ASPIRE GSC Audit and Compliance Analyst

Company Description

Version 1 has celebrated over 28 years in Technology Services and continues to be trusted by global brands to deliver solutions that drive customer success. Version 1 has several strategic technology partners including Microsoft, AWS, Oracle, Red Hat, OutSystems and Snowflake. We're also an award-winning employer reflecting how employees are at the heart of Version 1.

We've been awarded: Innovation Partner of the Year Winner 2023 Oracle EMEA Partner Awards, Global Microsoft Modernising Applications Partner of the Year Award 2023, AWS Collaboration Partner of the Year - EMEA 2023 and Best Workplaces for Women by Great Place To Work in UK and Ireland 2023.

As a consultancy and service provider, Version 1 is a digital-first environment and we do things differently. We're focused on our core values; using these we've seen significant growth across our practices and our Digital, Data and Cloud team is preparing for the next phase of expansion. This creates new opportunities for driven and skilled individuals to join one of the fastest-growing consultancies globally.

Job Description

Role Summary

Our ASPIRE Global Service Centre is the central hub of our Service Management operations. Beyond a traditional Service Desk, it stands as the central authority and shared service delivery hub, orchestrating all operational workflows, processes, procedures, and tooling. It's a core delivery component of the Version 1 ASPIRE Managed Services offering that places AI, continuous improvement and business innovation at the heart of everything Version 1 does. With a focus on supporting self-service and automation, we utilise the best digital capabilities of the ServiceNow ITSM tooling product to provide the very best Experience to our Customers.

We are seeking an experienced and results-driven IT Audit and Compliance Analyst who will be responsible for ensuring that the ASPIRE Global Service Centre's IT systems, processes, and controls comply with internal policies, regulatory requirements, and industry standards. This role supports risk management efforts by conducting and participating in audits, identifying control gaps, and recommending improvements to strengthen the controls within the environment.

Key Responsibilities:

• Define concise and actionable audit findings, whilst planning the delivery of recommendations, including scoping and resource assignment
• Monitoring and reporting on the status of audit findings and compliance issues
• Participation in evaluations of ASPIRE GSC systems against regulatory and policy requirements (e.g. GDPR, ISO 27001, SOX)
• To create, publish and maintain a forward schedule of Audits for the wider stakeholder awareness
• Support external audits and regulatory inspections by providing requested documentation and explanations
• Collaborate with Practice IT teams and Security to assess compliance with internal policies and external regulations
• Evaluate the effectiveness of IT controls, i.e. related to access management, change management, data protection, and system operations
• Documentation of IT risks, controls, and mitigation activities
• Working in conjunction with IT Service Management Process owners, manage proposed updates / closure of identified gaps and improvements to service management processes and procedures
• Assist in the development and implementation of IT compliance frameworks and control testing programs
• Maintain up-to-date knowledge of relevant laws, regulations, and industry standards

Qualifications

Skills, Education & Qualifications:

• 3+ years in IT audit, IT compliance, or information security roles
• Familiarity with regulatory frameworks (e.g., SOX, GDPR, HIPAA) and standards (e.g., NIST, ISO 27001, COBIT)
• Experience with audit tools, Governance, Risk and Compliance platforms and risk assessment methodologies
• Strong analytical and problem-solving abilities
• Excellent written and verbal communication skills
• Ability to manage multiple priorities and work independently
• High attention to detail and integrity in handling sensitive information

Additional Information

At Version 1, we believe in providing our employees with a comprehensive benefits package that prioritises their well-being, professional growth, and financial stability.

One of our standout advantages is the ability to work with a hybrid schedule along with business travel, allowing our employees to strike a balance between work and life. We also offer a range of tech-related benefits, including an innovative Tech Scheme to help keep our team members up-to-date with the latest technology.

We prioritise the health and safety of our employees, providing private medical and life insurance coverage, as well as free eye tests and contributions towards glasses. Our team members can also stay ahead of the curve with incentivized certifications and accreditations, including AWS, Microsoft, Oracle, and Red Hat.

Our employee-designed Profit Share scheme divides a portion of our company's profits each quarter amongst employees. We are dedicated to helping our employees reach their full potential, offering Pathways Career Development Quarterly, a programme designed to support professional growth.