Security Governance, Risk & Compliance Analyst

Company: PVH (Tommy Hilfiger/Calvin Klein)
Apply for the Security Governance, Risk & Compliance Analyst
Location: London
Job Description:

Global Relay seeks a Governance, Risk & Assurance Analyst to execute governance, risk management and compliance activities that support our security program. The analyst will work closely with stakeholders across Security, Engineering, Operations and business teams to identify risks, assess controls, track remediation, and support assurance initiatives.

Your Job

  • Perform security and technology risk assessments and document findings, recommendations, and remediation activities.
  • Conduct independent testing and validation of security control design and operating effectiveness.
  • Execute control testing and continuous assurance activities in accordance with established methodologies.
  • Support risk assessments, governance reviews and assurance activities across security, technology, and AI-enabled solutions.
  • Assist in evaluating controls, governance processes and risk management practices associated with emerging technologies, including AI.
  • Maintain and update security risk registers, issue logs, and remediation tracking activities.
  • Support internal and external audits, certifications and assurance reviews through evidence collection and coordination.
  • Perform third‑party security assessments and vendor reviews.
  • Collect, analyze, and report security metrics, risk indicators, and assurance results.
  • Support governance forums through reporting, action tracking, and documentation.
  • Assist with the development and maintenance of policies, standards, procedures, and control documentation.
  • Track audit findings, control deficiencies, and risk treatment activities through to resolution.
  • Collaborate with business and technology stakeholders to evaluate risks and strengthen controls.
  • Identify opportunities to improve governance, risk, and compliance processes.

About You

  • 3‑5 years of experience in cybersecurity, governance, risk management, audit, or compliance.
  • Experience performing risk assessments, control reviews, assurance activities, or audits.
  • Understanding of security frameworks such as ISO 27001, SOC2, NIST, and CIS Controls.
  • Familiarity with emerging technology and AI‑related risks, including associated security, privacy and operational considerations.
  • Strong analytical and problem‑solving skills.
  • Experience collecting, analysing, and reporting security‑related information.
  • Ability to communicate effectively with technical and non‑technical stakeholders.
  • Strong organizational, documentation and time‑management skills.
  • Experience in SaaS, cloud or technology environments is an asset.
  • Certifications such as Security+, CISA, CRISC, CGRC, or equivalent are preferred.

Equal‑Opportunity & Visa

Global Relay is an equal‑Opportunity employer committed to diversity, equity, and inclusion. Global Relay is unable to offer visa sponsorship for this position. Candidates must have the right to work in the UK at the time of application.

#J-18808-Ljbffr…

Posted: July 13th, 2026