Person, Face, Man, Accessories, Accessory, Glasses, Portrait, Photography, Selfie

IT Governance Risk and Compliance Analyst - Hybrid

Sofia, Sofia City Province, Bulgaria

IT Governance Risk and Compliance Analyst - Hybrid

  • SE00661
  • Sofia, Sofia City Province, Bulgaria
  • Festanstellung, unbefristet
  • Information Technology
Favoriten anzeigen

The Role

As an IT Governance Risk and Compliance Analyst, you will play a key role in strengthening our technology governance, risk, and compliance capabilities across a global IT environment. Working closely with IT, Cyber Security, Engineering, Privacy, Procurement, and business stakeholders, you will help ensure our technology controls are effective, risks are proactively managed, and compliance obligations are met.

This role provides the opportunity to influence IT governance across internal and third-party environments, support audit and assurance activities, and drive continuous improvement of our GRC framework while acting as a trusted advisor to the business.

At Imperial Brands, we're forging a path to a healthier future by embracing a challenger mindset, encouraging bold ideas, and empowering our people to collaborate, innovate, and make a meaningful impact. If you're ready to push yourself further, influence technology governance on a global scale, and grow your career in an inclusive, high-performing environment, we'd love to hear from you.

 

Principal Accountabilities

  • Design, document, test, and monitor IT General Controls (ITGCs) across Access Management, Change Management, IT Operations, and Backup & Recovery.
  • Conduct technology risk assessments, identify control gaps, maintain risk registers, and support the implementation of effective remediation plans.
  • Support internal and external audits by coordinating evidence, facilitating walkthroughs, and guiding teams through audit requirements.
  • Partner with IT, Cyber Security, Engineering, and business stakeholders to provide pragmatic advice on control design, risk mitigation, and governance best practices.
  • Monitor compliance with internal policies and recognised frameworks such as ISO 27001, COBIT, and NIST, including reviews of third-party assurance reports.
  • Produce insightful reporting on control effectiveness, technology risks, and audit outcomes while contributing to the continuous improvement of GRC processes and tools, including ServiceNow GRC.

 

Skills and Experience Required

  • Relevant experience in IT Controls, IT Audit, SOX, IT Risk, or Governance, Risk & Compliance.
  • Full proficiency in English.
  • Experience supporting internal and external audits, including control testing, evidence management, and remediation tracking.
  • Excellent stakeholder management, communication, and documentation skills, with the ability to influence both technical and non-technical audiences.
  • Good understanding of information security principles, cloud technologies, enterprise applications, and third-party risk management.
  • Professional certifications such as CISA, CRISC, CISSP, or equivalent are desirable. Experience with ServiceNow GRC is advantageous.

 

What We Offer

In return for playing your part in building our future, you will receive a comprehensive compensation package with salary, bonus scheme and further benefits as well inspiring places to work and collaborate with purpose. Here at Imperial we will give you the opportunity to grow and learn, innovate at pace and be a part of our purpose to forge a path to a healthier future for moments of relaxation and pleasure for our consumers.

Everyone Belongs

Everyone belongs in Imperial. We are proud of being a truly inclusive organisation. We encourage and welcome applications from people of all ages, genders, ethnicities, nationalities, disabilities, sexual orientation, religions or beliefs and of neuro divergence. We give fair and equal consideration to all our applicants. Please contact us at recruitment@impbrands.com to let us know if we can provide support in helping you complete an application and/or attend an interview.

About Us

We're a truly international company, fourth largest in our industry and operating across 120 markets. An inclusive, innovative global FMCG business supported by 25,000 employees. As we embrace a new era of growth, we are transforming. Our ways of working and culture are driven by a challenger mindset, constantly questioning the status quo where people can bring their best selves to work. Our agility and collaboration are driving our ambitions, innovation and success all supported by our award-winning development programmes that creates exciting and rewarding career opportunities for all.  Encouraging inclusion at local levels and supporting a developing and robust diversity agenda globally, we’re fully committed to creating and maintaining an environment that celebrates and respects difference.

As a matter of policy, Imperial Tobacco or its subsidiaries never requests or requires payment as part of any recruitment process.

1901

Das Jahr der Gründung von Imperial durch die
Zusammenkommen von 13 britischen Familienbetrieben
Unternehmen

25.000

Kaiserliche Mitarbeiter weltweit

120

Anzahl der Märkte weltweit, in denen unsere Produkte verkauft werden