.

· Maintain a backlog of hunting hypotheses and visibility gaps for remediation.

· Contribute to automation of hunting workflows using scripting and SOAR platforms.

Strategic Alignment to GCAT SOC10x

· 10X People: Continuous learning and knowledge sharing within the team.

· 10X Process: Embed agile, hypothesis-driven hunting workflows.

· 10X Technology: Leverage AI/ML analytics for anomaly detection and hunt acceleration.

· 10X Visibility: Ensure comprehensive telemetry ingestion across hybrid environments.

· 10X Speed: Reduce dwell time and accelerate detection-to-response cycles.

What you'll need:

Technical Expertise

· Strong knowledge of threat hunting methodologies and frameworks (MITRE ATT&CK, TaHiTI).

· Proficiency in SIEM, EDR/XDR, and log aggregation tools across hybrid infrastructure.

· Scripting skills (Python, PowerShell) for automation and data analysis.

· Familiarity with threat intelligence integration and behavioral analytics.

Collaboration & Communication

· Ability to work closely with SOC, IR, and engineering teams.

· Skilled in documenting hunt outcomes and communicating findings effectively.

Certifications (Preferred)

· GIAC GCTI, GCIH, or equivalent advanced security certifications.

Key Attributes

· Automation-first mindset with focus on scalability and resilience.

· Strong analytical and problem-solving skills.

· Excellent communication and teamwork capabilities.

Who you are:

You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are open-minded: to new ideas, new partnerships, new ways of working.

You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.

You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.

What we'll give you:

Passionate, inspired people – We aim to create a culture in which people can do extraordinary work.

Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.

Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?

Why we're hiring:

The Security Threat Intelligence Analyst provides operational, tactical, and strategic intelligence to support WPP’s detection engineering, incident response, threat hunting, and vulnerability management functions. Aligned to the ASO pillars (Assess, Safeguard, Operate), this role analyses threat data, adversary behaviour, emerging TTPs, and industry developments.

What you'll be doing: 

• Threat Intelligence Collection & Analysis (Assess)
  • Monitor external threat data sources and industry feeds.
  • Evaluate intelligence for accuracy, reliability, and relevance.
  • Produce tactical and operational intelligence outputs.
• Threat Contextualisation & Safeguarding Support (Safeguard)
  • Identify and analyse threats targeting WPP infrastructure.
  • Support detection engineering with TTP insights.
  • Assist in threat-led vulnerability prioritisation.
• Operational Enablement & Cross‑Function Collaboration (Operate)
  • Partner with SOC, IR, Threat Hunting, and VM teams.
  • Produce intelligence reports for internal stakeholders.
  • Maintain indicator repositories (IOCs, hashes, domains).
• Research & Strategic Intelligence Development
  • Conduct research into emerging threats, malware, and campaigns.
  • Develop strategic threat assessments.
• Knowledge Management & Documentation
  • Maintain structured documentation of intelligence processes.
  • Ensure intelligence artefacts are stored and retrievable.

What you'll need:

• Essential:
  • 3+ years operational experience in CTI or SOC.
  • Strong analytical skills.
  • Proficiency with CTI frameworks (MITRE ATT&CK, kill chain).
  • Ability to translate technical threat data into business insight.
• Desirable:
  • GCTI, GREM, GCFA, GCIH certifications.
  • Experience supporting detection engineering or threat hunting.
  • Knowledge of ISO 27001 and WPP standards.

Who you are:

You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are open-minded: to new ideas, new partnerships, new ways of working.

You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.

You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.

What we'll give you:

Passionate, inspired people – We aim to create a culture in which people can do extraordinary work.

Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.

Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?

#LI-Hybrid