Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Strengthen IT risk and controls across a global estate while ensuring compliance.
- Company: Established global business with a stellar reputation in technology and compliance.
- Benefits: Remote work with occasional office visits, competitive salary, and professional development opportunities.
- Other info: Dynamic role with excellent career growth potential and collaboration with external auditors.
- Why this job: Play a vital role in IT security and make a real impact on compliance frameworks.
- Qualifications: Experience in IT audit or SOx compliance; strong communication skills are essential.
The predicted salary is between 45000 - 60000 £ per year.
Location: Remote with two monthly visits to the office in Dudley.
I am working with a long standing client who are an established, global business with a fantastic reputation in their field. Furthermore, they have a fantastic reputation for delivering major investment in technology, governance and compliance. This is an exciting opportunity to play a vital role in strengthening IT risk and controls across a complex global estate.
This is a key role focused on IT General Controls (ITGC), SOx compliance, audit readiness and controls assurance across the wider IT function. You will take ownership of planning and delivering control testing, supporting audit activity and helping ensure compliance frameworks remain robust, effective and audit-ready. This would suit someone with a background in IT audit, SOx controls or IT risk who enjoys detail, structure and working closely with both internal stakeholders and external auditors.
Responsibilities- Deliver ITGC and SOx control testing across the annual compliance plan
- Conduct walkthroughs and assess control effectiveness
- Produce and maintain testing documentation, working papers and audit evidence
- Identify control gaps, deficiencies and remediation actions
- Support quarterly controls self-assessments and ongoing compliance reporting
- Work closely with control owners, IT leadership and external auditors
- Track testing timelines and ensure audit deliverables are met
- Support wider risk, governance and compliance initiatives across IT Risk and Issue Management
- Identify, assess, and manage risks and issues. Escalation to stakeholders for support and decisions where appropriate
- Work closely with external auditors to align on testing timelines and requirements.
- Facilitate and accelerate the testing process wherever possible.
- Address auditor queries and provide and ensure that the evidence documentation is provided in a timely manner.
- Previous experience in IT audit, SOx compliance, IT risk or controls testing
- Strong understanding of IT General Controls and audit frameworks
- Experience working with external auditors and compliance programmes
- Knowledge of SOx, SOC1 / SSAE 18 and wider governance requirements
- Experience with GRC platforms or compliance tooling would be beneficial
- Strong stakeholder engagement and communication skills
- Professional certifications such as CISA or CRISC would be advantageous.
- Professional certification such as CISA, CRISC, CPA or willingness to pursue professional qualification.
- 4 to 7 Years of hands-on experience with various aspects of IT SOx including application scoping, flowcharts, risk-control matrix, testing, evaluation of deficiencies and remediation testing.
Information Technology Security Analyst employer: ECS Resource Group
Contact Detail:
ECS Resource Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Technology Security Analyst
✨Tip Number 1
Network like a pro! Reach out to your connections in the IT security field, especially those who might know about opportunities at companies you're interested in. A friendly chat can sometimes lead to a referral, which is often the golden ticket to landing an interview.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of ITGC and SOx compliance. We recommend creating a list of common interview questions related to these topics and practising your answers. This will help you feel more confident and ready to impress!
✨Tip Number 3
Showcase your skills through real-life examples. When discussing your experience, use the STAR method (Situation, Task, Action, Result) to clearly demonstrate how you've tackled challenges in IT audit or risk management. This makes your achievements stand out!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of exciting roles that could be perfect for you. Plus, applying directly shows your enthusiasm and commitment to joining our team, which we absolutely love to see!
We think you need these skills to ace Information Technology Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the role of Information Technology Security Analyst. Highlight your experience with IT audit, SOx compliance, and any relevant certifications like CISA or CRISC. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about IT risk and controls. Share specific examples of your past experiences that relate to the responsibilities listed in the job description. We love a good story!
Showcase Your Communication Skills: Since this role involves working closely with stakeholders and external auditors, make sure to highlight your communication skills. Whether it's in your CV or cover letter, let us know how you've effectively collaborated in the past. We value clear communicators!
Apply Through Our Website: Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about StudySmarter and what we stand for!
How to prepare for a job interview at ECS Resource Group
✨Know Your ITGC and SOx Inside Out
Make sure you brush up on your knowledge of IT General Controls and SOx compliance. Be ready to discuss specific frameworks and how they apply to the role. This shows that you’re not just familiar with the concepts but can also apply them in real-world scenarios.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to walk through your experience with control testing and audit readiness. Prepare examples from your past roles where you identified control gaps or worked with external auditors. This will demonstrate your hands-on experience and problem-solving skills.
✨Showcase Your Stakeholder Engagement Skills
Since this role involves working closely with various stakeholders, be prepared to discuss how you've effectively communicated and collaborated in previous positions. Highlight any experiences where you facilitated discussions or resolved conflicts, as this will show your ability to work well in a team.
✨Ask Insightful Questions
At the end of the interview, don’t forget to ask questions that show your interest in the company’s compliance initiatives and technology investments. This could include inquiries about their current challenges in IT risk management or how they measure the effectiveness of their controls. It demonstrates your enthusiasm and strategic thinking.