Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support and maintain the Information Security Management System while managing risks effectively.
- Company: Join a respected professional services firm with a focus on governance, risk, and compliance.
- Benefits: Gain hands-on experience, hybrid working, and potential for long-term career growth.
- Why this job: Make a real impact in a high-profile organisation while developing your skills in GRC.
- Qualifications: 2-3 years in business analysis or related fields, with knowledge of ISO 27001.
- Other info: Collaborative environment with opportunities to work across IT, legal, and compliance teams.
The predicted salary is between 30000 - 42000 £ per year.
Our client, a professional services firm, is seeking a talented individual to join their Governance, Risk and Compliance team on a contract basis. This is an excellent entry-level contract opportunity to gain hands-on experience supporting and maintaining a robust Information Security Management System (ISMS) in line with ISO 27001, while contributing directly to day-to-day risk management in a high-profile professional services organisation. You will work closely with IT, legal, compliance, and business stakeholders to protect critical operations, manage risks effectively, and support secure business growth. With a long-term assignment on the horizon, this role offers real stability and development potential in a respected firm.
Job Details
- Job Type: Contract
- Working arrangement: Hybrid – 2-3 days a week in the office
- Office Location: Central London
The Role
As Governance, Risk and Compliance Business Analyst, you will:
- Support and maintain the organisation’s ISMS in alignment with ISO 27001 controls and clauses.
- Assist in risk treatment planning, track remediation efforts, and contribute to continuous improvement.
- Maintain and review the Statement of Applicability (SoA), ensuring effective implementation of controls.
- Provide valuable input for management reviews and drive ISMS improvement actions.
- Conduct regular risk assessments and reviews across systems, vendors, and business processes.
- Identify, evaluate, and prioritise information security and operational risks.
- Maintain and update the risk register, including clear ownership, mitigation strategies, and timelines.
- Collaborate with control owners to assess residual risk and document risk decisions.
- Communicate risks to stakeholders with clear, actionable recommendations and business context.
- Work closely with IT, legal, and compliance teams to enable secure and compliant business operations.
What We’re Looking For
- 2-3 years’ relevant experience in business analysis and governance, risk, compliance, or information security.
- Practical understanding of ISO 27001 frameworks, risk assessment methodologies, and ISMS maintenance.
- Experience maintaining risk registers, tracking remediation, and supporting risk treatment plans.
- Strong analytical skills with the ability to evaluate risks, prioritise issues, and provide clear recommendations.
- Excellent communication skills to engage stakeholders and present risks in a business-friendly way.
- Collaborative mindset and comfort working across teams (IT, legal, compliance).
- Prior exposure to professional services, financial services, or regulated environments is advantageous.
- Motivated self-starter eager to develop expertise in GRC and information security.
Junior GRC Business Analyst in London employer: Computappoint
Contact Detail:
Computappoint Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Junior GRC Business Analyst in London
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, join online forums, or even hit up LinkedIn. The more you engage with professionals in Governance, Risk, and Compliance, the better your chances of landing that Junior GRC Business Analyst role.
✨Show Off Your Skills
When you get the chance to chat with potential employers, don’t hold back! Share your knowledge about ISO 27001 and risk management. We want to see your analytical skills shine through, so be ready to discuss how you can contribute to their ISMS and risk treatment plans.
✨Tailor Your Approach
Every company is different, so make sure you tailor your conversations to fit their needs. Research the firm’s values and challenges, and come prepared with ideas on how you can help them improve their risk management processes. This shows you’re not just another candidate; you’re the right fit!
✨Apply Through Our Website
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re here to support you every step of the way as you embark on this exciting journey in the GRC field.
We think you need these skills to ace Junior GRC Business Analyst in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Junior GRC Business Analyst role. Highlight any relevant experience you have in governance, risk, and compliance, especially if you've worked with ISO 27001 before. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about GRC and how your background makes you a great fit for our team. Keep it concise but engaging – we love a good story!
Show Off Your Analytical Skills: In your application, don’t forget to showcase your analytical skills. Mention specific examples where you've evaluated risks or contributed to risk management. We’re keen to see how you approach problem-solving!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Computappoint
✨Know Your ISO 27001 Basics
Make sure you brush up on the key principles of ISO 27001 before your interview. Understanding how it relates to Information Security Management Systems (ISMS) will show that you're serious about the role and ready to contribute from day one.
✨Showcase Your Analytical Skills
Prepare examples of how you've evaluated risks or prioritised issues in past experiences. Being able to articulate your thought process will demonstrate your analytical skills, which are crucial for a Junior GRC Business Analyst.
✨Communicate Clearly
Practice explaining complex concepts in simple terms. You'll need to communicate risks and recommendations to various stakeholders, so being able to present information in a business-friendly way is key.
✨Be Ready to Collaborate
Think of examples where you've worked across teams, especially with IT, legal, or compliance. Highlighting your collaborative mindset will show that you're a good fit for their team-oriented environment.
