IT Risk and Governance Analyst – London – 3 month contract
We are seeking an analytical individual with attention to detail, procedures, and technical skills to help implement and operate a new IT risk management framework. This role supports both a Technology Transformation Programme and oversight of current operational technology and applications.
* Assist in implementing risk identification control strategies by collaborating with multiple teams to create learning materials, templates, and facilitate workshops.
* Support horizon scanning exercises to identify emerging risks, working with Legal and Compliance teams to monitor regulatory changes.
* Manage updates to risk taxonomy and reference libraries to aid technology risk identification and assessment.
2. Risk and event analysis
* Review and analyze internal and external technology issues and risk events, updating a knowledge base for organizational learning.
* Assist in change reviews, Risk Control Self-Assessment exercises, control testing, and thematic analysis of technology issues and risks.
* Support vendor risk assessments, controls assurance, and compliance attestations with the Third Party Risk & Assurance Specialist.
3. Risk controls and management
* Assist in developing the technology governance framework and controls library, and support policy, standards, and procedures development.
* Support management of the IT controls library, including reviewing change requests and analyzing control performance.
* Support GRC platform operations, including writing runbooks, engaging feedback, and analyzing change requests for service improvements.
4. Risk governance and compliance
* Manage the service interface for Technology Service Governance, including providing information, managing demand, and analyzing metrics.
* Ensure accurate record-keeping of governance decisions and track policy exceptions and risk acceptances.
* Support audits, certifications, and resolution of audit findings.
5. Reporting & documentation
* Prepare and present reports on technology risk and governance performance.
* Maintain documentation for procedures, project updates, and client interactions for audits and knowledge sharing.
* Develop new visualizations for technology risk communication.
* Promote learning and awareness through campaigns and training.
* Research new risk modeling techniques to improve services and enhance personal knowledge.
* Support the development of team members within the Technology Services Governance team.
Education, Qualifications, Knowledge, Skills and Experience:
* Experience with enterprise technology services, support, or administration, including ITIL and asset management.
* Knowledge of various enterprise IT environments, including cloud, cybersecurity, and corporate applications.
* Experience deploying and operating IT controls and procedures.
* Understanding of IT Governance, Risk, and Compliance frameworks and procedures.
* Experience creating reports with PowerBI, Tableau, or similar tools.
* Ability to automate tasks using PowerAutomate, Python, or similar scripting languages.
#J-18808-Ljbffr