IT Compliance AnalystSalary: £30,000 to £35,000Location: Birmingham

Keywords: Governance, Risk and Compliance, ISO 27001, Cyber Essentials Plus, Security Questionnaires, Audit Support, Data Protection, Security Governance, Team Collaboration, Process Improvement

An exciting opportunity has arisen for an IT Compliance Analyst to join a globally recognised business in Birmingham. You will play a pivotal role in ensuring the organisation's compliance with key security frameworks, supporting both internal and external audits, and collaborating closely with stakeholders across the business. If you are passionate about governance, risk, and compliance this role provides the perfect platform for your career progression.

• Benefit from ongoing training opportunities and exposure to industry-leading frameworks such as ISO 27001 and Cyber Essentials Plus, supporting your long-term career growth.

What you'll do:As an IT Compliance Analyst, you will be at the heart of the organisation's efforts to maintain robust governance, risk management, and compliance standards. Your day-to-day activities will involve managing client audit inboxes, responding promptly to information requests, completing detailed questionnaires, and ensuring all documentation is up-to-date.

You will work closely with colleagues across departments to gather necessary evidence for audits while supporting both ISO 27001 and Cyber Essentials Plus compliance initiatives. By contributing to policy development, tracking compliance metrics, and participating in training programmes, you will help embed a culture of security awareness throughout the business.

This role offers you the chance to expand your knowledge in governance, risk management, data protection, and information security within a dynamic international environment.

• Take ownership of completing and coordinating client security questionnaires and due diligence requests by gathering accurate information from relevant teams.
• Work collaboratively with internal stakeholders to collect evidence and ensure timely responses to client audit queries.
• Maintain an organised repository of standard responses and supporting documentation for efficient audit management.
• Support compliance efforts with ISO/IEC 27001:2022 and Cyber Essentials Plus frameworks by assisting in policy implementation and process monitoring.
• Assist in planning, evidence collation, and corrective action tracking during both internal and external audits.
• Contribute actively to the development, review, and maintenance of security policies and compliance procedures.
• Track key compliance metrics and risk indicators, providing regular reports to support decision-making processes.
• Participate in awareness campaigns and training initiatives designed to foster a culture of security consciousness throughout the organisation.

What you bring:To excel as an IT Compliance Analyst in this environment, you will bring proven experience from previous roles focused on compliance or risk within regulated sectors or organisations serving demanding clients. Your familiarity with leading frameworks such as ISO 27001 and Cyber Essentials Plus will enable you to navigate complex requirements efficiently.

Your keen interest in governance, risk management, data protection laws, and information security means that you are always looking for ways to enhance existing processes. A methodical approach ensures that documentation is meticulously maintained while your adaptability allows you to respond swiftly when priorities shift. Above all else, your commitment to professional integrity aligns perfectly with the values upheld by this global law firm.

• Experience working in a compliance or risk-related role within a regulated or client-facing environment is essential for success in this position.
• A solid understanding of ISO 27001 standards as well as Cyber Essentials Plus frameworks is required for effective performance.
• Proven experience responding to client security questionnaires or audit requests demonstrates your attention to detail and reliability.
• Familiarity with IT risk management principles along with data protection regulations ensures you can contribute meaningfully from day one.
• Basic knowledge of Security Operations services-including Anti-virus/EDR solutions, Vulnerability Management tools, and Email Security protocols-will be highly beneficial.

What's next:

If you are ready to take the next step in your career journey within governance, risk management, or compliance-this is your chance!

Apply today by clicking on the link below; we look forward to discovering how your unique skills can contribute towards our shared success.

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates