IT Governance and Compliance Analyst
Role details
Job location
Tech stack
Job description
Policy Expert is growing fast, and regulated environments have an annoying habit of caring very deeply about how things are governed, accessed, audited, and documented. This role exists to make sure our technology controls are solid, our compliance story holds up under scrutiny, and audits do not descend into chaos.
If you enjoy order, clarity, and knowing exactly who has access to what (and why), you'll fit right in.
As our IT Governance & Compliance Analyst, you'll sit at the intersection of technology, risk, and regulation. You'll be the go-to person for IT-related governance and compliance activity, making sure controls exist, work properly, and are evidenced clearly.
Your responsibilities will include:
- Maintaining and improving IT governance frameworks, policies, and standards in line with data protection legislation and recognised best practice such as ISO 27001 and Cyber Essentials Plus
- Supporting internal and external audits by completing control testing, running access reviews, and producing clear, accurate evidence
- Performing regular user access audits across systems, including privileged and third-party access
- Supporting Subject Access Requests and other data rights requests alongside the Data Protection Officer, People Experience, and Complaints teams
- Carrying out data discovery, classification, retention, and eDiscovery activities using Microsoft 365 Purview and related compliance tools
- Working closely with Infrastructure, Security, Risk & Compliance, and wider business teams to embed governance into everyday technical operations, * IT governance, IT audit, information governance, or technical compliance within a regulated environment
- Access controls, audit processes, and IT policy frameworks
- Microsoft 365 compliance tooling, including Purview eDiscovery, Audit, Information Governance, and DLP
- Performing structured and unstructured data searches across email archives, file shares, and collaboration platforms
- Producing clear documentation, reports, and audit evidence
- Communicating technical detail clearly to non-technical stakeholders, At Policy Expert, we are committed to fostering an inclusive and supportive environment for all candidates. If you require any reasonable adjustments during the interview process to accommodate your needs, please do not hesitate to let us know. We are dedicated to ensuring every candidate has an equal opportunity to succeed and will work with you to provide the necessary support.
Requirements
You're methodical, trusted with sensitive information, and comfortable operating across both technical and non-technical teams. You care about doing things properly, but you also understand proportional risk and real-world constraints.
Benefits & conditions
- The chance to shape and mature governance in a growing technology environment
- A collaborative, inclusive culture that genuinely values its people
- Competitive benefits and support, with full details shared during the recruitment process, * This role will be based in our London or Milton Keynes office in a 50/50 Hybrid mode.
- We match your pension contributions up to 7%
- Private medical & Dental cover
- Learning budget of £1,000 a year + Study leave (with encouragement to use it)
- Enhanced maternity & paternity
- Travel season ticket loan
- ️ Access to a wide selection of London O2 events and use of a Private Lounge
- Employee Wellbeing Programme
- Prayer room in Office
![Policy as [versioned] code - you're doing it wrong](https://customer-goifxnzhrq3d0d54.cloudflarestream.com/23fa4a514c18f0a9b39573f31d96ba54/thumbnails/thumbnail.jpg?time=33000ms)