At a Glance
- Tasks: Manage risk lifecycle and produce insights for the Technology Leadership Team.
- Company: Join Virgin Atlantic, a leading travel company on a mission to be the most loved.
- Benefits: Enjoy hybrid working, competitive salary, and a supportive, inclusive environment.
- Why this job: Be part of an innovative team that values collaboration and empowers you to make an impact.
- Qualifications: Experience in technology risk management and familiarity with frameworks like COBIT or ISO 27001.
- Other info: We celebrate diversity and encourage applications from all backgrounds.
The predicted salary is between 36000 - 60000 £ per year.
Salary: Competitive per annum
Hours: Full Time, 37.5 hours
Location: VHQ, Crawley, hybrid 3 days a week in the office
Contract: Permanent
Closing Date: 3rd July 2025
At Virgin Atlantic Airways, we believe that everyone can take on the world, and it’s our vision to become the most loved travel company. As we embark on this next exciting stage of our journey, we’re harnessing our spirit of entrepreneurship and innovation to challenge the status quo.
Virgin Atlantic is seeking a Risk, Information Assurance and Controls Analyst to strengthen risk and control management within its Technology & Transformation function. This pivotal role involves managing the full risk lifecycle, maintaining the Directorate Risk Register, and producing actionable insights for the Technology Leadership Team.
The successful candidate will collaborate closely with Information Security and Transformation teams to ensure a comprehensive view of technology-related risks and issues.
Key responsibilities include:
- Leading the Risk Findings Management Group, shaping the control framework, and supporting audit and compliance readiness.
- Maintaining the Directorate Risk Register, ensuring regular updates, ownership, and scoring.
- Using Azure DevOps and Power BI dashboards, track, manage, and escalate risks in alignment with Virgin Atlantic's risk matrix and escalation principles.
- Defining and maintaining a controls framework aligned to best practice standards such as COBIT.
- Ensuring control owners provide timely and standardised evidence for audits and developing and curating the Control & Audit Evidence Library (Red Room) to simplify audit readiness.
- Coordinating internal and external audits, ensuring resources are available and the audit scope aligns with the department's risk profile.
- Producing monthly and ad hoc reports on risk posture using Power BI, while monitoring and highlighting emerging risks across platforms to ensure proactive treatment plans are developed.
About you:
We’re looking for someone who is confident using tools like Azure DevOps and Power BI to bring risk reporting to life, turning data into clear, actionable insights that help us stay ahead. We’d also love for you to demonstrate the following:
- Hands-on experience in technology risk management, audit, or governance.
- Familiarity with industry-recognised risk and control frameworks like COBIT, ISO 27001, or NIST.
- Understanding of how IT operations work from service delivery and managing ageing systems to tackling technical debt.
- Proven experience using tracking and reporting tools like Azure DevOps and Power BI.
- You’re a natural facilitator and communicator, with the ability to bring people together and keep things moving.
- If you’ve worked with audit cycles or supported evidence gathering for controls, that’s a big plus.
If this sounds like you, we would love to hear from you!
At Virgin Atlantic, our leaders empower teams to thrive through collaboration, innovation, and excellence. Explore our Leadership Recipe and discover the 20 core ingredients that define what it means to lead with us, driving our mission to be the most loved travel company and achieve sustainable profit.
Our customers come from all walks of life and so do our colleagues. That’s why we’re proud to be an equal opportunity employer and actively encourage applications from all backgrounds. At Virgin Atlantic, we believe everyone can take on the world - no matter your age, gender, gender identity, gender expression, ethnicity, sexual orientation, disabilities, religion, or beliefs. We celebrate difference and everything that makes our colleagues unique by upholding an inclusive environment in which we can all thrive.
To make your journey with us accessible and individual to you, we encourage you to let us know if you’d like a little extra help with your application, or if you have any individual requirements at any stage along your recruitment journey. We are here to support you, so please reach out to our team.
Risk Information Assurance & Controls Analyst employer: VIRGIN ATLANTIC LIMITED
Contact Detail:
VIRGIN ATLANTIC LIMITED Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Risk Information Assurance & Controls Analyst
✨Tip Number 1
Familiarise yourself with the specific tools mentioned in the job description, like Azure DevOps and Power BI. Consider taking online courses or tutorials to enhance your skills in these platforms, as demonstrating proficiency can set you apart from other candidates.
✨Tip Number 2
Research Virgin Atlantic's risk management practices and their approach to technology transformation. Understanding their current challenges and initiatives will allow you to tailor your discussions during interviews, showing that you're genuinely interested in contributing to their goals.
✨Tip Number 3
Network with professionals in the risk management and technology sectors, especially those who have experience with Virgin Atlantic or similar companies. Engaging with them on platforms like LinkedIn can provide valuable insights and potentially lead to referrals.
✨Tip Number 4
Prepare to discuss your hands-on experience with risk management frameworks like COBIT or ISO 27001. Be ready to share specific examples of how you've applied these frameworks in previous roles, as this will demonstrate your expertise and relevance to the position.
We think you need these skills to ace Risk Information Assurance & Controls Analyst
Some tips for your application 🫡
Understand the Role: Before applying, make sure you fully understand the responsibilities and requirements of the Risk Information Assurance & Controls Analyst position. Familiarise yourself with key terms like risk lifecycle, Azure DevOps, and Power BI, as these will be crucial in your application.
Tailor Your CV: Customise your CV to highlight relevant experience in technology risk management, audit, or governance. Emphasise your familiarity with frameworks like COBIT, ISO 27001, or NIST, and showcase any hands-on experience with tools such as Azure DevOps and Power BI.
Craft a Compelling Cover Letter: Write a cover letter that not only outlines your qualifications but also demonstrates your passion for the role and the company. Mention how your skills align with Virgin Atlantic's vision and values, and provide specific examples of how you've successfully managed risks or facilitated audits in the past.
Proofread and Edit: Before submitting your application, take the time to proofread your documents. Check for spelling and grammatical errors, and ensure that your writing is clear and concise. A polished application reflects your attention to detail, which is essential for the role.
How to prepare for a job interview at VIRGIN ATLANTIC LIMITED
✨Know Your Risk Frameworks
Familiarise yourself with industry-recognised risk and control frameworks like COBIT, ISO 27001, or NIST. Be prepared to discuss how these frameworks apply to the role and how you have used them in your previous experiences.
✨Showcase Your Technical Skills
Highlight your hands-on experience with tools like Azure DevOps and Power BI. Be ready to provide examples of how you've turned data into actionable insights, as this is crucial for the role.
✨Demonstrate Your Communication Skills
As a natural facilitator, you should be able to articulate complex risk concepts clearly. Prepare to discuss how you've successfully collaborated with teams in the past and how you keep projects moving forward.
✨Prepare for Audit Discussions
Since the role involves coordinating audits, be ready to talk about your experience with audit cycles and evidence gathering. Share specific examples of how you've supported audit readiness in previous positions.