Job Details

Job ID
Job Title
IT Risk & Control Analyst
Position Type
Business Brand
PFG Corporate Services
PF Shared Services
Bradford / London / Chatham
Up to £38,200 dependent on location +Bonus +Benefits
About Us
About Us

PFG is a leading specialist bank for the millions of people in the UK who are not well served by mainstream lenders. As a business, our purpose is to help put people on a path to a better everyday life with our clear and responsible approach to lending; an approach built on over 141 years of experience.

PFG is a unified group made up of three brands: Vanquis (cards and loans), Moneybarn (vehicle finance) and Sunflower (loans). While they all offer different products and services, they each share the common purpose and customer-centric values at the heart of our group. We understand our customers are real people with real and varied life experiences, so everything we do from our products to our customer experience is designed with this in mind.
About the Role
About the Role

The routine management of 1st Line IT Risk and the utilisation of an effectively designed and operated IT Control Environment are key to ensuring the successful implementation of IT Strategy and the achievement of business goals. In this role you will manage first line IT risk and assess the effectiveness of IT controls across the organisation. In doing this, you will act as an agent for change working with the IT Risk & Control Lead and stakeholders across IT to improve the maturity of the Process, Risk & Control (FLPRC) Framework.

This role can be based in our Bradford, Petersfield or Chatham offices. We also offer hybrid working in this role and would like for you to attend the office 1-2 days per week.

Key Responsibilities
  • Ensure IT controls are effectively designed and operated.
  • Ensure first line IT risks are identified, assessed, measured and monitored.
  • Ensure that IT risk posture is understood and managed within appetite.
  • Support stakeholders performing routine Risk Control Self-Assessments (RCSAs)
  • Support IT Risk & control finding and action mitigation
  • Provide specialist advice through the analysis and evaluation of information to drive continuous improvement
  • Validate and interpret complex risk, process and control data to confirm the factual accuracy of findings
  • Conduct extensive research to validate decisions on approach and alignment with expected regulation and industry good practice.
  • Produce a range of IT GRC KPIs, KRIs and metrics.
  • Translate complex data and activities into documentation understandable by none technical stakeholders
  • Produce monthly Risk, Control & Performance management reports to support leadership decision making.
Skills and Experience
About You

We would like you to have skills and experience in some of the following:

  • Recent IT Governance, Risk and Control experience in the finance sector
  • Experience of risk mitigation methodologies and management
  • Sound understanding of COBIT and other related industry standards, frameworks and improvement methodology’s (NIST, ISO, CMMi, Lean etc)
  • Analytical thinking with ability to interpret MI/BI and use it for sound decision making
  • Converting complex data into understandable concepts including process definition, improvement and implementation
  • Excellent communication skills (written and verbal) with the ability to influence, negotiate and constructively challenge
  • PC Literacy to include management level MS Office Word, Excel, Power Point
  • In-depth understanding of IT Governance, Frameworks, Standards & Regulations (COBIT, ISO, ITIL, NIST)
  • Broad and comprehensive knowledge of framework implementation, including MI reporting that supports IT leadership decision making within the financial services sector
  • A solid working knowledge of all IT Processes, Capabilities & Risks across the Enterprise IT Domain
  • Demonstrate knowledge of process, risk & control assessment, optimisation and automation techniques to improve FLPRC Framework design & operational effectiveness.

Essential Qualifications
  • Relevant IT GRC, improvement and or quality Qualification e.g. COBIT, CGEIT, CRISC, CISA Lean

Desirable Qualifications
  • Lean 6 sigma
  • ITIL
  • Prince2
  • CRISC, CISA, CISM qualification and certification.

The Benefits

The satisfaction of working for a successful and ethical business who are here to help people is a big benefit of joining us, but it is not the only one. We will invest in your development, giving you the support and training to become better and better at your job. We take the work/life balance seriously, with plenty of flexible working options. Working in a bright and refreshingly relaxed environment, you will find your opinions are valued and listened to.

On top of all this, we will give you a package including:
  • Competitive base salary and rewards
  • Discretionary bonus scheme
  • 25 days annual leave entitlement (increasing with length of service)
  • Pension Scheme
  • Extensive opportunities for personal and career development
  • Flexible and dynamic working policies

Inclusion & Diversity Statement

We know that by having a better, more inclusive culture and a diverse group of colleagues, we can support our customers and each other in the best way possible. We also believe this goes a long way to helping us live our purpose and defines why we are here in the first place: to help put people on a path to a better everyday life.

We are an equal opportunities employer and we want people to join us no matter how they identify, their sexual orientation, marital or civil partner status, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.

We want to attract and retain the best people. So, we make sure that, if people need it, they are given all the extra support and reasonable adjustments to take part in any part of our application or interview process. We have also got lots of colleagues who choose to work flexibly, so please feel free to talk to us about how you prefer to work at any time.

We think that if you can Be Yourself in the workplace, you will do your best work and enjoy being part of the team and as a business we get to benefit from that and to celebrate all the wonderful things that diversity brings.