This website uses cookies to ensure you get the best experience.

tombola and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Skip to main content
Technology · Sunderland, UK · Hybrid

Governance, Risk & Compliance (GRC) Analyst

Sunderland - hybrid - Perm 🎯

Some roles sit in tech. Some sit in compliance. This one sits right in the middle.

We’re looking for someone who can confidently bridge both worlds, understanding the technical detail while translating it into clear, practical guidance across the business.

This role has opened up due to an internal promotion, something we love to celebrate at tombola as part of how we grow and develop our people.

We’re on the lookout for a Governance, Risk & Compliance (GRC) Analyst to join our friendly and growing InfoSec team here at tombola.

You’ll be joining a collaborative team of security-minded professionals along side our Operational Security, Offensive Security and IT Support Teams. We take what we do seriously, but we don’t take ourselves too seriously.

What you’ll be doing 👀

This is a key role where you’ll sit right at the heart of how we balance security, compliance and innovation.

You’ll be helping us shape and deliver an effective technical compliance framework, making sure we maintain a strong security posture while still moving at pace as a business.

Working closely with technology teams, compliance, and stakeholders across tombola, you’ll help identify, assess and manage technology and security risks.

A big part of your role will be translating complex technical and regulatory requirements into something meaningful and actionable for different audiences across the business.

You’ll also:

  • Support the ongoing development and improvement of our ISMS, policies, standards and processes

  • Lead and support audits, working with external partners and Group teams

  • Help ensure our platforms and games meet both local and international regulatory requirements

  • Act as a key point of contact between InfoSec and the wider business, building strong relationships and driving the right outcomes

What we’re looking for 🧠

We’re looking for someone who’s curious, confident and comfortable operating between technical and non-technical worlds.

You don’t need to be hands-on coding, but you do need to understand technology well enough to ask the right questions, challenge where needed and hold your own in conversations with technical teams.

You’ll likely bring:

  • A strong understanding of security frameworks, standards or compliance environments

  • The ability to interpret technical concepts and communicate them clearly to different audiences

  • Confidence to challenge, influence and guide stakeholders across the business

  • Strong organisational skills, with the ability to manage multiple priorities

We’d also love someone who:

  • Is naturally inquisitive and enjoys getting into the detail

  • Is comfortable asking questions and challenging the status quo

  • Enjoys working with a wide range of people and building relationships

  • Takes pride in doing things thoroughly and properly

Ways of working 🤝

This role is based at our Sunderland HQ, with a hybrid approach of 3 days in the office and 2 days working from home.

That means plenty of time collaborating with the team, alongside space to focus and get stuck into the detail.

Why tombola 🚀

We’re a business built on innovation, collaboration and doing things differently. We’re always looking to improve how we work and we genuinely welcome new ideas and perspectives.

If you’re looking for a role where you can make an impact, grow your career and be part of a team that backs each other, we’d love to hear from you.

At tombola we know that our differences make us stronger and that thinking differently is key to long term success. We work hard to create a culture of inclusivity where everyone can celebrate our Free to be mevalue. We are committed to creating opportunities for everyone here at tombola, we welcome applications from all backgrounds and encourage individuals to apply, even if you don’t meet every requirement.

Department
Technology
Role
Information Security
Locations
Sunderland, UK
Remote status
Hybrid
Picture of Kirstine Morris
Contact Kirstine Morris Talent Acquisition Partner – People

Our vacancies

More jobs
Technology · Sunderland, UK · Hybrid

Governance, Risk & Compliance (GRC) Analyst

Loading application form

Already working at tombola?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor