26 jobs found

Overview Senior SAP FICO Analyst position available working for a global industry leader within engineering and chemical manufacturing paying up to £80,000 plus many additional benefits! The role plays an integral part in providing a strategic and operational bridge between IT and business functions to ensure seamless design, delivery and optimisation of SAP within the FICO division. A globally leading engineering company, which specialise in the manufacture of speciality chemicals, in Warrington are seeking an experienced Senior SAP FICO Analyst to take end-to-end ownership of its SAP landscape across multiple manufacturing plants and legal entities supporting oil & gas and chemical operations. Salary and Benefits Annual Salary Between: £75,000 - £80,000 (DOE) 25 Days Annual Leave + 8 Bank Holidays Company Pension Scheme Private Medical Insurance Life Assurance Policy Free Onsite Parking The Role The role is accountable for SAP strategy, architecture, delivery, and operational stability, ensuring system integrity, data quality, regulatory compliance, and measurable business value. The Senior SAP FICO Analyst will ensure that all financial reporting and controlling modules are synced with manufacturing reality. Key Responsibilities: SAP Solution Design & Delivery: Collaborate with global finance stakeholders to design, configure, and test robust SAP solutions across FI (GL, AP, AR, AA) and CO (CCA, PCA, PC, CO-PA). Manufacturing Costing Excellence: Take ownership of Product Costing (CO-PC) and Material Ledger, ensuring accurate inventory valuation and variance analysis for our production facilities. Integration Leadership: Act as the financial anchor for the Order-to-Cash (OTC) and Procure-to-Pay (PTP) streams, ensuring seamless integration between SD, MM, and General Ledger. Process Optimization: Serve as a Business Relationship Manager (BRM), gathering IT demands from the CFO's organization, prioritizing initiatives, and recommending automation to streamline month-end closing. Qualifications A Bachelor's degree in information, systems, computer science, business or a related field. Strong background with SAP FICO (Financial Controlling). SAP Certifications (e.g. SD/MM/PP/QM/EWM/FI-CO, SAP Security, GRC) Previous experience of maintaining SAP ECC 6.0 and mastery of SD with advanced knowledge of FI, CO and MM in complex manufacturing environments. Strong background in Process Manufacturing environments. Deep functional expertise across SD, MM, PP, QM, WM/EWM, FI/CO.

Rightmove is looking for a proactive Technical Project Analyst to join their Technology Risk team in Greater London. This role involves managing compliance and risk projects, translating requirements for technical teams, and ensuring an efficient integration with existing processes. Candidates should have 2-4 years of relevant experience, particularly in project management or GRC, and possess strong interpersonal and problem-solving skills. Rightmove offers a hybrid work environment and various benefits including private medical insurance and generous holiday allowances.

Because we strive to put people first. Culture, our way. Technology at Primark What's a career at Primark all about? The positive impact you're making, the experiences you're having and the people you're with. You're our inspiration. Embrace what sets you apart, own your career and develop in ways you never expected. Leave your mark. And do it your way. Our technology team is actively shaping the next wave of advancements. Engaged with innovative initiatives, your expertise will propel our business into the future. Collaborating with a creative team of tech enthusiasts, you'll contribute your unique skills to fuel our technological advancements. Job Description What You'll Do as a Security Assurance Analyst In your role, you'll collaborate with different people across a range of skillsets. Here's a flavour of your day-to-day: Support assurance activities by conducting project and third party reviews, helping identify risks in project delivery and in the security posture of new and existing vendors. Maintain key repositories and tools, ensuring items like the Supplier Register, Project Assurance lists, and the Third Party Risk Management tool are complete, accurate, and up to date. Coordinate penetration testing logistics, ensuring tests are scheduled, arranged, and supported, with all required inputs and communications in place. Ensure project compliance, supporting project managers in completing required documentation on time and confirming all security controls are implemented before go live. Manage third party documentation, including collecting and reviewing SOC, PCI, and ISO 27000 certifications, and flagging outdated or missing information to vendors. Support risk tracking, collaborating with the Risk Management team to ensure all third party risks are accurately captured, monitored, and kept current in the GRC tool. Qualifications People are at the heart of what we do here, so it's essential we provide you with the right environment to perform at your very best. Let's talk lifestyle: Healthcare, pension, and potential bonus. 27 days of leave, plus bank holidays and if you want, you can buy 5 more. Because Primark is all about tailoring to you, we offer Tax Saver Tickets, fitness centre, and a subsidised cafeteria. Additional Information What You'll Bring Here at Primark, we want everyone to feel valued - so please bring your authentic self to work, of course with some other key experience and abilities for this role in particular: Strong security and risk management expertise, including hands on experience with GRC tools (e.g., OneTrust), TPRM modules, and the ability to analyse third party risks based on service offering, security posture, supporting evidence, and relevant security certifications (ISO27K, Cyber Essentials). Solid understanding of security frameworks and regulations, including ISO, NIST, GDPR, and PCI, with the ability to interpret their impact on project requirements and third party assurance activities. Knowledge of project delivery methodologies, such as Waterfall and Agile, combined with a clear understanding of security by design principles and how to embed them into project lifecycles. Penetration testing awareness, including knowledge of testing approaches and experience advising projects on remediation measures following test results. Strong analytical, organisational, and data skills, demonstrated through attention to detail, ability to present data effectively, and experience using data analytics tools like Power BI. Relevant professional background and qualifications, including a minimum of 3 years in an Information Security role with a focus on security assurance, an appropriate degree or equivalent qualification, and desirable experience working on accreditation projects (ISO27K, PCI, Cyber Essentials). Does this sound like you? Great, because we can't wait to see what you'll bring. You'll be supported within a team of equally capable people, celebrating who you are and aiding you reach your potential. At Primark, we're excited about our future - and we're excited to develop yours. About Primark At Primark, people matter. They're the beating heart of our business and the reason we've grown from our first store in Dublin in 1969 to a £9bn+ turnover business and over 80,000 colleagues and over 440 stores in 17 countries today. Our values run through everything we do. In essence, we're Caring and always strive to put people first. We're also Dynamic, bravely pushing the boundaries to stay ahead. And finally, we succeed Together. If you need any reasonable adjustments or have an accessibility request, during your recruitment journey, such as extended time or breaks between online assessments, a sign language interpreter, mobility access, or assistive technology please contact your talent acquisition specialist. All offers of employment are subject to background checks, including right to work, reference education and for some roles criminal, and financial checks. If you have any concerns, please reach out to our talent acquisition team to discuss. Our fashion isn't one size fits all and neither is our culture. Primark promotes equal employment opportunity, we strive to create an inclusive workplace where people can be themselves, access opportunities and thrive together.

Our vision is to give everyone the belief they can make their move. We aim to make moving simpler by providing the best place to turn to for access to tools, expertise, trust, and belief to make it happen. Technical Project Analyst The role We are seeking a proactive and detail oriented Technical Project Analyst to join our Technology Risk team. This is a vital, hands on role supporting the Head of Technology Risk and Delivery Assurance in executing our wider tech risk roadmap and maintaining a secure, compliant environment. This role requires a confident communicator who is comfortable owning projects and motivated to establish themselves within the fields of GRC (governance, risk & compliance) and information security. As a Technical Project Analyst, you will play a pivotal role in the day to day implementation and management of key systems and processes at Rightmove. A significant part of the role involves acting as a bridge between compliance requirements and our technical teams. You will be responsible for implementing and running governance and security projects, translating requirements into actionable outputs that embed seamlessly into our product and engineering workflows. This is an excellent opportunity for a tech savvy professional to help foster a culture where compliance enables, rather than hinders, product development. What you'll be doing Implementation of critical projects: Deliver large scale updates to processes and systems across multiple departments. Engineering translation: Act as a liaison between security/compliance functions and technology teams, translating GRC requirements into clear technical specifications, user stories, and actionable tickets. Risk assessments & audits: Support internal and external audits, identify vulnerabilities, and collaborate with technical teams to implement appropriate controls. Delivery support: Contribute to the Technology Risk strategy by rolling out frameworks, tracking metrics, and embedding automated compliance practices into workflows. Process integration: Work closely with engineering teams to integrate compliance requirements into existing ways of working (e.g. Agile/Jira), ensuring a frictionless approach to GRC. System resilience: Support due diligence on software, technical partners, and business continuity processes to strengthen system resilience. We're looking for someone with Collaboration and communication: Strong interpersonal skills with the ability to work effectively across technical, compliance, and legal teams. Project management fundamentals: Experience working in software environments, managing project lifecycles and stakeholders. Technical fluency: A solid understanding of modern technology teams and development processes, with the ability to translate complex compliance risks into developer friendly language. Pragmatic mindset: A problem solving approach, balancing robust security requirements with efficient product delivery. Process focus: Ability to understand technical workflows and design compliance processes that enhance rather than disrupt team efficiency. What you'll bring to the role Demonstrable experience (typically 2-4 years) in a project management, GRC, or security related role. Familiarity with information security, privacy, or compliance based projects. Experience reporting to stakeholders at all levels of the business. Familiarity with Agile tools (e.g. Jira) and embedding requirements into development backlogs. A proactive, results oriented mindset with a passion for building strong team cultures. Nice to have Hands on experience with security frameworks such as ISO 27001 or SOC 2. What we offer Cash plan for dental, optical and physiotherapy treatments. Private Medical Insurance, Pension and Life Insurance, Employee Assistance Plan. 27 days holiday plus two paid volunteering days a year, and holiday buy schemes. Contributory stakeholder pension. Life assurance at 4 your basic salary to a spouse, family member or other nominated person. Competitive compensation package. Paid leave for maternity, paternity, adoption & fertility. Travel Loans, Bike to Work scheme, Rental Deposit Loan. Charitable contributions through Payroll Giving and donation matching. Access deals and discounts on travel, electronics, fashion, gym memberships, cinema discounts and more. Hybrid working with a minimum of 2 days in the office. Equal Opportunity Employer As an Equal Opportunity Employer, Rightmove will never discriminate based on age, disability, sex, race, religion or belief, gender reassignment, marriage/civil partnership, pregnancy/maternity or sexual orientation. At Rightmove, we believe that a diverse and inclusive workforce leads to better innovation, productivity, and overall success. We are committed to creating a welcoming and inclusive environment for all employees, regardless of their background or identity, to develop and promote a diverse culture that reflects the communities we serve.

As one of the Best Big Companies to Work For, we have a rich history of loving our customers and looking after our teams. We understand that success is achieved through our people, and we are searching for an experienced and proactive Information Governance Analyst to join our Cyber Security team. The successful candidate will report to the Cyber Governance, Risk, and Compliance (GRC) Manager and will play a key role in ensuring the effective governance of Iceland's information assets. This includes information retention, identification, categorisation, applying appropriate security controls, and monitoring compliance with policies and standards. The primary tool for this role will be Microsoft Purview, so experience with this platform is essential. You will work closely with stakeholders across the business to ensure that information is managed securely and in line with regulatory and organisational requirements. This role is based in our Deeside head office, with a minimum of 2 days per week spent working from here. Specific skills and capabilities we are looking for: Essential Strong understanding of information governance principles, including retention, classification, and security. Demonstrable skills in all aspects of Microsoft Purview. Ability to write and maintain documentation and reports. Excellent attention to detail and organisational skills. Strong interpersonal and communication skills. Desirable Familiarity with data protection regulations. Experience in implementing information governance policies and procedures. Ability to work collaboratively with technical and non-technical teams. Certifications such as CIPM, CIPP/E, or similar information governance credentials. What to expect from us: 15% discount in Iceland stores 30% discount at Club Individual Restaurants 33 days holiday (including bank holidays) Free onsite parking Onsite electric car charging ports Subsidised staff restaurant and Costa Coffee Christmas vouchers Refer a Friend Scheme Christmas Savings scheme Discounted dry cleaning Long service awards

At Jacobs, we're challenging today to reinvent tomorrow by solving the world's most critical problems for thriving cities, resilient environments, mission critical outcomes, operational advancement, scientific discovery and cutting edge manufacturing, turning abstract ideas into realities that transform the world for good. Your impact: As a highly experienced Cyber professional, you'll operate across the full lifecycle of IT security engineering - shaping strategy, defining solutions, and rolling up your sleeves to deliver them, being both hands on & a trusted advisor, blending theory, governance, threat hunting and practical delivery into one. To support our success and growth a number of new roles have been created throughout the UK. From early design through to live operations, you'll lead and influence security decisions that matter, with a remit that will include: Responsibilities Design, integration, and security testing of cybersecurity solutions, response, recovery & vulnerability plans. Act as design authority for secure system lifecycles, access control, authentication, encryption, backup, disaster recovery, and incident response. Develop cybersecurity assessment methodologies, identifying security requirements for auditing, monitoring and compliance. Develop and implement robust security risk management processes in collaboration with clients and regulatory authorities. Conduct security reviews, threat & technical assessment, audits and gap analysis. Contribute subject matter expert input to business development activities, proposals etc. Maintain up to date knowledge of relevant IT security standards, regulations, and emerging threats. Qualifications Demonstrable experience in IT cybersecurity ideally within CNI or industrial/operational environments. Strong understanding of IT technologies used across CNI sectors (servers, container services, networking, cloud, hosting, storage and security appliances). Experience with security engineering technologies (endpoint protection, firewalls, IPS, API). Understanding of cybersecurity, I.T security services provided in enterprise & their inter relationships (security architecture, GRC, SOC, analyst & forensic services). Understanding of cloud edge connectivity and security, including security baseline considerations for hybrid & multi cloud environments. Familiar with implementing and working with standards and frameworks (IEC 62443, NIST CSF, ISO 27000 series, MITRE ATT&CK, GDPR, NCSC CAF and NIS/NIS2 regulations). Ability to explain threat based and risk informed security considerations in clear business terms. NM1 As a disability confident employer, we will interview disabled candidates who best meet the criteria. We welcome applications from candidates who are seeking flexible working and from those who may not meet all the listed requirements for a role.

LOA Program Analyst Country/Region: GB Connect with Eutelsat Be part of a new era in communications, transforming connectivity with Eutelsat - the world's first GEO-LEO integrated global satellite operator. As a leader in satellite communications, we provide global connectivity solutions - connecting businesses, communities, and governments around the world. We can connect you at on land, at sea and in the air. We also deliver broadcast television channels and packages, transmitting vital news reports around the world. With Eutelsat You'll Get To: Pioneer the future of Space Technology Bring connectivity to remote frontiers Collaborate with customer-centric experts Embrace cultural diversity in our global team In a dynamic industry where passion drives our teams to make a difference to become the most trusted partner for global satellite connectivity, you will elevate your skills in a stretching, rewarding, and meaningful environment. At Eutelsat, we're united by inclusion and diversity, striving for gender balance and social responsibility, on Earth and in Space. Why Eutelsat ? Commitment to Diversity & Inclusion: With colleagues from over 75 countries, we embrace our global DNA and are committed to creating an inclusive workplace. We are proud that one-third of our executive team and 60% of our board are represented by women. Ways of Working That Drive Us: As "One Team," we work collaboratively towards shared goals, with customer-centricity, respect, and inclusivity as our guiding principles. Sustainability at Our Core: At Eutelsat, sustainability is more than just a word; it's woven into our strategy. We're dedicated to balancing social, environmental, and economic growth - both on Earth and in space. Work-Life Balance: We offer flexible schedules and hybrid work options to help you balance your personal and professional life. At Eutelsat, we are committed to supporting your well being and ensuring you have the flexibility you need to succeed both at work and at home. Ready to grow with us? Apply today and help us build a more inclusive, sustainable future in the world of satellite technology Who You Are: The Letter of Agreement (LOA) with the United States Government is a critical security compliance program for Eutelsat. The LOA Program Analyst is the program's data steward and front-door triage. They manage intake and routing of submissions, requests, and communications (e.g., evidence uploads, change/exception forms, incident/lawful-process notices, vendor documents), perform initial quality checks (completeness, correctness, linkage to Control ID and LOA Clause ID), and triage items to the right owners against SLAs-acknowledging receipt, tracking status, and closing the loop with clear updates. They maintain authoritative program registers (obligations, risk, POA&M, case, change, asset/vendor, data flows, etc), enforce data-quality rules, and ensure evidence is captured as work is done and is discoverable for audits, exercises, and management review. Operationally, the analyst builds and automates dashboards and reports for Program and Executive Steering Committees (KPIs/KRIs, clause coverage, audit/incident heatmaps, POA&M burn-down), preserves traceability of artifacts and flags anomalies or control-health issues for escalation to the LOA PM, Security Officer and Control Owners. The LOA Program Analyst standardize intake forms and comms templates, manage queues (service desk/GRC tools), coordinate with Domain Owners, Legal/LEPOC, and SCRM on data needs, and support evidence packages for reports, audits, authorizations and re-authorizations- keeping the program's information flow timely, accurate, and decision-ready. What You'll Do: Conducts day-to-day data processing activities for the LOA (Intake and Update) Maintains all data repositories and updates as actions or compliance submissions occur Maintains Bodies of Evidence (BoE) of assurance activities mapping artifacts to clauses in repositories and maintaining registers for accuracy as changes occur Provide evidence, artifacts and audit packs to LOA Security Officer and audit teams Support generation of reports and briefing material About you: At least 6-10 years' experience in a diverse portfolio of projects and analytics Strong interpersonal skills and ability to manage cross-functional internal stakeholders Strong analytical skills and high proficiency in PMO tools, MS Excel, Confluence, JIRA, Power BI, MS SharePoint Ability to analyze large volumes of data and present this in a clear and concise manner Exposure to Security and compliance programs Experience in Space Tech/ Satellite Telecom/ IT/ Telecommunication infrastructure or operator areas (desired) Educational background: Engineering/ Business management/ Economics/ Finance/ MBA Professional qualification: PMP/ Prince2/ NIS2/ ISO 27001 (desired but not essential) Location:London, UK. Eutelsat treats the protection of personal data submitted to it seriously. By submitting this application, you agree to the collection and retention of your personal data by Eutelsat and acknowledge notice of, and understand the terms of Eutelsat's Privacy Policy (as amended from time to time). This role is a Eutelsat job opening; all of our open roles are posted on the current OneWeb and Eutelsat websites. Please note that when you are applying, your application may be seen by both teams.

JD Group Plc is looking for a GRC Analyst in Bury St Edmunds to ensure effective testing of IT General Controls and cybersecurity effectiveness. The role involves working with various teams to identify control gaps, support audits, and develop assurance reports. Ideal candidates will have 2-5 years of experience in controls testing or IT audit, alongside relevant certifications and a solid understanding of cybersecurity controls. A competitive benefits package, including staff discounts, is offered.

Overview At Solus, we are strengthening our technology governance and cyber resilience as we continue to grow. We are looking for an IT Governance, Risk and Compliance (GRC) Analyst to help us maintain a secure, well governed and compliant technology environment across the business. This is a great role for someone who enjoys analysing detail, challenging constructively, influencing stakeholders and helping teams make confident, risk based decisions. About the role As our IT GRC Analyst, you will support the Cyber Security, Risk and Assurance function with a mixture of governance activity, assurance reviews, supplier assessments and compliance oversight. You will help us meet Aviva Group requirements, regulatory expectations and industry standards while ensuring our technology risks are understood and well managed. Location: Hybrid (Stansted - 3 days per week, 2 days remote) Responsibilities Maintain and improve our IT risk register, ensuring risks are clear, evidenced and tracked Support risk owners with guidance on controls, remediation and governance requirements Complete compliance reviews, control testing and assurance activities Produce risk and compliance reporting for leadership forums Carry out supplier assurance assessments, recommend improvements and elevate risk where needed Keep IT policies and standards up to date and aligned with Aviva and recognised frameworks Provide clear insight to non technical colleagues on risk, controls and potential impacts Support Group assurance activity and represent Solus in relevant forums This is an individual contributor role with a high level of ownership and plenty of opportunity to influence how we operate. Qualifications You will thrive in this role if you have: Knowledge of GRC frameworks such as ISO 27001, NIST CSF, Cyber Essentials or DPA Experience in risk management, governance or cyber/security assurance The ability to analyse complex information and turn it into clear, meaningful insight Confidence challenging and advising colleagues at all levels Strong communication and stakeholder management skills Certifications such as CISM, CRISC or CGRC are desirable but not essential. Who are Solus? Solus, who are owned by Aviva, are one of the UK leaders in vehicle repairs, returning cars to the road in just 11 days on average and a 4.6/5 star customer rating. With an award winning apprenticeship programme and winners of other recognised industry awards Solus are proud to be shaping the future of vehicle repair. Why Join Solus? We have so much to offer when it comes to being a Solus colleague: Competitive salary based on location, skills, experience, and qualifications. Bonus opportunity tied to your performance and the overall success of Solus. Company pension scheme with employer contributions. 33 days' holiday (including bank holidays), with the option to buy or sell up to 5 days. Save money with up to 40% discount on Aviva products and other retailer discounts. Share in Aviva's success through the Aviva Save As You Earn scheme. Supportive policies including parental and carer's leave. Wellbeing focus with tools like Group Income Protection and 24/7 GP access. At Solus, we value inclusivity and welcome all applicants. If you're excited but don't tick every box, we encourage you to apply-your unique skills might be just what we need. We guarantee an interview for disabled applicants meeting the minimum criteria-just email us after applying to let us know. Ready to join us? Apply online today, and our team will be in touch within 14 days.

GRC Analyst - Controls Testing & Assurance JD Sports- Head Office, Warwick House, Bury, United Kingdom Job Description Posted Friday 1 May 2026 at 00:00 Established in 1981 with a single store in the Northwest of England, the JD Group is a leading omni-channel retailer of Sports Fashion, Outdoors and Gyms with our colleagues working in stores across several retail fascias in many markets around the world. JD Sports Fashion Plc was listed on the London Stock Exchange in 1996 and has been a FTSE100 publicly quoted company since 2019 and continues to grow in the UK and internationally. We want to be the leading global omnichannel retailer in the sports and outdoor industry. To be a part of this successful company and help us to achieve this you will have the desire to ingrain our strategic goals of being a people led, innovative and customer focused organisation which provides operational excellence whilst identifying new areas of growth as part of our day to day objectives. Role Purpose The GRC Analyst will sit within the second line of defence and is responsible for testing and assessing the design and operating effectiveness of IT General Controls (ITGCs) and cybersecurity controls across JD Sports. The role is focused on executing control testing, evaluating evidence, identifying control gaps and supporting audit readiness. The GRC Analyst will work closely with Technology, Internal Controls and Audit teams to ensure that the JD Sports control environment meets regulatory audit and internal risk management and control requirements. This is a technically focused GRC role requiring a strong understanding of ITGC and cybersecurity frameworks, audit methodologies and enterprise IT environments. The successful candidate will be instrumental in supporting external audit readiness, identifying control gaps and driving remediation activity across JD Sports. Key Responsibilities Control Testing & Assurance Plan, execute and document risk based testing of IT General Controls and cybersecurity controls across key domains including identity and access management, change management, computer operations and third party risk. Assess controls for design adequacy and operating effectiveness in line with recognised frameworks such as COBIT, SOX ITGC, ISO 27001 and NIST. Collect, review and evaluate control evidence, applying professional scepticism and audit rigour. Identify control deficiencies and gaps, articulating root causes, risk impact and recommended remediation actions. Maintain accurate and complete working papers and test documentation. Control Framework & Oversight Support the development and maintenance of the Technology Controls Framework and ITGC and cybersecurity control library, ensuring controls remain aligned to risk appetite and evolving business requirements. Monitor and track control remediation activity, escalating overdue or high risk items to senior stakeholders in a timely manner. Operate and provide input into Control Self Assessment (CSA) processes, contributing ITGC specific insight to the broader enterprise risk framework. Audit Support & Stakeholder Management Support the GRC Controls Lead with internal and external auditors during IT audit cycles, coordinating evidence requests, facilitating walkthrough and managing the audit relationship professionally. Support preparation for inspections and audits, ensuring documentation and evidence packs are accurate, complete and audit ready. Build effective working relationships and support cross functional collaboration with other teams and functions such as Technology, Internal Controls, Internal Audit, Enterprise Risk, Legal and Procurement. Issue Management & Reporting Support in the development of clear and concise testing reports and exception summaries for consumption by technical and non technical audiences, including senior management and board level committees. Maintain GRC tooling, dashboards and metrics relating to ITGC and cybersecurity control coverage, testing progress, deficiency status and remediation timelines. Present findings and recommendations with clarity and confidence, supporting informed risk based decision making. Identify opportunities to improve the efficiency and effectiveness of the ITGC testing programme, including automation, tooling and methodology enhancements. Support enhancements of GRC policies, standards and procedures relating to technology risk and control. Stay current with changes to relevant regulatory requirements, audit standards and industry best practice. Skills & Experience 2-5 years of demonstrable experience in controls testing, IT audit, or GRC function within a fast paced and complex organisation. Strong understanding of IT General Controls domains such as identity and access management, change management, computer operations, programme development and third party risk. High level and working knowledge of cybersecurity control domains such as vulnerability management, incident response, logging and monitoring, data protection and encryption, cloud security and network security. Ability to assess both control design and operating effectiveness. Experience collecting, evaluating and challenging control evidence. Ability to identify control weaknesses, articulate risk impact and develop actionable remediation recommendations. Strong written and verbal communication skills, with the ability to produce clear and concise audit and assurance reports. Organised and methodical approach to workload management, with the ability to manage multiple priorities and deadlines. Relevant professional certifications such as CISA, CRISC, CISSP or equivalent. Familiarity with audit frameworks and standards including COBIT, SOX ITGC, ISO 27001 and NIST. Experience in a retail, e commerce or large global enterprise environments, supporting Big 4/external audit or internal audit engagements in an ICFR / SOX / IT control capacity. Familiarity with GRC tooling platforms such as AuditBoard or similar. Independence and objectivity: Operates with integrity and professional scepticism, providing impartial assurance regardless of organisational pressure. Analytical thinking: Applies a structured, evidence based approach testing. Stakeholder engagement: Builds credible and effective working relationships with first line teams, auditors and senior stakeholders. Attention to detail: Maintains a high standard of accuracy in testing documentation, evidence review and reporting. Continuous improvement: Seeks opportunities to improve processes and outcomes. Benefits Staff discount on JD Group and other brands; personal development opportunities. JD Sports- Head Office, Warwick House, Bury, United Kingdom

A leading vehicle repair service provider in England is seeking an IT Governance, Risk and Compliance (GRC) Analyst. This role involves maintaining IT risk governance, conducting compliance reviews, and supporting risk owners. The ideal candidate has experience in GRC frameworks, strong analytical skills, and effective communication. This position offers a hybrid working environment, competitive salary, and an inclusive culture that values diverse applications. Ready to join us? Apply today!