IT Governance and Risk Analyst
The IT Governance and Risk Analyst will Support the Head of IT in maintaining and supporting all aspects relating to IT Governance, Risk, Security and compliance. To ensure that the appropriate IT Governance Framework is in place by working and supporting the respective areas within the IT department to ensure that they have the correct policies, procedures, reporting, and standards in place. The IT GRC Analyst will be working closely with the IT Infrastructure, Development and Security teams to establish a common IT GRC framework.
About us
Founded in 2007, we are a challenger bank that operates in accordance with Shariah principles, with offices in London, Milton Keynes and Wilmslow. We’re one of the fastest growing banks of our kind in the UK and are a subsidiary of Gatehouse Financial Group Limited.
We offer personal and corporate savings products and finance for UK residential and commercial property, in addition to sourcing and advising on UK real estate investments.
Our way of operating is stable, transparent, and shares risk and reward in an equitable way. That’s why we talk about balanced banking .
Key responsibilities
* Assisting in establishing, implementing and maintaining IT governance frameworks such as ISO27001:2022 to encompass the technology across the Bank.
* Primary contact in assisting in performing periodic reviews relating to IT by audit, risk, and compliance team.
* Assessing and maintaining IT controls defined in Policies and Standards.
* Assessing and documenting IT risks.
* Raising exceptions and defining remediation plans with risk owners.
* Maintaining and improving formal reporting (MI) of IT governance & security activities.
* Monitoring of day-to-day IT operational & security risks / policy exceptions within the IT Risk Register.
* Analysing critical incidents and reporting them in the Operational risk reporting system.
* Suggesting control improvements to increase maturity and the overall security posture.
* Coordinating IT control attestations within the IT department and with third party service providers.
Key Skills required
* Experience Information Security Governance, Risk and Compliance or IT Audit experience.
* Experience of implementing GRC and IT Frameworks.
* Experience of analysing and communicating IT related incidents both internally and 3rd
* parties.
* Knowledge of information security risk management frameworks and monitoring tools.
* Exposure to and understanding of IT Infrastructure including cloud based systems and Business Applications areas, i.e. Azure and Microsoft 365.
* Industry recognised technical certifications such as ITIL, CISSP, CISM or similar.
We offer highly attractive reward package; the typical benefits include:
* 25 days holiday entitlement increasing with service
* Pension Plan
* Private Medical Insurance
* Dental Cover
* Income Protection
* Life Assurance
* Employee Referral Bonus
Gatehouse Bank is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, gender reassignment, religion or belief, marital status, or pregnancy and maternity.
Please be advised that we have an appointed recruitment partner, The Curve Group, to manage our recruitment process and give candidates the best possible experience in pursuing a career with Gatehouse Bank. The personal details you have shared with us may be processed by The Curve Group on behalf of Gatehouse Bank.
Full details of their Privacy Policy can be viewed by using this link