GRC Analyst

Who We Are:
At Prezzee, we’re more than just a digital gifting platform – we’re building human connections through unforgettable gifting moments. With over 1,000 brand partners globally, we’re transforming how people give and receive gifts. From our beginnings as a small Australian startup to becoming a global leader, we thrive on innovation, collaboration, and a deep commitment to making a real impact.

The Role:
Ready to take charge of enhancing security and driving compliance across the organization? As a GRC Analyst at Prezzee, you’ll play a pivotal role in supporting our security team’s governance, risk, and compliance efforts. You'll assist in the implementation and upkeep of essential security frameworks like ISO 27001, PCI DSS, ISO 42001, and Cyber Essentials. By identifying and managing risks, ensuring adherence to industry standards, and supporting security governance initiatives, you’ll help strengthen Prezzee’s security posture and safeguard its future success.

What You'll Be Doing: 

Security Governance & Compliance

• Assist in the implementation and maintenance of security frameworks (ISO 27001, PCI DSS, ISO 42001, Cyber Essentials).
• Support compliance assessments, audits, user access reviews, and internal security reviews.
• Maintain security policies, standards, and procedures, ensuring they align with industry best practices and regulatory requirements.
• Collaborate with internal stakeholders to ensure security governance requirements are met.
• Track and manage security compliance metrics and reporting.
• Leverage AI-driven tools and automation to enhance security governance and compliance processes.

Risk Management

• Support risk assessments to identify, assess, and mitigate security risks.
• Maintain and update the risk register, ensuring risks are tracked and assigned appropriate treatment plans.
• Assist in third-party risk assessments, evaluating vendors' security postures.
• Work with security teams to implement risk mitigation strategies and track remediation efforts.
• Utilize AI and automation to enhance risk assessment and monitoring capabilities.

Security Awareness & Training

• Support the development and delivery of security awareness programs to promote a security-first culture.
• Assist in security training initiatives for employees and key stakeholders.
• Monitor and report on the effectiveness of security awareness programs.

Audit & Assurance

• Completion of security questionnaires, RFPs and security responses to provide customers assurance in Prezzee products and services.
• Assist in preparing for internal and external security audits, ensuring evidence collection and documentation is up to date.
• Support remediation efforts following audit findings, tracking corrective actions.
• Contribute to continuous improvement initiatives to enhance security controls and compliance measures.
• Implement AI-driven analytics to streamline audit preparation and compliance monitoring.

What We’re Looking For:

Core Skills:

• 2+ years of experience in security governance, risk, and compliance (GRC) or related fields.
• Knowledge of ISO 27001, PCI DSS, ISO 42001, Cyber Essentials, and risk management frameworks.
• Experience conducting risk assessments and maintaining risk registers.
• Strong written and verbal communication skills for policy writing and reporting.
• Familiarity with security audit processes and third-party risk management.

Why Join Us?
Join us at Prezzee, where we don’t just work – we innovate, collaborate, and shape the future of digital gifting. As part of our dynamic team, you’ll contribute to a global company’s growth while enjoying a flexible, supportive, and inclusive work environment. We offer:

• Incentive schemes based on company-wide targets and individual performance.
• Employee referral program and staff discounts.
• Flexible hours, Culture Swap Days, and 30-day work-from-anywhere benefit.
• Opportunities for professional growth through self-led learning and leadership development programs. 
• Fortnight FIRE Fridays where teams come collaborate to spark with Formative Ideas, Research and Experiment in tech improvements
• Supportive wellbeing platform (Telus) for your mental, social, financial, and physical wellbeing.

Prezzee has been recognized as Foundry's Computerworld 2024 & 2025 Best Places to Work in IT . We value diversity, collaboration, and innovation in everything we do. Join a global team united by the core values: Give openness, Give greatness, Give magic, and Give a damn.

Prezzee is an Equal Opportunity employer. We believe that diversity is the key to building the best products for our customers, team culture and growing our global business. Our diversity mission is for our people to be their most authentic selves, to inspire, innovate and celebrate within a culture of belonging. We do not discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status.

We are looking for people to help create human connections, make magic and shape the future of gifting so even if you don’t think you quite meet all of the skills listed or tick all the boxes, we’d still love to hear from you! Please let us know if you require any adjustments as part of the application and recruitment process, We also encourage you to let us know of your pronouns at any point of the process.