IT Risk Analyst (IT Security Controls) - Permanent

The Information Security Consultant plays a key role in managing information security risks across the organisation and ensuring security requirements are effectively implemented across internal and third-party services. Key Responsibilities Act as the primary contact for information security matters related to service delivery, working closely with business units, customers, partners, and governance teams. Design, implement, and oversee administrative, technical, and operational security controls across infrastructure, applications, cloud environments, and third-party services. Coordinate and monitor security risks with risk owners, facilitating regular reviews and mitigation activities. Monitor and evaluate the effectiveness of IT security controls through regular control assessments, audits, testing activities, and compliance reviews. Ensure security controls comply with internal policies, regulatory obligations, and industry standards such as ISO 27001, COBIT, and related framework...