×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Business Analyst

Senior Control Adviser​/GRC Advisor

Job in Aberdeen City, Aberdeen, Aberdeen City Area, AB10 1FX, Scotland, UK
Listing for: Prosource.it
Full Time position
Listed on 2025-12-30
Job specializations:
  • IT/Tech
    Cybersecurity, IT Business Analyst
Job Description & How to Apply Below
Position: 2706 - Senior Control Adviser / GRC Advisor
Location: Aberdeen City

We’re looking for a proactive and detail-oriented Senior Control Advisor to support the Governance, Risk & Compliance (GRC) function. In this role, you’ll help ensure regulatory compliance and effective risk management by monitoring controls, conducting audits, and collaborating with business units to strengthen the IT governance framework. You’ll play a key part in identifying and mitigating risks, promoting a culture of accountability, and driving continuous improvement across the control environment.

Role

Purpose
  • Monitor regulatory changes and assess compliance with laws, standards, and internal policies
  • Plan and conduct IT compliance audits, ensuring alignment with UK Corporate Reform mandates
  • Collaborate with business units to identify key IT applications subject to regulatory oversight
  • Support risk management by evaluating control effectiveness and mitigation strategies
  • Identify and document control gaps, recommending corrective actions and improvements
  • Maintain accurate records of control testing and remediation, and report findings to stakeholders
  • Implement and enforce control frameworks, conduct risk assessments, and advise on IT General Controls (ITGCs) best practices
  • Deliver training and promote awareness of compliance and control procedures across the organisation
  • Drive continuous improvement in risk, compliance, and control processes
What you’ll do
  • Work with the GRC Senior Manager to support IS in the delivery of GRC activities
  • Collaborate with IS teams to create and complete Risk & Control Matrices for applications
  • Ensure alignment with regulatory requirements and industry standards
  • Identify existing IT General Controls (ITGCs) within systems
  • Propose enhancements to controls based on specific application requirements
  • Address deficiencies or gaps in control design
  • Evaluate the effectiveness of controls during the design phase
  • Conduct operating effectiveness assessments to verify control implementation
  • Document findings and recommend improvements
  • Work closely with control owners (process owners, IT teams, etc.)
  • Facilitate discussions on control improvements and remediation plans
  • Ensure timely resolution of control deficiencies
  • Regularly report progress and updates related to ITGCs
  • Present findings to management, audit committees, and other stakeholders
  • Stay informed about emerging risks and industry best practices
  • Participate in process improvement initiatives related to ITGCs
  • Contribute to the development of control frameworks
  • Support the GRC Senior Manager in any required activities which support improvements in assurance, compliance, and audit activities
  • Monitor key controls, e.g., IT General Controls (ITGCs) which support financial reporting
  • Addresses findings from identified control failures
  • Works with minimal supervision, using clearly defined processes and procedure
  • Facilitates the use of performance metrics to improve output
  • Oversees the performance of the offshore Control Operating Effectiveness team
What to bring
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate GRC related concepts to technical and nontechnical audiences.
  • Substantial relevant experience in control management for governance, compliance, IT audits, IS assurance and risk management programmes.
  • CISA, CISM, ISO
    27001 or equivalent preferred
  • Relevant IT work experience
  • Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act, UK Corporate Reform) and industry-specific regulations
  • Highly skilled in designing and implementing compliance and control frameworks.
  • Proficient in IT governance and quality standards
  • Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
  • Excellent stakeholder management skills
  • High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity
  • Experience in configuring GRC tools to support Risk & Control compliance preferred
What You’ll Get in Return

For employees, we’re committed to recognising and…

Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search