IT Control Analyst

Introduction to the job:

As the Junior IT Control Analyst, you work together within a program to drive the setup and implementation of an integrated control framework in IT. You work closely with experienced colleagues, asset owners, and IT teams to help ensure our IT landscape remains secure, compliant, and well-controlled.

In this role, you contribute to rewrite controls according to standards and support implementing it into day-to-day IT and Data activities. You help translate policies, standards, and control requirements into practical actions, and you gain hands-on experience with how security and compliance work in a complex, global organization.

You will act in close cooperation with a program and the sector security teams. Your key responsibilities:

• Contribute to control improvements by identifying gaps, inefficiencies, or recurring issues.

• Support awareness activities by helping prepare guidance, documentation, or training materials.

• Support the implementation and monitoring of IT and Information Security controls as part of the internal control framework.

• Assist with identifying, documenting, and validating control activities (e.g., evidence collection, control testing, and follow-up actions).

• Support compliance with Information Security policies, standards, and procedures (e.g., ISO 27001, NIST-based controls).

• Collaborate with asset owners and IT teams to help embed controls into everyday work.

• Support reporting on control status, issues, and remediation progress.

Education and experience

• Bachelor’s degree (or working/thinking level) in IT, Information Security, Risk Management, or a related field.

• 1–3 years of experience in IT, audit, risk, security, or compliance (internships or trainee roles count).

• Basic understanding of IT controls, information security, or risk management concepts.

• Interest in working with frameworks such as ISO 27001, NIST, or similar (knowledge is a plus, not a must).

• Experience working in a complex or high-tech environment is an advantage.

Skills:

• Working in a high-tech environment means learning something new every day. As a (Junior) IT Control Analyst, you work closely with others and grow into the role over time. You demonstrate:

• A willingness to learn and develop in the field of IT risk and controls.

• Attention to detail and a structured way of working.

• The ability to follow defined processes and ask questions when things are unclear.

• Basic stakeholder communication skills and the confidence to collaborate with colleagues.

• An analytical mindset and interest in understanding how IT environments work.

• Good written and verbal communication skills in English.

Other information

• Either a GICSP, CISM, CISSP, or CISA certificate is considered a plus.