IT Risk and Governance Analyst – London – 3 month contract
We are seeking an analytical mind, with an eye for detail, procedures, and technical acumen, to help the business implement and run a new IT risk management framework. This role supports both a Technology Transformation Programme and maintains oversight over current operational technology and applications.
Responsibilities:
1. Risk Identification and Control Strategies: Assist in implementing risk control strategies by working with multiple teams to create learning materials, templates, and facilitate workshops. Support horizon scanning exercises to identify emerging risks and monitor regulatory changes with Legal and Compliance teams. Manage changes to risk taxonomy and reference libraries.
2. Risk and Event Analysis: Review and analyze internal and external technology issues and risk events, updating a knowledge base. Assist in change reviews, Risk Control Self-Assessment exercises, control testing, and deep dives. Support vendor risk assessments and compliance attestations.
3. Risk Controls and Management: Assist in developing the technology governance framework, controls library, policies, standards, and procedures. Support management of the IT controls library, review change requests, and analyze control performance. Support GRC platform operations and service improvements.
4. Risk Governance and Compliance: Manage the service interface for Technology Service Governance, including information provision, managing demand, and capturing metrics. Ensure accurate record-keeping of governance decisions and support audits and certifications.
5. Reporting & Documentation: Prepare reports on technology risk and governance performance. Maintain documentation for procedures, updates, and client interactions. Develop new risk visualizations, promote awareness campaigns, and support learning and development within the team.
Qualifications and Skills:
* Experience in enterprise technology services, support, or administration, including ITIL and asset management.
* Understanding of enterprise IT environments, including cloud, cybersecurity, and corporate applications.
* Experience with deployment and operation of IT controls and procedures.
* Knowledge of IT Governance, Risk, and Compliance frameworks.
* Proficiency in data analysis and report creation using PowerBI, Tableau, or similar tools.
* Ability to automate tasks using PowerAutomate, Python, or similar scripting languages.
#J-18808-Ljbffr