National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

IT Risk & Contols Analyst

Wolverhampton
3 months ago
Applications closed

Related Jobs

View all jobs

Senior Lead, Cybersecurity Supply Chain Risk

IT Information Security Analyst

Senior IT Security Analyst (Tech SME)

Governance, Risk and Compliance (GRC) Analyst

IT Security Analyst

2571 – Cyber Security Analyst

IT Risk & Controls Analyst (GRC)

Our long-term, trusted financial partner is growing its IT GRC function and hiring an IT Risk & Controls Analyst (GRC) to ensure risk management services, processes, and systems within IT, Data, and Cyber. The chosen candidate will provide a key role supporting the GRC manager, exciting RCSA processes, delivering risk and control management service, and engaging with key stakeholders in the IT department & wider business.

Our client is offering a basic salary between £46,000 to £56,000 to be based in Wolverhampton on a hybrid basis plus exceptional benefits (15% bonus, 9% pension, private health care etc.)

Responsibilities:

Conduct and support Risk and Control Self-Assessments (RCSA), assisting in identifying emerging risks and changes required to key controls based on changing business requirements.
Provide expertise to support the first-line risk owners in the development and ongoing enhancement of appropriate Key Risk Indicators (KRIs) and metrics to ensure alignment and embedment of our client’s risk appetite framework.
Deliver risk activities to monitor and assess risk on an ongoing basis in support of the IT GRC Framework, ensuring the processes and controls in place mitigate risk and comply with applicable legislation and regulations.
Experience requirements:

1 to 3 years of experience delivering risk management activities across IT, Data, & Cyber risk within an internal GRC function.
Experience working within a regulated environment (finance, banking, insurance, energy, public sector) is a must-have.
Previous demonstrable experience of designing and implementing IT, Cyber and/or Data Controls which appropriately mitigate the associated risk. IT Controls assurance testing experience desirable, not essential.
Strong communication skills required to help outline complex IT, Data & Cyber risk concepts clearly and persuasively to both technical and non-technical stakeholders is essential.
An IT GRC qualification supporting risk management, such as CRISC, CISM, and CISA, is essential.
One stage interview process

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

How to Get a Better Cyber Security Job After a Lay-Off or Redundancy

Redundancy is never easy—especially in a fast-moving field like cyber security, where your skills and experience are constantly evolving. But if you’ve recently been made redundant from a cyber security role, know this: the UK cyber workforce remains in high demand, and your expertise is more valuable than ever. Whether you’re a SOC analyst, penetration tester, incident responder, security architect or GRC specialist, there are still thousands of opportunities across sectors including finance, defence, government, retail, and critical infrastructure. This guide will help you turn redundancy into a career relaunch, with a clear action plan tailored to the UK cyber security job market.

Jobs

Cyber Security Jobs Salary Calculator 2025: Check Your Market Value in Seconds

Why yesterday’s pay survey no longer protects you. “Could I earn more at a managed SOC?” “Is that fintech’s offer really competitive?” Every UK cyber‑security professional asks some version of those questions—usually after another colleague lands a pay rise, a recruiter sends a tempting JD, or a fresh breach makes headline news. Yet salary guides published even last year feel as out‑of‑date as a forgotten antivirus signature. Since 2024, ransomware gangs switched to double‑extortion, deepfake phishing exploded, & the EU’s NIS2/DORA regulations bled into UK contracts despite Brexit. With each shift, salary bands move. To cut through stale averages, CybersecurityJobs.tech distilled a three‑factor formula that lets you estimate a realistic 2025 salary in under a minute. Feed in your role, your UK region, & your seniority level. The output arms you with data‑driven leverage for your next appraisal, job application, or freelance rate card. This article explains the formula, reveals the forces pushing cyber pay ever higher, & outlines five practical moves to boost your market value within ninety days.

Careers

How to Present Cyber Security Solutions to Non-Technical Audiences: A Public Speaking Guide for Job Seekers

Cyber security is no longer just an IT issue—it’s a board-level priority. Whether you’re applying for a role in penetration testing, security operations, risk management, or compliance, your ability to clearly explain cyber threats and solutions to non-technical stakeholders is vital. This guide will help cyber security job seekers develop one of the most in-demand soft skills in the industry: public speaking. You’ll learn how to simplify complex concepts, structure effective presentations, use storytelling and analogies, and handle common stakeholder questions with confidence.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.