Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support IT teams in managing technology risks and facilitate annual audits.
- Company: Join a dynamic company focused on technology risk management and governance.
- Benefits: Enjoy hybrid working options and collaborate with diverse teams.
- Why this job: Be a key player in shaping risk strategies and enhancing security across the organization.
- Qualifications: 1st line risk management experience and strong communication skills are essential.
- Other info: Work closely with engineering teams and stakeholders to drive effective risk mitigation.
The predicted salary is between 36000 - 60000 £ per year.
Job Description
The IT Risk & Controls Analyst plays a key part in providing assurance and insight to the management of technology risks, controls and any related governance activities. The role collaborates closely with Engineering teams to ensure that all technology risks are managed effectively and in compliance with standards, providing 1st line risk management expertise.
The role also plays a key part in planning and facilitating annual audits, leading activities from a UK IT perspective and working with all parties providing strategic guidance, technical knowledge, quality control and quality assurance for all audit-related activities.
Duties/Responsibilities
- Provide 1st line risk management knowledge, guidance and support to all IT teams, acting as an SME in that field, helping teams manage technology risk. Collecting and analysing data on control effectiveness and assess the impact on risk posture including:
- IT Risk Register
- Open actions resulting from audits
- Open security exceptions
- Control effectiveness
- Lead the facilitation of annual audit activities impacting IT, collaborating with key stakeholders, 3rd parties and internal engineering teams to ensure smooth running of all audit activities and timely gathering of evidence
- Act as a point of contact and SME to ensure the Risk Controls Framework is effectively rolled out across all teams, working and collaborating closely with the Engineering teams to develop and implement risk mitigation strategies and controls, and tracking any subsequent action plans
- Work together with the GWLE IAM Team and Security Coordinators to assist in the improvement and operation of the SLAM and SAR processes, ensuring it is followed appropriately within the company.
- Conduct risk analysis to identify potential, or emerging, technology risks and vulnerabilities, gathering and preparing information to the Risk Owner to assist with decision making
- Responsible for working with key business stakeholders annually to attest to the IT Security Policy
- Work with European CSIO and Security function to ensure alignment between functions, to ensure policies are adhered to and reported consistently
Skills, knowledge and Experience
- 1st Risk Management experience
- In depth knowledge of Risk Management frameworks and processes
- Excellent communication skills, demonstrating a clear and articulate standard of written and verbal communication in a complex environment, tailored for all levels of management
- Attention to detail
- Ability to prioritise own workload and act independently
- Good interpersonal/networking skills, with the ability to maintain a variety of relationships with multiple stakeholders.
IT Risk & Controls Analyst employer: 175593
Contact Detail:
175593 Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Risk & Controls Analyst
✨Tip Number 1
Familiarize yourself with common IT risk management frameworks such as NIST, ISO 27001, or COBIT. Understanding these frameworks will not only help you in interviews but also demonstrate your expertise and readiness to contribute effectively from day one.
✨Tip Number 2
Network with professionals in the IT risk management field through platforms like LinkedIn. Engaging with industry groups or attending relevant webinars can provide insights into current trends and challenges, making you a more informed candidate.
✨Tip Number 3
Prepare to discuss specific examples of how you've managed technology risks in previous roles. Being able to articulate your experience with risk assessment, control effectiveness, and audit facilitation will set you apart during the interview process.
✨Tip Number 4
Stay updated on the latest cybersecurity threats and compliance regulations. Showing that you are proactive about understanding the evolving landscape of IT risks will highlight your commitment to the role and the organization.
We think you need these skills to ace IT Risk & Controls Analyst
Some tips for your application 🫡
Understand the Role: Take the time to thoroughly read the job description for the IT Risk & Controls Analyst position. Understand the key responsibilities and required skills, so you can tailor your application to highlight relevant experiences.
Highlight Relevant Experience: In your CV and cover letter, emphasize your 1st line risk management experience and knowledge of risk management frameworks. Provide specific examples of how you've successfully managed technology risks in previous roles.
Showcase Communication Skills: Since excellent communication skills are crucial for this role, make sure to demonstrate your ability to communicate complex information clearly. Use concise language and structure your application to reflect clarity and professionalism.
Tailor Your Application: Customize your cover letter to address how your skills and experiences align with the company's needs. Mention your ability to work collaboratively with engineering teams and your experience in facilitating audits, as these are key aspects of the role.
How to prepare for a job interview at 175593
✨Show Your Expertise in Risk Management
Be prepared to discuss your experience with risk management frameworks and processes. Highlight specific examples where you've successfully identified and mitigated technology risks, as this will demonstrate your capability as a subject matter expert.
✨Communicate Clearly and Effectively
Since excellent communication skills are crucial for this role, practice articulating your thoughts clearly. Tailor your responses to suit different levels of management, showcasing your ability to convey complex information simply.
✨Demonstrate Attention to Detail
Prepare to provide examples that showcase your attention to detail, especially in relation to data analysis and control effectiveness. This will help illustrate your ability to manage the intricacies of risk assessment and audit activities.
✨Highlight Your Interpersonal Skills
Discuss your experience in collaborating with various stakeholders, including engineering teams and third parties. Emphasize how you’ve built and maintained relationships to ensure smooth audit processes and effective risk management.
