GRC Analyst (CS94/GRC)

Overview

Reference
CS94/GRC

Salary
£450 - £550/day

Job Location
- United Kingdom -- England -- South East England -- Buckinghamshire -- Milton Keynes

Job Type
Contract

Posted
04 September 2025


GRC Analyst – 6-month contract – London/Remote – Inside IR35

My Customer is looking for a GRC Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities.

In this role, you will be responsible for identifying, assessing, and tracking security risks across assets, systems, and third parties, ensuring compliance with internal standards, policies, and regulatory frameworks.

Key Skills from the GRC Analyst:

  • Strong background in Security Risk and Governance with hands-on experience in Archer (experience with other GRC tools is also valuable).
  • Solid understanding of risk assessment methodologies, security frameworks (NIST, ISO 270001), and compliance requirements (GDPR, PCI DSS, SOX).
  • Strong written communication skills, able to produce clear technical reports and risk documentation.
  • Excellent stakeholder management, able to collaborate across technical and non-technical teams.
  • Beneficial certifications: CISSP, CISA, CISM (or equivalent).
  • ISO27001 / ISMS Accredited qualifications would be beneficial
  • Experience working in financial sector would be beneficial
  • Experience in ensuring internal IT system compliance against agreed standards

Key Responsibilities of the GRC Analyst:

  • Maintain and improve the security risk assessment framework, procedures, and workflows.
  • Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations.
  • Conduct asset-level and third-party/vendor risk assessments.
  • Analyse and document inherent and residual risks, providing clear recommendations.
  • Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans.
  • Drive remediation
  • Perform periodic and ad-hoc risk assessments in line with organisational policies.

The GRC Analyst is required onsite in London, once a week.

Apply now to speak with VIQU IT in confidence about the GRC Analyst role. Or reach out to Connor Smal via the VIQU IT website.

Do you know someone great? We’ll thank you with up to £1,000 if your referral is successful (terms apply).

For more exciting roles and opportunities like this, please follow us on LinkedIn @VIQU IT Recruitment.


Contact information

Connor Smal