GRC Analyst

We are seeking a proactive and detail‑oriented Technical Project Analyst to join our Technology Risk team. This is a vital, hands‑on role supporting the Head of Technology Risk and Delivery Assurance in executing our wider tech risk roadmap and maintaining a secure, compliant environment. This role requires someone who is a confident communicator, comfortable owning projects, and motivated to develop and establish themselves within the field of GRC (governance, risk & compliance) and information security.

As a Technical Project Analyst, you will play a pivotal role in the day‑to‑day implementation and management of key systems and processes at Rightmove. A significant part of the role involves acting as a bridge between compliance requirements and our technical teams. You will be responsible for implementing and running governance and security projects, translating requirements into actionable outputs that embed seamlessly into our product and engineering workflows. This is an excellent opportunity for a tech‑savvy professional to help foster a culture where compliance enables, rather than hinders, product development.

What You’ll Be Doing

• Implementation of critical projects: Deliver large‑scale updates to processes and systems across multiple departments.
• Engineering translation: Act as a liaison between security/compliance functions and technology teams, translating GRC requirements into clear technical specifications, user stories, and actionable tickets.
• Risk assessments & audits: Support internal and external audits, identify vulnerabilities, and collaborate with technical teams to implement appropriate controls.
• Delivery support: Contribute to the Technology Risk strategy by rolling out frameworks, tracking metrics, and embedding automated compliance practices into workflows.
• Process integration: Work closely with engineering teams to integrate compliance requirements into existing ways of working (e.g. Agile/Jira), ensuring a frictionless approach to GRC.
• System resilience: Support due diligence on software, technical partners, and business continuity processes to strengthen system resilience.

We’re looking for someone with

• Collaboration and communication: Strong interpersonal skills with the ability to work effectively across technical, compliance, and legal teams.
• Project management fundamentals: Experience working in software environments, managing project lifecycles and stakeholders.
• Technical fluency: A solid understanding of modern technology teams and development processes, with the ability to translate complex compliance risks into developer‑friendly language.
• Pragmatic mindset: A problem‑solving approach, balancing robust security requirements with efficient product delivery.
• Process focus: Ability to understand technical workflows and design compliance processes that enhance rather than disrupt team efficiency.

What You’ll Bring To The Role

• Demonstrable experience (typically 2–4 years) in a project management, GRC, or security‑related role.
• Familiarity with information security, privacy, or compliance‑based projects.
• Experience reporting to stakeholders at all levels of the business.
• Familiarity with Agile tools (e.g. Jira) and embedding requirements into development backlogs.
• A proactive, results‑oriented mindset with a passion for building strong team cultures.

Nice To Have

• Hands‑on experience with security frameworks such as ISO 27001 or SOC 2.

What We Offer

• Cash plan for dental, optical and physio treatments.
• Private Medical Insurance, Pension and Life Insurance, Employee Assistance Plan.
• 27 days holiday plus two (paid) volunteering days a year to give back, and holiday buy schemes.
• Contributory stakeholder pension.
• Life assurance at 4x your basic salary to a spouse, family member or other nominated person in your life.
• Competitive compensation package.
• Paid leave for maternity, paternity, adoption & fertility.
• Travel Loans, Bike to Work scheme, Rental Deposit Loan.
• Charitable contributions through Payroll Giving and donation matching.
• Access deals and discounts on things like travel, electronics, fashion, gym memberships, cinema discounts and more.
• We offer hybrid working with a minimum of 2 days in the office.

As an Equal Opportunity Employer, Rightmove will never discriminate based on age, disability, sex, race, religion or belief, gender reassignment, marriage / civil partnership, pregnancy/maternity or sexual orientation. At Rightmove, we believe that a diverse and inclusive workforce leads to better innovation, productivity, and overall success. We are committed to creating a welcoming and inclusive environment for all employees, regardless of their background or identity, to develop and promote a diverse culture that reflects the communities we serve.