IT Risk and Governance Analyst

Social network you want to login/join with:

Client:

Pearson Whiffin Recruitment Group

Location:

Luton, Bedfordshire, United Kingdom

Job Category:

Other

EU work permit required: Yes

Job Views: 5

Posted: 04.06.2025

Expiry Date: 19.07.2025

IT Risk and Governance Analyst – London – 3 month contract

We are seeking an analytical mind, with an eye for detail, procedures and technical acumen, to help the business implement and run a new IT risk management framework. This is a role supporting both a Technology Transformation Programme and current operational technology and applications.

• Assist in implementing risk identification control strategies, working with multiple teams to create learning materials, templates, and facilitate workshops;
• Support horizon scanning exercises to identify new and emerging risks, working with Legal and Compliance teams to monitor regulatory changes;
• Manage changes to a risk taxonomy and reference library to support technology risk identification and assessment.

Risk and event analysis

• Review, triage, and analyze internal and external technology issues and risk events, updating a knowledge base for organizational learning;
• Assist with change reviews, Risk Control Self-Assessment exercises, control testing, and deep dives, analyzing technology issues and risks;
• Support vendor risk assessments, controls assurance, and compliance attestations with the Third Party Risk & Assurance Specialist.

Risk controls and management

• Assist in developing the technology governance framework and controls reference library, maintaining policies, standards, and procedures;
• Support the management of the IT controls library, reviewing change requests, and analyzing technology control performance;
• Support the GRC platform, including writing runbooks, engaging feedback, and improving service operations.

Risk governance and compliance

• Manage the service interface for Technology Service Governance, handling information, FAQs, demand, and metrics;
• Ensure accurate record-keeping of governance decisions and track policy and strategy exceptions;
• Support audits, certifications, and resolution of audit findings.

Reporting & documentation

• Prepare reports on technology risk and governance performance;
• Maintain documentation for governance procedures, project updates, and client interactions;
• Develop new risk visualizations to enhance communication;
• Work with Technology Service teams to promote learning and awareness campaigns;
• Research new technology risk models to improve services and personal knowledge;
• Support the development of team members.

Qualifications, Knowledge, Skills, and Experience:

• Experience with enterprise technology services, support, or administration, including ITIL and asset management;
• Understanding of enterprise IT environments, including cloud, cybersecurity, and corporate applications;
• Experience deploying and operating IT controls and procedures;
• Knowledge of IT Governance, Risk, and Compliance frameworks;
• Ability to analyze data and create reports using PowerBI, Tableau, or similar tools;
• Proficiency in scripting automation tasks with PowerAutomate, Python, or similar.