IT Risk and Governance Analyst

Social network you want to login/join with:

col-narrow-left

Pearson Whiffin Recruitment Group

hemel hempstead, United Kingdom

Other

-

Yes

col-narrow-right

4

04.06.2025

19.07.2025

col-wide

IT Risk and Governance Analyst – London – 3 month contract

We are seeking an analytical mind, with an eye for detail, procedures and technical acumen, to help the business implement and run a new IT risk management framework. This is a role supporting both a Technology Transformation Programme and oversight of current operational technology and applications.

• Assist in implementing risk identification control strategies; collaborate with teams to create learning materials, templates, and facilitate workshops.
• Support horizon scanning exercises to identify emerging risks, working with Legal and Compliance teams to monitor regulatory changes.
• Manage changes to a risk taxonomy and reference library for technology risk assessment.

2. Risk and event analysis

• Review and analyze internal and external technology issues and risks, updating a knowledge base for organizational learning.
• Assist in change reviews, Risk Control Self-Assessment exercises, control testing, and deep dives into technology issues and risks.
• Support vendor risk assessments, controls assurance, and compliance attestations with the Third Party Risk & Assurance Specialist.

3. Risk controls and management

• Assist in developing the technology governance framework and controls library, maintaining policies, standards, and procedures.
• Review change requests, manage version control, and analyze technology control performance.
• Support GRC platform operations, including writing runbooks, feedback collection, and process improvements.

4. Risk governance and compliance

• Manage the service interface for Technology Service Governance, including FAQs, demand management, and metrics analysis.
• Maintain records of governance decisions, track policy exceptions, and support audits and certifications.

5. Reporting & documentation

• Prepare reports on technology risk and governance performance.
• Maintain documentation for procedures, project updates, and client interactions.
• Develop visualizations to communicate risk effectively.
• Promote learning and awareness through campaigns and training.
• Research new technologies and risk models to enhance services and personal knowledge.
• Support team development and knowledge sharing.

Education, Qualifications, Knowledge, Skills and Experience:

• Experience with enterprise technology services, support, or administration, including ITIL and asset management.
• Understanding of enterprise IT environments, including cloud, cybersecurity, and applications.
• Experience deploying and operating IT controls and procedures.
• Knowledge of IT Governance, Risk, and Compliance frameworks and requirements.
• Ability to analyze data and create reports using PowerBI, Tableau, or similar tools.
• Skills in scripting and automation with PowerAutomate, Python, or similar.