Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support IT Governance, Risk, and Compliance frameworks in a collaborative environment.
- Company: Join a prestigious financial services organisation in the heart of London.
- Benefits: Enjoy competitive pay, strong bonuses, and a hybrid work model.
- Why this job: Gain exposure to diverse GRC activities and develop your career in a supportive culture.
- Qualifications: Significant experience in IT GRC with strong analytical and communication skills required.
- Other info: Industry-recognised certifications are a plus, but not essential.
The predicted salary is between 43200 - 72000 £ per year.
City of London/ Hybrid £Competitive + strong bonus and benefits
Senior IT GRC Analyst is required by a prestigious financial services organisation in the heart of the City. In this collaborative role, you will support the development and enhancement of IT Governance, Risk, and Compliance frameworks, working closely with senior stakeholders, internal IT teams, and third-party partners to manage IT risk and ensure regulatory compliance across the business.
Key Responsibilities:
- Governance: Contributing to the implementation and continuous development of IT GRC frameworks. Assisting in the review and maintenance of IT GRC documentation. Assist in the implementation and communication of IT risk and control management frameworks. Conduct governance reviews in line with agreed schedules and document outcomes. Maintain documentation for IT risk and control management processes. Support the preparation and delivery of formal IT GRC reporting.
- Risk: Identifying, assessing, and documenting IT risks. Supporting IT risk management activities, including the execution of technical IT risk assessments. Supporting risk owners to define remediation plans and monitor progress on remediation activities. Manage day-to-day operational and technical IT risks. Support IT risk owners in identifying and assessing technical IT risks and assist in documenting and tracking remediation plans. Contribute to formal risk reporting processes within Group IT and to second-line functions. Assist in the coordination and execution of annual operational risk assessments.
- Compliance: Evaluating compliance with IT control requirements as defined in internal policies and standards. Supporting periodic reviews and assessments related to IT GRC. Support IT control compliance activities, including annual reviews and maturity assessments of IT controls. Assist IT control owners with control self-assessments and attestations to support second-line permanent control checks. Coordinate IT control attestations across Group IT and with third-party service providers.
Key Skills and Experience:
- Significant experience in Information Security Governance, Risk, and Compliance (GRC), with a focus on IT risk and control management.
- Strong analytical skills with the ability to perform technical IT security and operational risk assessments.
- High attention to detail, ensuring accuracy in documentation, assessments, and compliance activities.
- Strong understanding of information security risk management principles, frameworks (e.g., ISO 27001, NIST), and compliance practices.
- Exposure and understanding of IT infrastructure, business applications, and their associated risks and controls.
- Experience collaborating with internal and external audit teams, including supporting audit readiness and evidence gathering.
- Proven ability to work effectively across multi-disciplinary, multi-cultural, and geographically dispersed teams.
- Excellent written and verbal communication skills, with the ability to convey complex information clearly to both technical and non-technical audiences.
- Strong interpersonal and presentation skills, with confidence engaging stakeholders at all levels.
- Industry-recognised technical certifications such as ITIL, CISSP, CRISC, or similar are desirable but not essential.
- Familiarity with regulatory requirements such as DORA is desirable.
This is a fantastic opportunity to join a highly respected financial services organisation with a collaborative culture and strong commitment to professional growth. You'll gain exposure to a wide range of GRC activities and enjoy the opportunity to develop your career within a supportive and dynamic environment.
Senior IT GRC Analyst employer: ARC IT Recruitment
Contact Detail:
ARC IT Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior IT GRC Analyst
✨Tip Number 1
Network with professionals in the GRC field, especially those who work in financial services. Attend industry events or webinars to connect with potential colleagues and learn about the latest trends and challenges in IT governance, risk, and compliance.
✨Tip Number 2
Familiarise yourself with the specific GRC frameworks mentioned in the job description, such as ISO 27001 and NIST. Consider obtaining relevant certifications or completing online courses to demonstrate your commitment and knowledge in these areas.
✨Tip Number 3
Prepare to discuss your experience with technical IT risk assessments and how you've contributed to risk management in previous roles. Be ready to provide examples of how you've collaborated with stakeholders to implement effective GRC strategies.
✨Tip Number 4
Research the company’s culture and values to align your approach during interviews. Understanding their commitment to professional growth and collaboration can help you articulate how you would fit into their team and contribute to their goals.
We think you need these skills to ace Senior IT GRC Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Information Security Governance, Risk, and Compliance (GRC). Emphasise your familiarity with frameworks like ISO 27001 and NIST, as well as any technical certifications you hold.
Craft a Compelling Cover Letter: In your cover letter, express your enthusiasm for the role and the company. Discuss how your skills align with the key responsibilities outlined in the job description, particularly your experience in IT risk management and compliance activities.
Showcase Analytical Skills: Provide specific examples in your application that demonstrate your strong analytical skills. Mention instances where you've successfully performed technical IT security assessments or contributed to governance reviews.
Highlight Communication Abilities: Since excellent written and verbal communication skills are crucial for this role, include examples of how you've effectively conveyed complex information to both technical and non-technical audiences in previous positions.
How to prepare for a job interview at ARC IT Recruitment
✨Understand the GRC Frameworks
Make sure you have a solid grasp of key GRC frameworks like ISO 27001 and NIST. Be prepared to discuss how you've applied these frameworks in your previous roles, as this will demonstrate your expertise and relevance to the position.
✨Showcase Your Analytical Skills
Highlight your experience with technical IT risk assessments and operational risk management. Prepare examples that showcase your analytical skills and attention to detail, as these are crucial for the role.
✨Communicate Clearly
Practice explaining complex information in simple terms. Since you'll be engaging with both technical and non-technical stakeholders, being able to convey your ideas clearly is essential.
✨Prepare for Stakeholder Engagement
Think about how you've successfully collaborated with diverse teams in the past. Be ready to share specific instances where you've engaged stakeholders at various levels, as this will highlight your interpersonal skills and ability to work in a collaborative environment.
