Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage GRC initiatives, conduct audits, and enhance risk management processes.
- Company: Join a dynamic IT & Consulting firm focused on governance and compliance.
- Benefits: Enjoy flexible working locations and opportunities for professional growth.
- Why this job: Be part of impactful projects that shape organisational compliance and risk strategies.
- Qualifications: Experience in GRC frameworks and business analysis is essential.
- Other info: Open to travel across London, Manchester, and Birmingham.
The predicted salary is between 43200 - 72000 £ per year.
Seeking an experienced GRC Lead & Business Analyst to manage governance, risk, and compliance initiatives in the IT & Consulting sector.
Location: London, Manchester, Birmingham (Open to travel)
Employment type: Contract
The GRC Lead & Business Analyst is responsible for managing the organization's Governance, Risk, and Compliance (GRC) framework while also performing business analysis to enhance risk management, regulatory compliance, and operational efficiency. This role involves assessing risks, ensuring compliance, conducting audits, analyzing business processes, and driving GRC-related projects. The GRC Lead Cum BA will work closely with IT, legal, finance, and business units to enforce policies, ensure compliance, and implement best practices for governance, risk, and assurance.
Key Responsibilities:- Governance, Risk & Compliance (GRC) Management
- Develop, implement, and maintain GRC policies, frameworks, and procedures aligned with industry standards and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI DSS).
- Conduct workshops to gather requirements for risk assessments and security reviews, ensuring risk mitigation strategies are in place.
- Maintain a risk register and track risk management initiatives.
- Lead third-party/vendor risk assessments requirement gathering, ensuring supplier security and compliance.
- Collaborate with leadership to align GRC practices with business objectives.
- Compliance & Assurance
- Ensure the organization meets regulatory requirements and industry best practices.
- Manage compliance audits (ISO 27001, SOC 2, PCI DSS, GDPR, HIPAA) and coordinate with internal/external auditors.
- Conduct compliance monitoring and provide periodic reports on adherence to policies.
- Develop and implement assurance programs to validate control effectiveness.
- Stay updated on changing regulations and emerging compliance risks.
- Business Analysis & Process Optimization
- Gather and analyze business requirements for GRC initiatives, ensuring alignment with security, risk, and compliance goals.
- Identify gaps in current GRC processes and recommend process improvements.
- Collaborate with IT and security teams to implement automation for risk and compliance tracking.
- Develop dashboards and reports for leadership to track compliance, risks, and control effectiveness.
- Support the evaluation and selection of GRC tools and software solutions.
- Audit, Reporting & Documentation
- Plan, coordinate, and lead internal and external compliance audits.
- Document and track compliance findings, ensuring timely remediation.
- Prepare compliance reports, risk scorecards, and assurance documentation for senior management.
- Ensure security controls and risk mitigations are well-documented and auditable.
- Stakeholder Communication & Training
- Serve as a liaison between business units, IT, legal, and compliance teams.
- Conduct compliance and security awareness training for employees.
- Communicate risk and compliance updates to senior leadership.
GRC Lead & Business Analyst employer: KBC Technologies Group
Contact Detail:
KBC Technologies Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land GRC Lead & Business Analyst
✨Tip Number 1
Network with professionals in the GRC field. Attend industry events, webinars, or local meetups to connect with others who work in governance, risk, and compliance. This can help you gain insights into the role and potentially lead to referrals.
✨Tip Number 2
Familiarise yourself with the latest regulations and standards relevant to GRC, such as ISO 27001 and GDPR. Being knowledgeable about these frameworks will not only boost your confidence but also demonstrate your commitment to staying current in the field.
✨Tip Number 3
Prepare to discuss specific GRC projects you've worked on in the past. Be ready to explain your role, the challenges faced, and how you contributed to successful outcomes. This will showcase your practical experience and problem-solving skills.
✨Tip Number 4
Research StudySmarter's approach to GRC and its organisational culture. Tailoring your conversations during interviews to align with our values and practices can make a strong impression and show that you're genuinely interested in joining our team.
We think you need these skills to ace GRC Lead & Business Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in governance, risk, and compliance. Use keywords from the job description to demonstrate your fit for the GRC Lead & Business Analyst role.
Craft a Compelling Cover Letter: Write a cover letter that showcases your understanding of GRC frameworks and your experience in business analysis. Mention specific projects or achievements that align with the responsibilities outlined in the job description.
Highlight Relevant Skills: Emphasise skills such as risk assessment, compliance auditing, and process optimisation. Provide examples of how you've successfully implemented GRC policies or improved operational efficiency in previous roles.
Showcase Your Communication Skills: Since the role involves stakeholder communication and training, include examples of how you've effectively communicated complex information to diverse audiences. This will demonstrate your ability to liaise between different teams.
How to prepare for a job interview at KBC Technologies Group
✨Understand the GRC Framework
Make sure you have a solid grasp of the Governance, Risk, and Compliance framework. Familiarise yourself with relevant standards like ISO 27001 and GDPR, as well as how they apply to the role. This knowledge will help you demonstrate your expertise during the interview.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in risk management and compliance situations. Think of examples from your past experiences where you successfully managed risks or improved compliance processes, and be ready to discuss them in detail.
✨Showcase Your Analytical Skills
As a Business Analyst, your analytical skills are crucial. Be prepared to discuss how you've gathered and analysed business requirements in previous roles. Highlight any tools or methodologies you've used to optimise processes and improve operational efficiency.
✨Communicate Effectively with Stakeholders
Since this role involves liaising with various departments, practice articulating complex GRC concepts in simple terms. Demonstrating your ability to communicate effectively with both technical and non-technical stakeholders will set you apart from other candidates.
