IT Risk and Governance Analyst

Social network you want to login/join with:

Client: Pearson Whiffin Recruitment Group

Location: Worcester, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views: 4

Posted: 04.06.2025

Expiry Date: 19.07.2025

IT Risk and Governance Analyst – Worcester – 3 month contract

We are seeking an analytical mind, with an eye for detail, procedures, and technical acumen, to help the business implement and run a new IT risk management framework. This role supports a Technology Transformation Programme and maintains oversight over current operational technology and applications.

• Assist in implementing risk identification control strategies, working with multiple teams to create learning materials, templates, and facilitate workshops.
• Support horizon scanning exercises to identify new and emerging risks, working with Legal and Compliance teams to monitor regulatory changes.
• Manage changes to a risk taxonomy and reference library to support technology risk identification and assessment.

• Review, triage, and analyze internal and external technology issues and risk events, providing updates for a knowledge base.
• Assist in change reviews, Risk Control Self-Assessment exercises, control testing, and thematic deep dives.
• Support vendor risk assessments, controls assurance, and compliance attestations for third parties.

• Assist in developing the technology governance framework and controls library, supporting policy and procedure development.
• Manage the IT controls library, reviewing change requests and analyzing control performance.
• Support GRC platform operations, including writing runbooks and improving service design.

• Manage the service interface for Technology Service Governance, including FAQs and metrics analysis.
• Ensure accurate record-keeping of governance decisions and support audit processes.

• Prepare reports on technology risk and governance performance.
• Maintain documentation for procedures, updates, and client interactions.
• Develop new risk visualizations and promote awareness campaigns.
• Research new technology and risk modeling techniques.
• Support team learning and development.

• Experience with enterprise technology services, ITIL, and asset management.
• Understanding of enterprise IT environments, including cloud and cybersecurity systems.
• Experience deploying and operating IT controls and procedures.
• Knowledge of IT Governance, Risk, and Compliance frameworks.
• Experience creating PowerBI, Tableau reports, or similar.
• Ability to automate tasks using PowerAutomate, Python, or similar.