Top Benefits
About the role
Department: Finance
Location: London - Paddington
Description We are seeking a detail-oriented and highly organised ITGRC Analyst with circa 6 months to 2 years' experience to join our Risk & Compliance team. This role will play a critical part in maintaining our organisation’s compliance posture by supporting internal and external audits, managing responses to Service Organisation Control (SOC) questionnaires, and helping execute our internal audit plan.
As an ITGRC Analyst, you will collaborate closely with internal stakeholders, auditors, and external customers to ensure accurate, timely, and complete responses to control-related requests. You will also assist in gathering, validating, and organising audit evidence for various regulatory and contractual requirements, including SOC 1, SOC 2, ISO 27001, PCI DSS, and other compliance frameworks.
Key Responsibilities Audit & Assurance Support
- Serve as a primary point of contact for responding to customer and partner Service Organization Control (SOC) questionnaires , due diligence forms, and other security/compliance inquiries.
- Coordinate the collection, validation, and submission of audit evidence for internal and external audits, including but not limited to SOC 1/2, ISO 27001, PCI DSS, HIPAA, and NIST CSF.
- Track and manage audit deliverables, timelines, and status updates across multiple stakeholders.
Internal Audit Support
- Support the execution of the internal audit plan , including process walkthroughs, control testing, and documentation under the supervision of the Internal Audit team.
- Assist with drafting internal audit workpapers and findings in accordance with internal audit standards.
- Follow up on audit findings and help track remediation activities to closure.
Governance, Risk & Compliance (GRC)
- Maintain a centralised repository of evidence, risk assessments, and control documentation to support audit readiness.
- Contribute to the continuous improvement of internal controls, risk management processes, and audit procedures.
- Help update and maintain IT and compliance policies, procedures, and process documentation.
Skills, Knowledge & Expertise Qualifications & Experience
- Bachelor’s degree in information systems, Computer Science, Accounting, Finance, or a related field.
- 1-2 years of experience in IT compliance, IT audit, internal audit, or risk management .
- Familiarity with SOC 1, SOC 2, PCI DSS, ISO 27001 , NIST, or other common compliance frameworks.
- Experience responding to security questionnaires , RFIs, or customer due diligence assessments is strongly preferred.
- Exposure to internal controls testing and working with GRC tools is a plus.
Key Skills & Competencies
- Strong organisational skills with the ability to manage multiple requests and deadlines simultaneously.
- High attention to detail, particularly in gathering and validating audit evidence.
- Excellent written and verbal communication skills to interact with auditors, stakeholders, and external clients.
- Analytical thinker with the ability to interpret control requirements and assess supporting documentation.
- Strong collaboration skills with a proactive and flexible approach to problem-solving.
Desirable Certifications (not required but advantageous):
- CISA, CRISC, CISM, or equivalent IT audit/compliance certification
- ISO 27001 Lead Implementer/Auditor
- CompTIA Security+, or equivalent security certification
Job Benefits At Dye & Durham we strive to be visionaries! As a leader in our field, we ensure our employees are ready for the next challenge in their journey with us by offering internal and external training opportunities. We offer competitive salaries and a whole host of benefits including healthcare, pension, company discounts, wellness programs, and paid days off to move house or volunteer for your favourite charity.
Do you share our DNA?
- We ask how tomorrow can be better than today
- We are passionate about solving our customer's challenges
- Our ideas break boundaries
- We value different perspectives and encourage dialogue
- We take ownership and celebrate together
#DDhp
About Dye & Durham Corporation
Dye & Durham Limited provides premiere practice management solutions empowering legal professionals every day, delivers vital data insights to support critical corporate transactions and enables the essential payments infrastructure trusted by government and financial institutions. The company has operations in Canada, the United Kingdom, Ireland, Australia and South Africa.
Additional information can be found at www.dyedurham.com.
Top Benefits
About the role
Department: Finance
Location: London - Paddington
Description We are seeking a detail-oriented and highly organised ITGRC Analyst with circa 6 months to 2 years' experience to join our Risk & Compliance team. This role will play a critical part in maintaining our organisation’s compliance posture by supporting internal and external audits, managing responses to Service Organisation Control (SOC) questionnaires, and helping execute our internal audit plan.
As an ITGRC Analyst, you will collaborate closely with internal stakeholders, auditors, and external customers to ensure accurate, timely, and complete responses to control-related requests. You will also assist in gathering, validating, and organising audit evidence for various regulatory and contractual requirements, including SOC 1, SOC 2, ISO 27001, PCI DSS, and other compliance frameworks.
Key Responsibilities Audit & Assurance Support
- Serve as a primary point of contact for responding to customer and partner Service Organization Control (SOC) questionnaires , due diligence forms, and other security/compliance inquiries.
- Coordinate the collection, validation, and submission of audit evidence for internal and external audits, including but not limited to SOC 1/2, ISO 27001, PCI DSS, HIPAA, and NIST CSF.
- Track and manage audit deliverables, timelines, and status updates across multiple stakeholders.
Internal Audit Support
- Support the execution of the internal audit plan , including process walkthroughs, control testing, and documentation under the supervision of the Internal Audit team.
- Assist with drafting internal audit workpapers and findings in accordance with internal audit standards.
- Follow up on audit findings and help track remediation activities to closure.
Governance, Risk & Compliance (GRC)
- Maintain a centralised repository of evidence, risk assessments, and control documentation to support audit readiness.
- Contribute to the continuous improvement of internal controls, risk management processes, and audit procedures.
- Help update and maintain IT and compliance policies, procedures, and process documentation.
Skills, Knowledge & Expertise Qualifications & Experience
- Bachelor’s degree in information systems, Computer Science, Accounting, Finance, or a related field.
- 1-2 years of experience in IT compliance, IT audit, internal audit, or risk management .
- Familiarity with SOC 1, SOC 2, PCI DSS, ISO 27001 , NIST, or other common compliance frameworks.
- Experience responding to security questionnaires , RFIs, or customer due diligence assessments is strongly preferred.
- Exposure to internal controls testing and working with GRC tools is a plus.
Key Skills & Competencies
- Strong organisational skills with the ability to manage multiple requests and deadlines simultaneously.
- High attention to detail, particularly in gathering and validating audit evidence.
- Excellent written and verbal communication skills to interact with auditors, stakeholders, and external clients.
- Analytical thinker with the ability to interpret control requirements and assess supporting documentation.
- Strong collaboration skills with a proactive and flexible approach to problem-solving.
Desirable Certifications (not required but advantageous):
- CISA, CRISC, CISM, or equivalent IT audit/compliance certification
- ISO 27001 Lead Implementer/Auditor
- CompTIA Security+, or equivalent security certification
Job Benefits At Dye & Durham we strive to be visionaries! As a leader in our field, we ensure our employees are ready for the next challenge in their journey with us by offering internal and external training opportunities. We offer competitive salaries and a whole host of benefits including healthcare, pension, company discounts, wellness programs, and paid days off to move house or volunteer for your favourite charity.
Do you share our DNA?
- We ask how tomorrow can be better than today
- We are passionate about solving our customer's challenges
- Our ideas break boundaries
- We value different perspectives and encourage dialogue
- We take ownership and celebrate together
#DDhp
About Dye & Durham Corporation
Dye & Durham Limited provides premiere practice management solutions empowering legal professionals every day, delivers vital data insights to support critical corporate transactions and enables the essential payments infrastructure trusted by government and financial institutions. The company has operations in Canada, the United Kingdom, Ireland, Australia and South Africa.
Additional information can be found at www.dyedurham.com.