IT Risk & Controls Analyst

Apply now Job no: 563326
Work type: Full time
Site: Redditch
Categories: IT, Finance
Location: West Midlands
Salary: £50,000 - £55,000

At Halfords, our mission is to inspire and support a lifetime of motoring and cycling. As a specialist retailer, we lead the market through customer-driven innovation and a distinct product range. Weare dedicated to providingour customers with an integrated, unique, and convenient service experience,from e-bike and electric vehicle servicing to on-demand solutions. Our commitment is to foster customer loyalty by offering compelling reasons to keep coming back to our stores, ensuring a lifetime ofmotoringand cycling enjoyment.

The teams at our Support Centre work with every other area of our business, putting them at the heart of the action and playing a key role in our success and growth. Everyone brings their individual knowledge and experience to work every day, working as one team to keep things moving smoothly.

Ifyou’rewilling to get stuck in,you’lllove it here too. So put yourself at the heart of a dynamic, fast-paced working environment whereexpertiseand focus take people far.

AsanIT Risk & Controls Analyst at Halfords,you willbe responsible fordesigningand implementing the control environment around our existing legacy systemsto ensurethat weare ready to meet the Provision 29 deadline asof31 st March 2027. You will also be instrumental inshaping a stronger control environment for the futureas part of ourplanned ERPprogramme. Thisposition plays a key role in ensuring our IT and financial controls are robust, practical, and compliant.You’llworkforthe Group Controls Manageras part of the widerRiskand Controlsteam, working closelywithourexternal IT providersas well as supportingthe external auditorsthroughthe audit processin a highly visible, business-wide role.

This is not apure second lineITcontrolsposition.Therole is very hands on withanemphasisonworking with the businesstoembedthecontrols acrosssystems,cybersecurity governance, and wider material controls. The upcoming ERP rollout offers a rare opportunity tohave a direct input into controlsdesignfrom the outset.

The role suits someone from a risk,auditor controls background,looking to step into a broader and more commercially connected environment. Strong stakeholder engagement, an autonomous approach, and the ability tounderstandframeworks such as SOX, COBIT, NIST or ISO27001and embedpracticalcontrols are key.

• Lead the assessment and monitoring of IT General Controls across areas such as access management, change control, system operations, backups and recovery.
• Support the design, testing and improvement of material IT and business controls in line with Provision 29 and internal control frameworks.
• Work closely with external auditors, internal audit, and risk teams to provide assurance over the effectiveness of the control environment.
• Identify control gaps, assess risk impact, and track remediation activities through to resolution.
• Partner with process owners across IT and the wider business to strengthen and streamline control processes without hindering operations.
• Contribute to risk assessments to prioritise key control activities across the organisation.
• Support and influence control design as part of the upcoming ERP implementation and wider system improvements.
• Maintain clear documentation of control processes, testing outcomes, and risk assessments for audit and governance purposes.
• Build strong cross-functional relationships to promote control awareness and best practice across the business.

• Experience in IT audit, IT risk, cybersecurity governance, or internal controls within a complex business or practice environment.
• Strong working knowledge of control frameworks such as SOX, COBIT, NIST, ISO 27001 and wider governance standards.
• Comfortable assessing, testing and improving IT and material business controls with a risk-focused mindset.
• Confident working with auditors, risk teams and senior stakeholders across both technical and non-technical functions.
• Analytical and detail-focused, with the ability to interpret complex information and translate it into practical improvements.
• Proactive and autonomous, able to plan work independently and drive actions through to completion.
• Clear communicator who can explain control concepts in a straightforward way to a wide range of stakeholders.
• Motivated by the opportunity to influence large-scale change, including ERP implementation and legacy system improvement.

A fair and competitive salary evaluated against market data, annual discretionary bonus scheme, pension, life assurance, 25 days annual leave plus bank holidays and enhanced family leave.

Commitment and dedication to your ongoing personal and professional development. We help you to own and grow your potential so you can be at your best in your current role and to support your future career aspirations.

We offer hybrid working with a blend of working in our Support Centre and from home.

You will have access to a wealth of employee discounts across the Halfords suite of products and services.

Wellbeing and inclusion are at the heart of our colleague experience. We offer resources and ongoing support to enhance your wellbeing at work and active Colleague Networks supporting inclusion initiatives across Halfords.

Not sure you meet all the criteria?We'dencourage you to take the wheel and apply anyway! At Halfords we are committed to creating an inclusive workplace for our colleagues.We'rean equal opportunities employer and proud to welcome applications from all backgrounds and embrace diversity within our one Halfords Family.

Halfordsoperatesa Hybrid working policy with this position bring based 2 days per week at our Support Centre in Redditch, West Midlands.

Update your details, view your application and progress.