Press enter to search, esc to close
Role Introduction
The Information and Cyber Security team is responsible for identifying and mitigating cyber security risks across the firm, while ensuring ongoing compliance with regulatory requirements and industry best practices.
We are currently recruiting for an early career Governance, Risk, and Compliance (GRC) Analyst to join our team based in Bristol, with hybrid working available. This is a hands-on role suited to someone with some experience in GRC or risk-related functions, and an understanding of security domains such as:
- Governance
- Risk Management
- Compliance
- Security Awareness & Training
- Incident Response & Business Continuity
- Data Protection & Privacy
This role requires curiosity, attention to detail, a willingness to learn, and strong communication skills.
The ideal candidate will have a basic understanding of information security principles and a keen interest in risk and compliance. They should be eager to develop their knowledge of regulatory requirements and security frameworks, and comfortable working with documentation, supporting risk assessments, and assisting in the development and review of policies and controls.
Main Responsibilities
The GRC Analyst will be responsible for supporting the identification, assessment, and management of information security risks, and helping ensure compliance with relevant regulations and frameworks. They will work closely with technical and business teams to maintain and improve the firm’s security governance processes.
The day-to-day responsibilities include:
- Assist with risk assessments and maintain risk registers.
- Support the development and review of security policies and procedures (ISMS).
- Help track compliance with regulatory and framework requirements (e.g., ISO 27001, Cyber Essentials Plus, SRA)
- Contribute to internal and external audit preparation and evidence gathering.
- Maintain documentation related to controls, risks, and compliance activities.
- Support security awareness and training initiatives.
- Participate in incident response and business continuity planning exercises.
The Ideal Candidate
Our employees are talented people, distinguished by excellence, with a willingness to embrace team working and a passion for client service. You will be able to demonstrate a similar supportive, flexible, driven ethos.
You will be certified in, studying towards or starting to study in one or more of:
- (ISC)² Certified in Cybersecurity (CC)
- ISACA Cybersecurity Fundamentals Certificate
- BCS Foundation Certificate in Information Security Management Principles (CISMP)
- ISO/IEC 27001 Foundation
- Certified in Risk and Information Systems Control (CRISC) – Associate Pathway
- NIST Cybersecurity Framework (NCSF) Foundation
About TLT
Fast paced, fast growing and forward thinking, TLT is the law firm that helps clients stay one step ahead, and we do the same for our people.
We work with high profile clients in innovative sectors. With local, national and international reach, we have over 1,800 people in offices across the UK and a network of partner firms across Europe, India and the US. TLT was named Law Firm of the Year at the Legal Business Awards 2023. This marks the third year in a row the firm has taken away this accolade in industry awards - having previously been named Law Firm of the Year at The Lawyer Awards in 2021 and the British Legal Awards in 2022.
Our purpose is to protect, prepare and progress our clients for what comes next and it’s essential that we do the same for our people, our planet and our communities too. In our open and collaborative culture, we encourage everyone to be their whole self, to have a voice and to contribute.
Our Benefits
We value our employees highly and we want you to feel valued. You’ll receive a competitive salary with an annual pay review. You will also have access to an extensive range of benefits via our flexible benefits scheme including 25 days holiday (which will increase to 30 days based upon length of service) and private medical insurance.
At TLT we have a progressive fully flexible working approach. We empower our people to work in a place and at a time that meets their needs, those of their clients and of the wider team and firm. Part of this agile approach is a focus on hybrid working and supporting the work/life balance of our people. We’re happy to talk about how flexible working can work for you and this role.
TLT is committed to creating a diverse and inclusive working environment and encourages applications from all suitably qualified people, regardless of disability, race, gender identity, sexual orientation, or any other characteristics protected by the laws in the locations in which we operate.
We welcome applications from people with disabilities and are committed to providing reasonable adjustments, where necessary, to make interviews and jobs more accessible. Should you have any difficulty during the recruitment process, require any reasonable adjustments or an application to Access to work please contact the recruitment team on Recruitment.Operations@TLT.com
