CrawlJobs Logo
Capsticks Solicitors LLP Logo Capsticks Solicitors LLP · Legal

Governance & Risk Analyst

United Kingdom, Birmingham · Job Posted December 07, 2025
Apply Position
Job Link Share

Job Description

This is a hands-on role as a member of the busy Governance and Risk (G&R) team who are responsible for the development and maintenance of effective risk management and compliance standards at Capsticks. The primary focus of this role will be responding to routine queries and assisting with long term strategic projects within the Division. The Analyst will also assist the Operations Team to ensure compliance with the regulatory requirements of the Solicitors Regulation Authority and ICO and for dealing with data protection, subject access and other requests under the legislation and information security principles.

Job Responsibility

  • Managing the life cycle of compliance queries and notifications, such as information security incidents, data breaches, and other queries received by G&R, including SRA conduct queries
  • Assisting with the review of CDD and AML queries, running verification checks and assisting with the collation of documentation
  • Reviewing and triaging conflict queries
  • Assisting with the management of information barriers within the case management system
  • Assisting with subject access and data deletion requests
  • Assisting with organising and delivering compliance training across the firm
  • Assisting with preparing reports and papers for various committees
  • Assisting with the organisation of external audits and taking part in these as and when required
  • Carrying out planned internal audits (training will be given) for the firm’s accreditations and monitor the completion of corrective actions
  • Attend legal divisional meetings to report on governance and risk issues
  • Work with our divisional compliance champions to gain an understanding of the work of the legal and business service divisions and promote good governance & risk management
  • Assist with drafting new and updating current policies and procedures
  • Suggest, log and monitor improvements
  • Undertake horizon scanning for any new developments in the legal risk and compliance sphere
  • Creating and circulating compliance alerts and updates
  • Assisting with firmwide and team projects

Requirements

  • Educated to degree standard or equivalent
  • Previous hands-on experience of working in a compliance team in a law firm
  • Knowledge of the requirements of the SRA Handbook, SRA Code of Conduct and AML Regulations
  • A keen interest and a strong understanding of current compliance issues
  • The ability to work calmly under pressure, juggle deadlines and manage the expectations of internal clients
  • Advanced skills in Microsoft Excel (including use of formulae and pivot tables) and data manipulation
  • An effective communicator who is adept at building relationships across the firm
  • A willingness to learn about new subject areas and new skills
  • Demonstrable experience of working in a team
  • Commitment to meeting consistently high standards whilst ensuring attention to detail
  • A self-motivated proactive approach and the ability to manage your own workload
  • A willingness to share ideas and suggest improvements

What we offer

Competitive Salary & Benefits

Capsticks Solicitors LLP - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Governance & Risk Analyst

8 matching positions

Governance & Risk Analyst

This is a hands-on role as a member of the busy Governance and Risk (G&R) team w...
Location
Location
United Kingdom , Birmingham; Exeter; Leeds; London; Manchester; Winchester
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Educated to degree standard or equivalent
  • Previous hands-on experience of working in a compliance team in a law firm
  • Knowledge of the requirements of the SRA Handbook, SRA Code of Conduct and AML Regulations
  • A keen interest and a strong understanding of current compliance issues
  • The ability to work calmly under pressure, juggle deadlines and manage the expectations of internal clients
  • Advanced skills in Microsoft Excel (including use of formulae and pivot tables) and data manipulation
  • An effective communicator who is adept at building relationships across the firm
  • A willingness to learn about new subject areas and new skills
  • Demonstrable experience of working in a team
  • Commitment to meeting consistently high standards whilst ensuring attention to detail
Job Responsibility
Job Responsibility
  • Managing the life cycle of compliance queries and notifications, such as information security incidents, data breaches, and other queries received by G&R, including SRA conduct queries
  • Assisting with the review of CDD and AML queries, running verification checks and assisting with the collation of documentation
  • Reviewing and triaging conflict queries
  • Assisting with the management of information barriers within the case management system
  • Assisting with subject access and data deletion requests
  • Assisting with organising and delivering compliance training across the firm
  • Assisting with preparing reports and papers for various committees
  • Assisting with the organisation of external audits and taking part in these as and when required
  • Carrying out planned internal audits (training will be given) for the firm’s accreditations and monitor the completion of corrective actions
  • Attend legal divisional meetings to report on governance and risk issues
Read More
Arrow Right

Senior Governance, Risk and Compliance Analyst - Governance

Come join the company that is reinventing cloud security and empowering business...
Location
Location
Netherlands
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in one or more of the Governance, Risk, and Compliance domains
  • Passion for security and keeping Wiz safe
  • Ability to collaborate with technical and non-technical teams alike to further oversight responsibilities of Security
  • Deep knowledge of one or more industry frameworks such as ISO 27001, ISO 27017, SOC 2, PCI DSS, NIST CSF, etc. and baseline knowledge of others
  • Ability to assist with security compliance assessments to ensure compliance with internal and external requirements (ISO, NIST, CIS, etc.)
  • Experience working in a fast-paced tech environment both independently, and collaboratively within a team environment
  • Ability to build strong relationships across teams and functions in a global workplace
  • Applicants must have the legal right to work in the country where the position is based, without the need for visa sponsorship
Job Responsibility
Job Responsibility
  • Design and update policies, procedures, and controls to drive confidentiality, integrity, and availability across the Wiz environment
  • Continuously improve processes, tools, and procedures for audit and compliance management
  • Collaborate and work cross-functionally across the company to address governance and compliance needs and to support the Wiz Control Framework, partnering with Engineering, Product, Sales, Legal, HR, and other teams
  • Proactively improvement control design and performance to address a changing risk landscape
  • Deliver timely audits through working with internal and external auditors
  • Help customer-facing teams respond to information security requirements and questionnaires
  • Assist with third party risk management reviews, assessing vendor’s security, compliance, and privacy posture
  • Participate in team project management, including documentation, project planning, task management, and prioritization
  • Participate in recurring annual core audits (e.g., SOC 2, ISO, PCI)
  • Maintain awareness of security and regulatory trends, perform research and analysis on new certifications, and help Wiz pursue new international compliance initiatives
Read More
Arrow Right

Governance Risk and Compliance Risk Register Analyst

You will design and operationalise the governance layer around an enterprise ris...
Location
Location
United States , Remote
Salary
Salary:
70.00 - 80.00 USD / Hour
signifytechnology.com Logo
Signify Technology
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years designing enterprise risk registers and the frameworks around them
  • 8+ years building risk scoring and prioritisation models — likelihood and impact scales, scoring methodology, prioritisation logic
  • 8+ years designing and running governance processes and workflows
  • 8+ years leading stakeholder engagement and enablement across security, technology, and business
  • Demonstrated track record producing audit-ready documentation and handing over to internal teams
Job Responsibility
Job Responsibility
  • Define the end-to-end governance flow — how risks get raised, reviewed, accepted, mitigated, transferred, and reassessed over time
  • Set the accountability structure — who owns risks, who reviews them, which governance bodies hold which decisions
  • Build the escalation and reporting paths for high-risk and formally accepted items
  • Partner with stakeholders across business, technology, security, and governance functions to validate the framework in practice
  • Run working sessions to walk stakeholders through the register and the governance model
  • Help load the initial set of risks into the register
  • Produce audit-ready documentation covering register structure, scoring methodology, governance workflows, and decision rights
  • Run a structured knowledge transfer to the internal security team so the programme continues after the contract ends
  • Fulltime
Read More
Arrow Right

Governance, Operational & Risk Management Analyst

The Cross-disciplinary Controls Lead Analyst (C13) will play a pivotal role in s...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6-10 years of experience in the financial services industry, with a focus on governance, regulatory affairs, operational oversight, or similar functions
  • Experience in the US marketing sector is a plus
  • Knowledge of risk and control metrics, including gathering, reporting, trend analysis, creation, and metrics
  • Ability to identify operational gaps and problems, generate solutions and choose appropriate alternatives using basic root cause analysis
  • Manage risk and control initiatives by assessing requirements changes, determining and conveying impact and risk
  • Proven experience in control related functions in the financial industry
  • Strong analytical skills to evaluate complex risk and control activities and processes
  • Strong oral and written communication skills, with ability to synthesize complex concepts, and influence change
  • Proficient in Microsoft Office Suite
  • Bachelor's/University degree, Master's degree preferred
Job Responsibility
Job Responsibility
  • Guide sponsors through externally owned change governance processes (e.g., PBNAC) for new activities
  • Facilitate risk and controls governance and management meeting routines (e.g., Operational Risk Forums, Controls Forums)
  • Manage and oversee activities related to key policy documents, such as Desktop Manual
  • Manage the end-to-end Personal Trading and Investment Policy (PTIP), partnering with HR, Legal, and Risk to ensure comprehensive training, oversight, and compliance across employees, preventing insider trading and conflicts of interest
  • Support ad-hoc risk and control initiatives and projects, demonstrating flexibility and responsiveness to evolving organizational needs
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standards
  • Fulltime
Read More
Arrow Right

Security Governance Risk & Compliance (GRC) Analyst

Here at Virtru you’ll help build a cutting edge security compliance program alig...
Location
Location
United States , Washington, DC
Salary
Salary:
130000.00 - 180000.00 USD / Year
virtru.com Logo
Virtru
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of information security, IT audit and/or IT Risk Management, or GRC Analyst/Engineer experience
  • Deep understanding of at least few of the following: CMMC, NIST 800-53 & 800-171, FedRAMP, SOC 2, PCI, and/or other global privacy compliance frameworks
  • Technical acumen. Strong understanding of modern cloud technologies (AWS, GCP, Azure, etc.) and familiarity with GRC tools (Hyperproof, Vanta, Drata, etc) and SIEM tools (Datadog, Splunk)
  • You’re a relationship builder and have worked with both business and technical risk and understand how to translate risk to various levels of the organization
  • Have experience training and coaching teams to become better security and privacy practitioners
  • Like working on an autonomous agile team
  • Ability to resolve conflicts and drive issues to completion
  • Work independently with little or no supervision while maintaining a high level of efficiency
  • Hands on experience deploying and managing vulnerability scanning/cloud security posture management tools (Wiz, Prismacloud, etc.) to meet security compliance requirements
  • Real-world IR experience participating on security On-Call teams
Job Responsibility
Job Responsibility
  • Manage and implement complex controls frameworks for large systems, consisting of Cloud infrastructure and Software as a Service (SaaS) services (GCP, AWS, GitHub, Okta, etc)
  • Design and develop automation solutions for evidence collection across Cloud infrastructure, endpoints, and SaaS services
  • Conduct risk assessments across business units and processes. Identify risk findings and recommend remediation and risk mitigation strategies
  • Assist or implement automated controls to support risk mitigation efforts across various business units with stakeholders
  • Incorporate CMMC certification into Virtru’s slate of compliance assessments and ongoing monitoring activities (FedRAMP, SOC 2, PCI)
  • Facilitate the third-party vendor on-boarding and annual review process by evaluating the security of current and prospective partners
  • Participate in incident response (IR) activities, providing risk analysis and remediation support as needed
  • Enhance the team with your individualism, spirit, and love of learning
What we offer
What we offer
  • A Flexible PTO policy
  • A $1,500 annual Learning & Development Stipend
  • Frequent company-sponsored team celebrations
  • Access to an Employee Assistance Program
  • Access to Headspace, a mental health app
  • A flat 3% contribution to your retirement account
  • A high degree of flexibility
  • Competitive compensation
  • Generous parental, medical, and bereavement policies
  • 401K contribution and stock options
  • Fulltime
Read More
Arrow Right

Governance, risk and compliance technical analyst intern

This is a 10 week internship program that runs from May 27th, 2026 to August 7th...
Location
Location
United States , San Diego; San Francisco
Salary
Salary:
35.00 USD / Hour
gofundme.com Logo
GoFundMe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Confidently maintain clear and concise communication with colleagues while working in a remote or hybrid environment
  • Inquisitive with a solution-oriented mindset
  • Demonstrate excellent analytical, problem-solving, time-management, and multitasking abilities
  • Passionate about staying current on regulatory changes, industry guidance, and card scheme compliance
Job Responsibility
Job Responsibility
  • Coordinate external auditor requests and facilitate meetings with Information Technology, Engineering Teams, Security and Control Owners
  • Build trust center tiles to communicate internal controls to customers and regulatory bodies
  • Assist in evidence collection for IT control reviews, infrastructure, change management and product releases
  • Assist in building communication portfolios, customer journeys and feedback forms for all audit stakeholders to ensure consistency in reaching audit goals, and note potential opportunities, risks, or complications
What we offer
What we offer
  • Competitive pay and comprehensive healthcare benefits
  • Financial assistance for things like hybrid work, family planning
  • Generous parental leave
  • Flexible time-off policies
  • Mental health and wellness resources
  • Learning, development, and recognition programs
  • Fulltime
Read More
Arrow Right

Governance, Operational & Risk Management Control Reporting Analyst

The Cross-disciplinary Controls Lead Analyst (C13) will play a pivotal role in s...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6-10 years of experience in the financial services industry, with a focus on governance, regulatory affairs, operational oversight, or similar functions
  • Ability to identify, measure, and manage key risks and controls
  • Strong knowledge in the development and execution for controls
  • Proven experience in control related functions in the financial industry
  • Proven experience in implementing sustainable solutions and improving processes
  • Strong analytical skills to evaluate complex risk and control activities and processes
  • Strong problem-solving and decision-making skills
  • Strong oral and written communication skills, with ability to synthesize complex concepts, and influence change
  • Proficient in Microsoft Office Suite
  • Bachelor's/University degree, Master's degree preferred
Job Responsibility
Job Responsibility
  • Develop and manage comprehensive risk and control reports for the Business Controls team, delivering insightful analysis to relevant Executive heads and Leadership Teams
  • Maintain a detailed Risk and Controls Narrative by gathering and interpreting quantitative and qualitative data from various control forums (e.g., Operational Risk Forums, Bi-Weekly Control meetings)
  • Prepare insightful reporting with actionable recommendations to facilitate effective management review and decision-making
  • Support Risk & Control Management Information Systems (MIS) and reporting routines for MGE, including the production of Scorecard Actuals/Pro-forma and Key Performance Indicators (KPIs)
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standards
  • Fulltime
Read More
Arrow Right

Lead Analyst, Business Continuity & Disaster Recovery (Governance, Risk and Compliance)

Own and drive Burlington’s enterprise Business Continuity and Disaster Recovery ...
Location
Location
United States , Edgewater Park
Salary
Salary:
95000.00 - 150000.00 USD / Year
Burlington
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field
  • 7+ years of experience in Business Continuity and Disaster Recovery (BCDR)
  • Experience supporting or governing an enterprise-scale BCDR program
  • Strong experience with BIA, RTO/RPO definition, and application tiering
  • Experience leading disaster recovery testing (tabletop and failover)
  • Experience working across business, infrastructure, and application teams
  • Experience in hybrid (on-prem and cloud) environments
  • Experience with BCDR/GRC tools (e.g., SharePoint, Power Automate, ServiceNow, Archer)
  • Experience developing executive-level reporting and communicating risk and resilience topics to leadership
Job Responsibility
Job Responsibility
  • Lead enterprise-wide BIA to identify and prioritize critical business processes
  • Define recovery priorities and RTO/RPO targets based on operational and financial impact
  • Maintain enterprise application inventory and ensure alignment with BCDR scope
  • Define and enforce application tiering, including required RTO, RPO, and testing expectations
  • Assess and tier new applications as part of onboarding and change processes
  • Define and enforce BCDR standards, templates, and requirements for Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs)
  • Guide business and IT teams in developing and maintaining their plans
  • Review plans for completeness, accuracy, and executability
  • Provide input on disaster recovery design (e.g., failover approaches, redundancy, dependencies) to ensure alignment with recovery requirements
  • Validate through testing that recovery capabilities meet defined RTO/RPO targets
What we offer
What we offer
  • Competitive wages
  • Flexible hours
  • Associate discount
  • Medical, dental and vision coverage including life and disability insurance
  • Paid time off
  • Paid holidays
  • 401(k) plan
  • Training and development opportunities
  • Fulltime
Read More
Arrow Right