JOB DESCRIPTION:

Are you passionate about technology risk and governance? Core-Asset Consulting is partnering with a leading UK-based financial services organisation to recruit an experienced IT Risk Analyst.
This is an exciting opportunity to join a highly collaborative risk and compliance team, playing a key role in embedding effective risk management practices across a growing and dynamic business.

ESSENTIAL SKILLS/EXPERIENCE:

• Prior experience working in a risk-based role within financial services
• Understanding of IT risk frameworks and control environments
• Knowledge of risk methodologies such as RCSA, KRI/KCI design and incident/root cause analysis
• Solid grasp of cyber/information security concepts and controls
• Familiarity with frameworks such as ISO 27001, NIST, or similar
• Strong stakeholder engagement and communication skills, including the ability to explain technical risk concepts to non-technical audiences
• Proficiency with Microsoft Office tools (Excel, Word, PowerPoint)
• Working knowledge of UK regulatory standards (e.g., FCA, GDPR, Consumer Duty)
• Experience supporting or engaging with internal audit functions
• Certifications such as CompTIA Security+, CISA, CISSP, CISM or CRISC (or studying towards)
• Exposure to technology change risk assessments and remediation planning

• Facilitate IT and business risk assessments and control testing exercises
• Maintain and update risk and control registers
• Support the design and tracking of key risk indicators (KRIs) and key control indicators (KCIs)
• Assist in the review and validation of root cause analysis from risk events and incidents
• Monitor and report on remediation plans and internal loss events
• Support IT risk dashboards, reporting packs, and regulatory insights for senior stakeholders
• Contribute to the development of a strong risk culture across the organisation
• Collaborate with internal teams to oversee the risk impact of technology change programmes