Job Specifications
2760 – Risk & Compliance Senior Analyst
We’re looking for a proactive and skilled Risk & Compliance Senior Analyst to play a key role in strengthening governance, risk, and resilience capabilities. In this varied role, you’ll support the Senior Manager (Risk & Compliance) and the Risk & Resilience Lead across a broad range of assurance activities — from organisation-wide risk assessments and compliance monitoring to IT resilience planning, incident response support, and vendor risk management. You’ll help identify control gaps, develop robust policies and procedures, drive continuous improvement, and ensure accurate reporting across all GRC activities. This is an excellent opportunity for someone who thrives in a fast‑paced environment and enjoys making a meaningful impact on organisational risk and compliance maturity.
Location: London or Aberdeen, Hybrid working
Contract Type: Contract or Permanent considered
What you’ll do
Work with the Global Risk & Compliance Senior Manager to support IS in the delivery of governance, compliance, and risk activities, whilst supporting the Integration project
Support the execution of the security, audit, and compliance activities
Support the Global Risk & Compliance Senior Manager by ensuring the successful delivery of initiatives and projects within the Risk and Compliance environment
Support the Risk & Compliance Senior Manager, and Risk & Resilience Lead in any required activities which support improvements in assurance, compliance, and audit activities
Address findings from identified risks or audits
Ensure the ISMS contains an accurate record of risks, events, and issues
Support the internal and external audit investigations
Ensure that the audit tests, self-certifications, and audit reviews are relevant, consistent, and conducted in accordance with professionally accepted auditing standards
Work with minimal supervision, using clearly defined processes and procedure
Facilitate the use of performance metrics to improve output
What to bring
Substantial relevant experience in control management for governance, compliance, IT audits, IS assurance and risk management programmes
CISA, CISM or equivalent preferred
BSc or equivalent qualification in IT based degree preferred
Relevant IT work experience
Proven ability to communicate with technical teams to elicit information and requirements
Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act) and industry-specific regulations
Skilled in implementing compliance and control frameworks
Proficient in IT governance and quality standards
Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
Excellent stakeholder management skills
High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity
Knowledge of OneTrust risk management toolset or similar preferred
What You’ll Get in Return:
For employees, we’re committed to recognising and rewarding hard work. Our competitive salary and benefits package includes; Company Pension Scheme, Private Medical & Dental Insurance, Group Income Protection, Group Life Assurance, Cycle to Work and Electric Car Salary Sacrifice Scheme. We also invest in your development. If you choose to self-study in your own time, we’ll fund your study materials and exam fees — and once you pass, you’ll receive an incentive bonus.
How to Apply
We’re committed to creating an inclusive and accessible recruitment process. If you have any access needs or require adjustments at any stage of the application or assessment process, please let us know — we’re happy to support you.
Please note: All offers of employment will be subject to background checks and confirmation of the right to work in the UK.
Apply now to be part of a team that values initiative, collaboration, and continuous improvement; talent@prosource.it
About us
prosource.it is a professional services provider in technology. Established as a traditional provider of managed IT services, prosource.it has evolved with industry and the rapid pace of change within the technology sector. We recognise the importance of people and business process in the successful adoption of technology and change. Our readiness to embrace and apply change comes from our people and we offer a variety of business services across the lifespan of successful technological deployment and adoption. We are a people centred business with a global workforce of 500 plus staff and contractors.
Our values are central to what we do and how we do it. We feel they are simple and easy to relate to, and we are always looking to welcome new people to the team who share our vision and values. We pride ourselves on being easy to deal with, agile and accepting of change across a wide range of challenging and reward
About the Company
prosource.it is a managed IT services provider with a particular focus on infrastructure, operational and project requirements across the corporate enterprise market. We serve Fortune 500 and FTSE250 companies, major financial institutions, and leading private companies concentrated in oil & gas, manufacturing, transportation, media, insurance and finance. With significant investment in PRINCE2, PMI and ITIL accreditation, our workforce has over 3,000 years of experience leveraged to deliver and manage IT infrastructure from...
Know more