Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Bridge tech and compliance, shaping effective security frameworks and managing risks.
- Company: Join tombola, a vibrant company that values innovation and collaboration.
- Benefits: Enjoy a hybrid work model, career growth, and a supportive team environment.
- Why this job: Make a real impact in security while working with diverse teams and ideas.
- Qualifications: Curiosity, confidence, and a solid understanding of security frameworks are key.
- Other info: Embrace inclusivity and celebrate differences in a dynamic workplace.
The predicted salary is between 28800 - 48000 £ per year.
Sunderland - hybrid - Perm
Some roles sit in tech. Some sit in compliance. This one sits right in the middle. We're looking for someone who can confidently bridge both worlds, understanding the technical detail while translating it into clear, practical guidance across the business.
This role has opened up due to an internal promotion, something we love to celebrate at tombola as part of how we grow and develop our people. We're on the lookout for a Governance, Risk & Compliance (GRC) Analyst to join our friendly and growing InfoSec team here at tombola. You'll be joining a collaborative team of security-minded professionals alongside our Operational Security, Offensive Security and IT Support Teams. We take what we do seriously, but we don't take ourselves too seriously.
What you'll be doing
This is a key role where you'll sit right at the heart of how we balance security, compliance and innovation. You'll be helping us shape and deliver an effective technical compliance framework, making sure we maintain a strong security posture while still moving at pace as a business. Working closely with technology teams, compliance, and stakeholders across tombola, you'll help identify, assess and manage technology and security risks. A big part of your role will be translating complex technical and regulatory requirements into something meaningful and actionable for different audiences across the business.
- Support the ongoing development and improvement of our ISMS, policies, standards and processes
- Lead and support audits, working with external partners and Group teams
- Help ensure our platforms and games meet both local and international regulatory requirements
- Act as a key point of contact between InfoSec and the wider business, building strong relationships and driving the right outcomes
What we're looking for
We're looking for someone who's curious, confident and comfortable operating between technical and non-technical worlds. You don't need to be hands-on coding, but you do need to understand technology well enough to ask the right questions, challenge where needed and hold your own in conversations with technical teams. You'll likely bring:
- A strong understanding of security frameworks, standards or compliance environments
- The ability to interpret technical concepts and communicate them clearly to different audiences
- Confidence to challenge, influence and guide stakeholders across the business
- Strong organisational skills, with the ability to manage multiple priorities
We'd also love someone who:
- Is naturally inquisitive and enjoys getting into the detail
- Is comfortable asking questions and challenging the status quo
- Enjoys working with a wide range of people and building relationships
- Takes pride in doing things thoroughly and properly
Ways of working
This role is based at our Sunderland HQ, with a hybrid approach of 3 days in the office and 2 days working from home. That means plenty of time collaborating with the team, alongside space to focus and get stuck into the detail.
Why tombola
We're a business built on innovation, collaboration and doing things differently. We're always looking to improve how we work and we genuinely welcome new ideas and perspectives. If you're looking for a role where you can make an impact, grow your career and be part of a team that backs each other, we'd love to hear from you. At tombola we know that our differences make us stronger and that thinking differently is key to long term success. We work hard to create a culture of inclusivity where everyone can celebrate our Free to be me value. We are committed to creating opportunities for everyone here at tombola, we welcome applications from all backgrounds and encourage individuals to apply, even if you don't meet every requirement.
Governance, Risk & Compliance (GRC) Analyst in Sunderland employer: Tombola
Contact Detail:
Tombola Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Governance, Risk & Compliance (GRC) Analyst in Sunderland
✨Tip Number 1
Network like a pro! Reach out to current employees at tombola on LinkedIn or other platforms. Ask them about their experiences and any tips they might have for landing the GRC Analyst role. Personal connections can make a huge difference!
✨Tip Number 2
Prepare for the interview by brushing up on your understanding of security frameworks and compliance standards. Be ready to discuss how you can bridge the gap between technical and non-technical teams. Show us you can translate complex concepts into clear, actionable insights!
✨Tip Number 3
Don’t just focus on your qualifications; showcase your curiosity and willingness to learn. Share examples of how you've challenged the status quo in previous roles. We love candidates who are inquisitive and eager to dive into the details!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in being part of the tombola team. Let’s get you on board!
We think you need these skills to ace Governance, Risk & Compliance (GRC) Analyst in Sunderland
Some tips for your application 🫡
Show Your Understanding of GRC: Make sure to highlight your knowledge of Governance, Risk & Compliance in your application. We want to see how you can bridge the gap between technical details and practical guidance, so don’t hold back on showcasing your skills!
Tailor Your Application: Take a moment to tailor your CV and cover letter to reflect the specific requirements of the role. Mention your experience with security frameworks and how you've successfully communicated complex concepts to different audiences.
Be Yourself: We love authenticity! Don’t be afraid to let your personality shine through in your application. Share your curiosity and passion for the field, and how you enjoy building relationships across teams.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity to join our InfoSec team!
How to prepare for a job interview at Tombola
✨Know Your Stuff
Make sure you have a solid understanding of security frameworks and compliance standards. Brush up on the technical details relevant to the role, so you can confidently discuss how they apply to tombola's operations.
✨Bridge the Gap
Prepare to demonstrate your ability to translate complex technical concepts into clear, actionable guidance. Think of examples where you've successfully communicated between technical and non-technical teams, as this will be key in your role.
✨Show Your Curiosity
Be ready to ask insightful questions during the interview. This shows you're genuinely interested in the role and the company. It also highlights your inquisitive nature, which is something tombola values highly.
✨Build Relationships
Think about how you can foster strong relationships with stakeholders. Prepare examples of how you've influenced or guided others in previous roles, as this will resonate well with tombola's collaborative culture.