IT Risk & Controls Consultant

We are seeking an IT Risk Officer to support a range of IT Risk Assessments and Controls Assurance activities across multiple technologies - including SAP and non-SAP environments.

In this role, you will work closely with Governance, Risk & Controls team to assess IT and application risk exposures, evaluate internal controls, and support remediation and improvement initiatives. You'll participate in walkthroughs, document key system processes, identify control gaps, and assist in developing practical recommendations to strengthen IT controls and mitigate risk.

The ideal candidate will have hands-on exposure to ITGC, Access Management, or Application Controls testing and be comfortable engaging with stakeholders across IT and business teams. You should have a strong understanding of IT Risk principles, excellent documentation skills, and the ability to support several concurrent IT risk reviews within defined timelines.

Technical & Delivery Requirements:

· Support the delivery of IT Risk Assessments across various technologies, including ERP and non-ERP systems.

· Conduct walkthroughs and document IT processes related to access, change, backup, and incident management.

· Assist in identifying and assessing control deficiencies; draft recommendations and support remediation follow-up.

· Prepare clear, structured documentation including Risk and Control Matrices (RACMs), summary reports, and process flows.

· Support User Access and SoD reviews, assisting in testing and validating remediation actions.

· Maintain high-quality work papers, ensuring traceability from risk identification through to mitigation.

· Track progress against action plans and prepare status reporting for management and stakeholders.

· Contribute to continuous improvement of IT control frameworks and methodologies.

Do you have experience in Oracle?, Do you have a Bachelor's degree?, · 5+ years of experience in IT Risk, ITGC, or Controls Assurance, ideally within a regulated or large enterprise environment.

· Knowledge of common governance frameworks (e.g. SOX, COBIT, ISO 27001, NIST).

· Experience assessing controls across systems, databases, infrastructure, and/or applications.

· Ability to analyse access and SoD data using tools or extracts provided by IT teams.

· Strong documentation and analytical skills - able to produce high-quality reports and process artefacts.

· Experience supporting evidence collection and testing in line with ITGC or audit requirements.

· Strong stakeholder management skills, capable of collaborating across technical and business domains., * How many years ITGC Experience?

• How many years SOX Experience?
• How many years SOD Experience?
• Do you have a valid technical qualification (CISA etc)?
• Please indicate your availability or notice period?
• Do you have a valid accounting/auditing qualification?

Education:

• Bachelor's (preferred)

Language:

• English (required)

This role is advertised on a daily rate basis; however, we also offer a salaried option ranging from £50,000 to £80,000, depending on experience and qualifications.

Equal Opportunities

As a proud Ethnic Minority Owned Business, ZR Consultants is an equal opportunity employer that values diversity of thought and background. We welcome applicants from all communities to bring their unique perspectives and experiences to our team.

Job Types: Full-time, Temporary Contract length: 6 months

Pay: £400.00-£500.00 per day

ZR Consultants (ZRC) is a successful business consulting firm specialising in Governance, Risk and Controls with a track record of delivering large scale projects which include SOX Compliance (Sarbanes Oxley), Business and IT Controls Transformation (SAP4/HANA, ORACLE Fusion Control & process design), Controls rationalisation and optimisation, Artificial Intelligence Compliance, Internal Audits, ESG, and regulatory compliance to clients globally.