Junior Compliance Analyst

We are Eversheds Sutherland, a global law firm, with more than 5,000 people across over 30 countries. We’re full-service with deep niche and sector experience. Whatever challenge, wherever in the world, we’re equipped and ready to meet it. We live our values, we’re purposeful and purpose-led. So although the world is fast-moving and rapidly changing, we see it as a place where everyone can thrive. We’re ambitious for our clients, our communities – and for you. Whether you’re starting out on your career or well established, whether you’re a lawyer or in business services. If you’re looking for what’s next, we are too.

What to expect

For business professionals, our environment is highly collaborative with value being placed on diversity of ideas, skills and mindsets. Not least yours. It’s energetic, fast-moving and there’s always something new to get involved in. You will get exposure across geographies and the firm as a whole. The future is a place of opportunity. Focusing on your success and for what’s next, will ensure you thrive too.

Role and key responsibilities

Eversheds Sutherland are seeking a  Junior Compliance Analyst to join our expanding GRC team. You will be reporting to the IT GRC Lead within the IT department; having primary responsibility for managing our client audit inbox, responding to requests for information and completing client questionnaires.

You will support the team with third party audits and both ISO 27001 and Cyber Essentials+ compliance, and escalating risks appropriately.

You will have a wonderful opportunity to develop your Governance, Risk & Compliance skills in a supportive environment, evolving GRC capabilities and for identifying process improvement.

• Lead on the completion and coordination of client security questionnaires and due diligence requests.
• Collaborate with internal stakeholders to gather evidence and ensure timely, accurate responses.
• Maintain a repository of standard responses and supporting documentation.
• Support compliance with ISO/IEC 27001:2022 and Cyber Essentials Plus frameworks.
• Support internal and external audits, including planning, evidence collation and corrective action tracking.
• Stay up-to-date with relevant frameworks and regulatory requirements.
• Contribute to the development and maintenance of security and compliance policies.
• Track and report on compliance metrics and risk indicators.
• Support awareness campaigns and training initiatives to promote a culture of security and compliance.
• Lead by example by living the values of Eversheds Sutherland

Skills and experience

• Experience in a compliance or risk role within a regulated or client-facing environment.
• Working knowledge of ISO 27001 and Cyber Essentials Plus frameworks.
• Experience of responding to client security questionnaires and audit responses.
• Knowledge of IT risk management, data protection, and security governance.
• Basic knowledge of Security Operations services and processes
• Understanding of Anti-virus/EDR, Vulnerability Management and Email Security
• Excellent communication skills
• Effective team player
• Good listener
• Able to react quickly, decisively and professionally

Personal Attributes

• Naturally curious, with a drive to learn
• An interest in Governance, Risk and Compliance, Information Security and its role in Industry
• Understanding of the Cyber Security Industry and providers
• Professional, innovative and collaborative style of working
• Excellent time management and able to meet tight deadlines

What’s in it for you?

At Eversheds Sutherland, we provide benefits focused on looking after you: your development, your performance, your financial future and your health, as well as providing the opportunity to make a contribution to the world.

• We’re fair, transparent and equitable
• We share in the success of the firm, reward alignment to our values, going above and beyond and your individual performance
• We support flexible ways of working through our remote working policy and commitment to flexible, agile and hybrid ways of working
• We support your health and performance through our dental, healthcare and wellness support
• We support everything you are and all you bring through our powerful commitment to diversity and inclusion
• We provide a platform for your career, whatever your ambitions through our structured professional and personal training, mentoring and development programs
• We provide experience and opportunity through international and cross-function exposure
• We provide an opportunity to give back through our pro bono work and community engagement
• We help you plan ahead through retirement planning, insurance and assurance

Diversity & Inclusion

At Eversheds Sutherland, “Inclusive” is a core business value. We bring together different skillsets, global mindsets and approaches. We foster diversity of thought and the freedom to put ideas into action. We have an inherent respect for the individual. We have a strong belief in collaboration and teamwork. Sharing ideas, asking questions, solving challenges and meeting our clients’ goals: together.

We want all our people to thrive at work and reach their full potential and we work hard to continue to build a diverse and inclusive culture, monitor and report on our progress and impact, and develop our approach. This is reflected in our policies, systems and processes, and in our work with diversity membership organisations.

Many of our people work flexibly in some way and we are open to considering how we can accommodate flexible working arrangements alongside role requirements. If this is important to you, please talk to us about it during the recruitment process.

We want you to perform at your best during our recruitment process. If there is any adjustment or support you need, please contact us so we can discuss how we can best assist you.

For you,

For your success.

And what's next.