Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as an IT Risk and Governance Analyst, tackling risk management and supporting tech transformations.
- Company: Be part of a dynamic team in London, driving innovation in IT risk governance.
- Benefits: Enjoy flexible working options and opportunities for professional growth.
- Why this job: Make a real impact by enhancing technology services and learning from industry experts.
- Qualifications: Ideal candidates have experience in IT services, risk analysis, and data reporting tools.
- Other info: This is a 3-month contract role with potential for future opportunities.
We are seeking an analytical mind, with an eye for detail, procedures and technical acumen, to help the business implement and run a new IT risk management framework. This is a multi-faceted role supporting both a Technology Transformation Programme as well as maintaining oversight over current operational technology and applications.
- Risk identification
- Assist the implementation of risk identification control strategies; this will involve working with multiple teams to create learning material, templates and facilitate workshops;
- Support horizon scanning exercises across the business to identify new and emerging risks, which includes working with Legal and Compliance teams to monitor regulatory changes;
- Manage changes to a risk taxonomy and reference library to support technology risk identification and assessment.
- Risk and event analysis
- Review, triage and analyse internal and external technology issues and risk events, and provide updates for a knowledge base to support continuous organisational learning and improvements;
- Assist change reviews, periodic Risk Control Self-Assessment exercises, control testing and thematic deep dives and analyse technology issues and risks;
- Support the Third Party Risk & Assurance Specialist with vendor risk assessments, controls assurance and compliance attestations for the clients and other third parties.
- Risk controls and management
- Assist the development of the technology governance framework and controls reference library, and support the development and maintenance of policies, standards and procedures;
- Support the management of the IT controls library, reviewing change requests, version control, as well as providing regular analysis on technology control performance;
- Support the GRC platform and service provision, e.g. write and operate GRC runbooks, proactively engage feedback, conduct business analysis for change requests to improve GRC service design and operations.
- Risk governance and compliance
- Run the service interface for the Technology Service Governance, including providing information and FAQs, managing demand and expectations, as well as capturing and analysing metrics on customer journeys and governance performance;
- Ensure accurate record keeping of all governance decisions, and operate procedures to track policy and strategy exceptions and risk acceptances;
- Support any internal and external audits, certifications and the resolution of any audit findings.
- Reporting & documentation
- Prepare and present regular reports on technology risk and Technology Services Governance performance;
- Maintain accurate documentation for Technology Services Governance procedures, project updates and client interactions for audit readiness and knowledge transfer;
- Research, experiment and develop new technology risk visualisations to enhance communication and quick understanding.
- Management & development
- Closely work with Technology Service teams to promote learning and understanding throughout the business, including the creation, contribution to and promotion of relevant awareness campaigns and compliance training;
- Proactively research state-of-the art technology and risk modelling to improve the technology services as well as enhancing your own knowledge;
- Support the learning and development of your fellow Technology Services Governance team managers and analysts.
Education, Qualifications, Knowledge, Skills and Experience:
- Experience in Enterprise technology services, support or administration including ITIL and asset management
- Understanding of various types of Enterprise IT environments, including cloud computing, cyber security systems and corporate applications
- Supported deployment and operation of IT controls and procedures
- Knowledge of IT Governance, Risk and Compliance frameworks, requirements and procedures
- Analysed data and created PowerBI, Tableau or equivalent reports for presentation to stakeholders
- Ability to code/script automation tasks with PowerAutomate/Python or similar
IT Risk and Governance Analyst employer: Pearson Whiffin Recruitment Group
Contact Detail:
Pearson Whiffin Recruitment Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Risk and Governance Analyst
✨Tip Number 1
Familiarise yourself with IT governance frameworks like COBIT or ISO 27001. Understanding these frameworks will not only help you in the interview but also demonstrate your commitment to the role and your proactive approach to risk management.
✨Tip Number 2
Network with professionals in the IT risk and governance field. Attend relevant webinars or local meetups to connect with others who work in similar roles. This can provide you with insights into the industry and potentially lead to referrals.
✨Tip Number 3
Brush up on your data analysis skills, particularly with tools like PowerBI or Tableau. Being able to showcase your ability to create insightful reports will set you apart from other candidates and align with the job's requirements.
✨Tip Number 4
Prepare to discuss specific examples of how you've identified and managed risks in previous roles. Use the STAR method (Situation, Task, Action, Result) to structure your responses, as this will clearly demonstrate your analytical skills and experience.
We think you need these skills to ace IT Risk and Governance Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in IT risk management, governance frameworks, and any technical skills mentioned in the job description. Use keywords from the job posting to ensure your application stands out.
Craft a Compelling Cover Letter: Write a cover letter that specifically addresses the responsibilities outlined in the job description. Explain how your analytical skills and experience with risk identification and management make you a great fit for the role.
Showcase Relevant Projects: If you've worked on projects related to technology risk or governance, be sure to include these in your application. Describe your role, the challenges faced, and the outcomes achieved to demonstrate your capability.
Highlight Technical Proficiency: Mention any experience you have with tools like PowerBI, Tableau, or coding/scripting languages such as Python. This will show that you possess the technical acumen required for the position.
How to prepare for a job interview at Pearson Whiffin Recruitment Group
✨Understand the IT Risk Landscape
Familiarise yourself with current trends in IT risk management, especially those relevant to the role. Be prepared to discuss how you would identify and manage emerging risks, and demonstrate your knowledge of regulatory changes that could impact the business.
✨Showcase Your Analytical Skills
Prepare examples from your past experience where you've successfully analysed technology issues or risk events. Highlight your ability to triage and provide insights that lead to organisational improvements, as this is a key aspect of the role.
✨Demonstrate Technical Acumen
Be ready to discuss your experience with IT governance frameworks and tools like PowerBI or Tableau. If you have coding skills, mention how you've used automation to enhance processes, as this will show your technical proficiency.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to solve hypothetical situations related to risk management and compliance. Practice articulating your thought process clearly, as this will showcase your problem-solving abilities and how you approach risk governance.
