IT Risk and Governance Analyst – London – 3 month contract
We are seeking an analytical mind, with an eye for detail, procedures, and technical acumen, to help the business implement and run a new IT risk management framework. This role supports both a Technology Transformation Programme and oversight of current operational technology and applications.
Responsibilities
1. Risk Identification and Control Strategies
* Assist in implementing risk identification control strategies by collaborating with multiple teams to create learning materials, templates, and facilitate workshops.
* Support horizon scanning exercises to identify emerging risks, working with Legal and Compliance teams on regulatory changes.
* Manage updates to risk taxonomy and reference libraries for technology risk assessment.
1. Risk and Event Analysis
* Review and analyze internal and external technology issues and risk events, updating knowledge bases for organizational learning.
* Assist in change reviews, Risk Control Self-Assessment exercises, control testing, and thematic deep dives.
* Support vendor risk assessments, controls assurance, and compliance attestations with Third Party Risk & Assurance Specialists.
1. Risk Controls and Management
* Develop and maintain the technology governance framework, controls reference library, policies, standards, and procedures.
* Manage the IT controls library, review change requests, and analyze control performance.
* Support GRC platform operations, including writing runbooks, engaging feedback, and business analysis for process improvements.
1. Risk Governance and Compliance
* Manage the Technology Service Governance interface, including FAQs, demand management, and metrics analysis.
* Maintain records of governance decisions and track policy and strategy exceptions.
* Assist with audits, certifications, and addressing audit findings.
1. Reporting & Documentation
* Prepare reports on technology risk and governance performance.
* Maintain documentation for procedures, project updates, and client interactions.
* Develop visualizations for technology risk communication.
* Promote learning and awareness campaigns within the business.
* Research emerging technologies and risk models to enhance services and personal knowledge.
* Support the development of team members in Technology Services Governance.
Qualifications and Skills
* Experience in enterprise technology services, support, or administration, including ITIL and asset management.
* Knowledge of enterprise IT environments, cloud computing, cybersecurity, and corporate applications.
* Experience deploying and operating IT controls and procedures.
* Understanding of IT Governance, Risk, and Compliance frameworks and procedures.
* Ability to analyze data and create reports using PowerBI, Tableau, or similar tools.
* Proficiency in scripting automation with PowerAutomate, Python, or similar.
#J-18808-Ljbffr