IT Risk and Governance Analyst

Social network you want to login/join with:

Client: Pearson Whiffin Recruitment Group

Location: oxford district, United Kingdom

Job Category: Other

EU work permit required: Yes

IT Risk and Governance Analyst – Oxford – 3 month contract

We are seeking an analytical mind, with an eye for detail, procedures, and technical acumen, to help the business implement and run a new IT risk management framework. This role supports a Technology Transformation Programme and oversees current operational technology and applications.

• Assist the implementation of risk identification control strategies, working with teams to create learning materials, templates, and facilitate workshops.
• Support horizon scanning exercises across the business to identify new and emerging risks, working with Legal and Compliance teams to monitor regulatory changes.
• Manage changes to a risk taxonomy and reference library to support technology risk identification and assessment.

• Review, triage, and analyze internal and external technology issues and risk events, updating a knowledge base for organizational learning.
• Assist in change reviews, Risk Control Self-Assessment exercises, control testing, and deep dives into technology issues and risks.
• Support vendor risk assessments, controls assurance, and compliance attestations with the Third Party Risk & Assurance Specialist.

• Assist in developing the technology governance framework and controls library, maintaining policies, standards, and procedures.
• Support the management of the IT controls library, reviewing change requests and analyzing control performance.
• Support GRC platform operations, including writing runbooks, feedback, and process improvements.

• Manage the service interface for Technology Service Governance, providing information, managing demand, and analyzing metrics.
• Ensure accurate record keeping of governance decisions, policy exceptions, and risk acceptances.
• Support audits, certifications, and resolution of audit findings.

• Prepare reports on technology risk and governance performance.
• Maintain documentation for procedures, updates, and client interactions.
• Develop technology risk visualizations to enhance communication.
• Work with teams to promote learning, awareness campaigns, and training.
• Research new risk modeling techniques to improve services and personal knowledge.
• Support team learning and development.

• Experience in enterprise technology services, support, or administration, including ITIL and asset management.
• Understanding of enterprise IT environments, including cloud, cybersecurity, and applications.
• Experience deploying and operating IT controls and procedures.
• Knowledge of IT Governance, Risk, and Compliance frameworks.
• Experience creating reports with PowerBI, Tableau, or similar tools.
• Ability to automate tasks with PowerAutomate, Python, or similar.