At a Glance
- Tasks: Lead IT risk management and governance across a complex global IT environment.
- Company: Reputable financial services organisation in the heart of London.
- Benefits: Competitive salary, banking benefits, and performance bonuses.
- Other info: Join a diverse team with opportunities for professional growth.
- Why this job: Make a real impact in IT governance while navigating exciting challenges.
- Qualifications: Experience in IT GRC, risk management, and information security frameworks.
The predicted salary is between 80000 - 90000 £ per year.
A well‑established and highly regarded financial services organisation in the City of London is looking for an experienced IT GRC Associate to take on a broad, senior‑level role spanning risk, controls, and governance across a complex global IT environment.
This is a substantive position, not a support role. You'll own BAU risk management activities, lead periodic risk assessments, drive control framework development, and act as the primary bridge between first‑line IT and second‑line functions including Information Security and Operational Risk. The organisation operates across multiple geographies with outsourced IT infrastructure partners, so you'll need to be comfortable navigating that kind of complexity from day one.
Responsibilities:
- Lead the development and continuous improvement of IT risk and control governance methodologies.
- Provide change governance oversight across IT programmes and transformation initiatives.
- Produce senior stakeholder reporting on risk posture and control effectiveness.
- Maintain repeatable BAU governance documentation including methodologies, processes, and guides.
- Own and deliver BAU IT risk management, from identification and assessment through to tracking and closure.
- Lead periodic risk assessments across critical applications, infrastructure, cloud environments, and operational risk.
- Embed risk management into change processes for new and evolving systems.
- Coordinate second‑line risk reviews and manage responses to findings and recommendations.
- Support the design and implementation of IT controls, ensuring they are clearly defined, measurable, and auditable.
- Drive control effectiveness and maturity assessments, identifying gaps and improvement opportunities.
- Coordinate control attestations and self‑assessments across Group IT.
- Ensure alignment with internal policies, regulatory requirements (including DORA), and audit expectations.
Qualifications:
- Significant experience in IT GRC, risk management, or information security governance.
- Strong grounding in IT and information security risk frameworks, particularly ISO 27001 and NIST.
- Practical experience in IT controls management, including design, documentation, assessment, testing, and attestation.
- Familiarity with L1 to L3 control frameworks and experience building or enhancing control methodologies.
- Experience working alongside second‑line functions and managing audit and review cycles.
- Ability to translate technical risk into clear, business‑relevant language for senior audiences.
- Confidence engaging with, and constructively challenging, stakeholders at all levels.
- Background in regulated, complex, or outsourced IT environments is a strong advantage.
- CRISC, CISSP, or similar certifications are desirable; French or German language skills are a plus.
Pay Range and Compensation Package:
Circa £95k plus banking benefits and bonus. £80 - 90k base with bonus.
Equal Opportunity Statement:
We are committed to diversity and inclusivity in our hiring practices.
IT GRC Associate in London employer: ARC IT Recruitment
As a leading financial services organisation in the heart of the City of London, we pride ourselves on fostering a dynamic and inclusive work culture that prioritises employee growth and development. Our commitment to excellence is reflected in our comprehensive benefits package, which includes competitive salaries, banking benefits, and performance bonuses, ensuring that our employees feel valued and motivated. Join us to be part of a collaborative team where your expertise in IT GRC will directly contribute to shaping our governance frameworks in a complex global environment.
StudySmarter Expert Advice🤫
We think this is how you could land IT GRC Associate in London
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like ARC IT Recruitment looking for candidates who are engaged and informed.
We think you need these skills to ace IT GRC Associate in London
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at ARC IT Recruitment. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at ARC IT Recruitment
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with ARC IT Recruitment’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!
