Information Security Governance Analyst
Location:
Aberdeen, GB
Employment type: Employee Place of work: Hybrid Offshore/Onshore: Onshore
TechnipFMC is committed to driving real change in the energy industry. Our ambition is to build a sustainable future through relentless innovation and global collaboration – and we want you to be part of it. You’ll be joining a culture that values curiosity, expertise, and ideas as well as equal opportunities, inclusion, and authenticity. Bring your unique energy to our team of more than 21,000 people worldwide, and discover a rewarding, fulfilling, and varied career that you can take in anywhere you want to go.
Job Purpose
Serve as an Information Security Professional as an Information Security Governance Analyst, protecting TechnipFMC information security throughout the system lifecycle.
The Information Security Governance Analyst supports the IT compliance program within the Information Security organization. This support includes but is not limited to Sarbanes Oxley (SOX), SOC 2, ISO 27001, ISO 42001, NIST, questionnaires, audits and assessments from 3rd parties, clients and partners assessing the TechnipFMC’s regulatory compliance status.
Job Description
1. Audit & Assessment Support Supports internal/external audits and controls testing. Triages, assigns, and tracks requests for information. Gathers, evaluates, and uploads evidence; resolves gaps with SMEs. Perform quality checks on audit evidence before submission. Manages audit schedules and status trackers. Monitors control testing progress and track failed tests. Assists with customer assessments and questionnaires. Maintains Audit Findings List and Corrective Action Log Reports audit findings and evidence status to GRC management.
2. Governing Document Management Maintains and updates document status trackers. Monitors and reports document status to stakeholders. Supports document maintenance and updates as needed.
3. Program Improvement & Reporting Identifies compliance program gaps and recommends improvements. Maintains GRC metrics, KPIs, and the Risk and Controls Matrix (RCM). Inputs data into the GRC module and publishes GRC-related content Prepares materials for Management Reviews, Compliance Committees and other meetings. Keeps up-to-date compliance dashboards.
You are meant for this job if:
Education Requirements:
4. Bachelor’s degree in computer science or related discipline considered as a plus
5. Certifications: CISA, Security+, Network+, Azure AZ-900, AZ-500, AWS certification, CEH, etc.
Work Experience:
6. Experience in supporting or auditing IT and Information Security compliance programs.
7. Strong understanding of compliance regulations (e.g., Sarbanes Oxley 404, PCAOB, PCI, GDPR) and security standards (e.g., ISO 27001, NIST CSF).
8. Familiar with IT governance and quality frameworks such as ISO, COBIT, and ITIL.
9. Skilled in compliance metrics tracking.
10. Proven ability to work effectively in global, matrixed environments.
11. Excellent interpersonal, organizational, and communication skills.
12. Strong analytical, problem-solving, and critical thinking capabilities.
13. Comfortable collaborating across enterprise-scale organizations and building effective working relationships.
14. Advanced oral and written communication skills in English.
Skills
Verbal CommunicationCoachingStakeholder ManagementTechnical WritingSystems ThinkingCompliance SupportRisk AssessmentWritten CommunicationIncident ManagementProcess ImprovementBudgetingDemand IntakeProject/Program ManagementBusiness Continuity and Disaster Recovery PlanningDevelop Governance PrinciplesInformation SecurityRequirements Management and AnalysisGovernance and Security AdministrationLeanEvidence HandlingRegulatory ComplianceInterpreting RequirementsProject Risk and Issues ManagementWork Prioritization
What we offer
15. My Wealth and Protection: Critical Illness Cover, Income Protection, Life Assurance, Will Writing, Workplace ISA, Group Personal Pension Plan - employer contributions up to 10%.
16. My Health and Wellbeing: Private Medical Insurance, Employee Assistance Programme, Dental Insurance, Health Assessments & Personal Accident Insurance.
17. My Lifestyle: Electric Vehicle Scheme, Cyle2Work, Employee Tech Scheme, Give as You Earn, GymFlex, Holiday Trading, Personal Travel Insurance, Perks at Work.
18. My Workplace: Subsidised Cafe, Branded workwear, Hybrid Working, Flexible Working Arrangements, Enhanced Maternity and Parental leave, Talent/Management and Leadership programmes, Various inhouse training opportunities for your personal development.
19. My Giving: Volunteering opportunities
Being a global leader in the energy industry requires an inclusive and diverse environment. TechnipFMC promotes equal opportunities and inclusion by ensuring equal opportunities to all ages, races, ethnicities, religions, gender expressions, disabilities, or all other pluralities. We celebrate who you are and what you bring. Every voice matter and we encourage you to add to our culture.
TechnipFMC respects the rights and dignity of those it works with and promotes adherence to internationally recognized human rights principles for those in its value chain.
Learn more about TechnipFMC and find other open positions by visiting our Career Page.
Follow us on LinkedIn for company updates
Date posted: Mar 17, 2026 Requisition number: 17151