GRC Analyst
Posted 6 days ago by Broadgate
Negotiable
Undetermined
Hybrid
London Area, United Kingdom
Summary: This hybrid contract role for a GRC Analyst at Broadgate involves supporting governance, risk management, and compliance initiatives within the organization. The position requires conducting risk assessments, ensuring adherence to regulatory standards, and implementing compliance frameworks. The GRC Analyst will collaborate with various teams to manage and mitigate risks effectively. Strong knowledge of GRC frameworks and excellent communication skills are essential for success in this role.
Key Responsibilities:
- Conduct regular risk assessments and risk reviews across systems, vendors, and business processes.
- Identify, evaluate, and prioritize information security and operational risks.
- Track and maintain the risk register with clear risk ownership, mitigation strategies, and timelines.
- Work with control owners to assess residual risk and document decisions effectively.
- Communicate risks to stakeholders with actionable recommendations and business context.
- Collaborate with IT, legal, and compliance teams to support secure business operations.
Key Skills:
- Strong knowledge of Governance, Risk, and Compliance (GRC) frameworks, regulatory standards, and ISO certifications.
- Risk assessment, risk management, and internal controls expertise.
- Proficient in preparing detailed reports and documentation for regulatory or internal auditing purposes.
- Analytical thinking, problem-solving, and organizational skills.
- Familiarity with tools or software used in governance or compliance processes.
- Bachelor's degree in information systems, cybersecurity, business administration, or a related field.
- Excellent communication and interpersonal skills to work with cross-functional teams effectively.
Salary (Rate): undetermined
City: London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: undetermined
Seniority Level: undetermined
Industry: Other
Company Description Broadgate specializes in enabling businesses to accelerate technology changes, optimize performance, increase profitability, and achieve operational efficiency. Our core services include strategic advice, operating model optimization, cybersecurity, sourcing and contract management, and change management. We focus on delivering value through dependable and experienced professionals, cutting-edge technology, and streamlined processes tailored to client needs. At Broadgate, we are committed to addressing challenges, driving solutions, and managing technological requirements for sustainable success.
Role Description This is a hybrid contract role for a GRC Analyst, based in the London Area, with flexibility for remote work. The GRC Analyst will be responsible for supporting governance, risk management, and compliance initiatives within the organization. Key tasks include conducting risk assessments, ensuring regulatory and policy adherence, implementing effective compliance frameworks, monitoring internal controls, and collaborating with teams to manage and mitigate risks effectively.
Qualifications Strong knowledge of Governance, Risk, and Compliance (GRC) frameworks, regulatory standards, and ISO certifications. Risk assessment, risk management, and internal controls expertise. Proficient in preparing detailed reports and documentation for regulatory or internal auditing purposes. Analytical thinking, problem-solving, and organizational skills. Familiarity with tools or software used in governance or compliance processes. Bachelor's degree in information systems, cybersecurity, business administration, or a related field. Excellent communication and interpersonal skills to work with cross-functional teams effectively.
Day-to-Day Risk Management Conduct regular risk assessments and risk reviews across systems, vendors, and business processes Identify, evaluate, and prioritise information security and operational risks Track and maintain the risk register with clear risk ownership, mitigation strategies, and timelines Work with control owners to assess residual risk and document decisions effectively Communicate risks to stakeholders with actionable recommendations and business context Collaborate with IT, legal, and compliance teams to support secure business operations