Technology Risk / Compliance Analyst
Lorien
Technology Risk / Compliance Analyst (GRC)
Up to £66,000 + benefits
Edinburgh or Glasgow | Hybrid - 2 days office / 3 days home
Our client is a fast-growing, well-established software business providing regulatory and compliance solutions to financial services organisations. They are looking for a Technology Risk / Compliance Analyst to join their Governance, Risk & Compliance function, reporting directly to the VP of GRC.
This role can be based out of either the Edinburgh or Glasgow office, working a hybrid pattern of 2 days in the office and 3 days from home.
This is a genuine opportunity to build specialist expertise in technology, cyber, data and third-party risk within a regulated financial services environment - with direct exposure to senior GRC oversight, governance forums, control assurance and client due diligence work.
What you'll be doing
- Supporting risk and control self-assessments across technology, cyber security, data, cloud services and third-party/supplier risk
- Analysing incidents, operational events and control data to identify trends, root causes and areas for improvement
- Tracking risk actions and remediation plans, escalating overdue items where required
- Maintaining key risk indicators and control information to support accurate governance and client assurance reporting
- Preparing draft packs, dashboards and summary updates for senior GRC review
- Supporting responses to client, audit and regulatory due diligence requests
- Contributing to continuous improvement of risk processes, including the use of automation and AI-enabled tools
What we're looking for
- Proven skills in a risk, audit, technology, cyber, data or controls role
- Financial services background essential - experience working in, or with, a regulated environment
- Experience with a GRC or compliance automation platform (e.g. Secureframe, Vanta, Drata or similar) is a strong plus
- Naturally curious and proactive - comfortable identifying risks unprompted and confident challenging control owners on findings
- Strong analytical skills and the ability to translate risk data into clear, actionable insight for technical, non-technical and client audiences
- Awareness of frameworks such as ISO 27001, NIST, SOC 2, GDPR, DORA or operational resilience is desirable
What's on offer
- Salary up to £66,000 depending on experience
- Hybrid working - 2 days in the office (Edinburgh or Glasgow), 3 days from home
- Benefits package (pension, healthcare and further details on application)
- Direct exposure to senior GRC leadership and governance forums
- Genuine scope to shape and improve risk processes, not just maintain them
If the above sounds like you please send a copy of your latest CV for a confidential discussion
Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.
Application opens at the source listing. Free for jobseekers.