Role Summary We are seeking a motivated IT Risk and Controls Junior Consultant to support the design, documentation, and assessment of IT controls within risk management and compliance frameworks. The role involves drafting clear control descriptions, mapping risks to controls, and aligning requirements across multiple standards and frameworks (e.g., ISO 27001, NIST, COBIT). This position is ideal for someone with strong analytical skills and an interest in information security, governance, and compliance. Key Responsibilities Draft and maintain IT control descriptions that are precise, testable, and aligned to risk objectives. Assist in mapping risks to controls to ensure effective coverage of IT and business risks. Support cross-framework alignment by mapping control requirements across ISO 27001, NIST CSF, COBIT, and other regulatory standards. Collaborate with senior consultants to perform gap assessments against relevant frameworks. Contribute to the preparation of risk and control matrices (RCM) and related documentation. Assist in monitoring and reporting on the effectiveness of controls and supporting remediation activities. Maintain up-to-date knowledge of IT governance, risk, and compliance (GRC) trends and industry standards. Support client engagements through documentation, research, and coordination activities. Required Skills & Qualifications Bachelor’s degree in Information Security, Computer Science, Risk Management, or related field . Basic understanding of IT risk, information security, and compliance frameworks (ISO 27001, NIST, COBIT). Strong writing and documentation skills for drafting policies, procedures, and control descriptions. Analytical mindset with the ability to link risks, controls, and business objectives. Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint). Good communication skills and ability to work effectively in a team environment Desirable Skills Internship or experience in IT audit, risk management, or compliance. Exposure to Governance, Risk, and Compliance (GRC) tools . Certifications (or working towards): ISO 27001 Lead Implementer/Lead Auditor, CompTIA Security+, CISA (junior level), or similar . Career Development This role provides a strong foundation for progression into IT Risk Consultant, Cybersecurity Analyst, or IT Auditor positions. The Junior Consultant will be supported through professional training, mentoring, and opportunities to gain industry certifications.
Wait!
Before You Leave... Find Your Perfect Job!
Are you sure you don't want to discover the perfect job opportunity? At JobPe, we help you find the best career matches, tailored to your skills and preferences. Don’t miss out on your dream job!