Careers  →  Junior GRC Analyst

Junior GRC Analyst

Cairo, Egypt Hybrid Full-time

About Cyber Force

Cyber Force is a cybersecurity consultancy delivering advisory, managed services, and operations to international clients. Our senior-led teams combine governance, engineering, and 24×7 response to turn cyber risk into measurable resilience.

Role Overview

We are looking for a Junior GRC Analyst to join our Cyber Risk, GRC & Regulatory team. You will support delivery of governance, risk, and compliance engagements for international clients — conducting gap analyses, developing policies, executing risk assessments, supporting audits, and mapping controls across ISO 27001, NIST, PCI DSS, SOC 2, and more. This is a consultancy delivery role: real client projects from day one.

Key Responsibilities

  • Conduct gap analyses against ISO/IEC 27000 family (27001, 27002, 27005, 27701) and support remediation plans
  • Develop, review, and maintain information security policies, standards, and procedures
  • Execute risk assessments: identify threats/vulnerabilities, evaluate likelihood/impact, maintain risk registers
  • Support internal and external audits: gather evidence, review controls, track findings
  • Conduct vendor and third-party risk assessments
  • Map and crosswalk controls across ISO 27001, NIST CSF v2, NIST SP 800-53, PCI DSS, SOC 2
  • Develop Statements of Applicability (SoA), BCPs, and ISMS documentation
  • Prepare client deliverables: gap reports, risk outputs, policy docs, compliance summaries
  • Leverage AI tools (Claude, ChatGPT) for research, policy drafting, control mapping
  • Collaborate with SOC, offensive security, and architecture teams on control validation

Requirements

  • Bachelor’s in Cybersecurity, Information Security, IT, Computer Science, or related
  • 0–1 year in GRC, information security, compliance, or IT audit (internships count)
  • Solid understanding of the ISO/IEC 27000 family (27001, 27002, 27005) — a must
  • Familiarity with NIST CSF v2, RMF, SP 800-53 — highly preferred
  • Familiarity with PCI DSS and SOC 2 — highly preferred
  • Fluent English (written and spoken)
  • Demonstrated experience using LLM-based tools (Claude, ChatGPT) — this is a must
  • Strong technical writing skills
  • CISSP, CASP+, or VICI VCGP — a major plus
  • VICI VCGA, Security+, ISC2 CC, ISO 27001 LI/LA, CISA, CRISC — a plus
  • GRC platforms (ServiceNow, Archer, OneTrust) — a plus

Ready to apply?

Submit your application and we'll be in touch within a week.

Apply for this role →

Stay ahead of threats.

Monthly insights, threat alerts, and event invites.

© 2019 – 2026 Cyber Force LLC • All Rights Reserved • Cyber Force™ and the Cyber Force logo are trademarks of Cyber Force LLC. All other trademarks are the property of their respective owners.

Need help? Call us

+20 15 5600 1302

Go to Top