Home
Explore roles
Explore companies
Log in
Sign up
Roles
Tombola
Governance, Risk & Compliance (GRC) Analyst
Explore roles
Tombola
Governance, Risk & Compliance (GRC) Analyst
Competitive
Sunderland
Hybrid
RECENTLY POSTED
Graduate
Junior
Mid
Senior
Leader
Description
Hybrid requirements: 3 days per week in the office.

Sunderland - hybrid - Perm 🎯

Some roles sit in tech. Some sit in compliance. This one sits right in the middle.

We’re looking for someone who can confidently bridge both worlds, understanding the technical detail while translating it into clear, practical guidance across the business.

This role has opened up due to an internal promotion, something we love to celebrate at tombola as part of how we grow and develop our people.

We’re on the lookout for a Governance, Risk & Compliance (GRC) Analyst to join our friendly and growing InfoSec team here at tombola.

You’ll be joining a collaborative team of security-minded professionals along side our Operational Security, Offensive Security and IT Support Teams. We take what we do seriously, but we don’t take ourselves too seriously.

What you’ll be doing 👀

This is a key role where you’ll sit right at the heart of how we balance security, compliance and innovation.

You’ll be helping us shape and deliver an effective technical compliance framework, making sure we maintain a strong security posture while still moving at pace as a business.

Working closely with technology teams, compliance, and stakeholders across tombola, you’ll help identify, assess and manage technology and security risks.

A big part of your role will be translating complex technical and regulatory requirements into something meaningful and actionable for different audiences across the business.

You’ll also:

  • Support the ongoing development and improvement of our ISMS, policies, standards and processes

  • Lead and support audits, working with external partners and Group teams

  • Help ensure our platforms and games meet both local and international regulatory requirements

  • Act as a key point of contact between InfoSec and the wider business, building strong relationships and driving the right outcomes

What we’re looking for 🧠

We’re looking for someone who’s curious, confident and comfortable operating between technical and non-technical worlds.

You don’t need to be hands-on coding, but you do need to understand technology well enough to ask the right questions, challenge where needed and hold your own in conversations with technical teams.

You’ll likely bring:

  • A strong understanding of security frameworks, standards or compliance environments

  • The ability to interpret technical concepts and communicate them clearly to different audiences

  • Confidence to challenge, influence and guide stakeholders across the business

  • Strong organisational skills, with the ability to manage multiple priorities

We’d also love someone who:

  • Is naturally inquisitive and enjoys getting into the detail

  • Is comfortable asking questions and challenging the status quo

  • Enjoys working with a wide range of people and building relationships

  • Takes pride in doing things thoroughly and properly

Ways of working 🤝

This role is based at our Sunderland HQ, with a hybrid approach of 3 days in the office and 2 days working from home.

That means plenty of time collaborating with the team, alongside space to focus and get stuck into the detail.

Why tombola 🚀

We’re a business built on innovation, collaboration and doing things differently. We’re always looking to improve how we work and we genuinely welcome new ideas and perspectives.

If you’re looking for a role where you can make an impact, grow your career and be part of a team that backs each other, we’d love to hear from you.

Life at
Tombola
Browse all roles
Culture overview
We’re ambitious, we’re growing quickly and we’re looking for awesome people to join our already awesome team. #tombolalife is a lot of fun - we take pride in what we do, we work hard and we work together. We’re excited about the future and the team that will make an impact.
Employee benefits
Bonus Scheme
Cycle To Work
Flexible Working
Free Food
Free Parking
Gym Membership
Laptop
Learning Allowance
Life Insurance
Pension
Private Healthcare
Office vibe
City Centre
Friday Drinks
Hackathons
Open Plan
Social Events
Location
Tech at
Tombola
Go to profile
Leadership
James ConwayDirector of Technology
Tech overview
Tombola is one of the rare gaming operators with a fully cloud-native stack, running on AWS to deliver “infinite” scalability and cutting-edge performance across multiple European territories. At Tombola, we're not just another player in the game; we're the creators of the game. Our approach is revolutionary – we craft every element of our software in-house, from concept to execution. We take pride in the ingenuity of our developers and designers, united by their passion for pushing boundaries and shaping the future.
Engineering principles
Agile Process
Code Reviews
Communication and collaboration
Continuous delivery
Continuous Development
Continuous integration
Knowledge sharing
Mentoring
Micro services
Pair programming
Rapid release cycles
Test Driven Development
Unit testing
Company tech stack
Tombola
Governance, Risk & Compliance (GRC) Analyst
Share role
Scroll to
© 2026 HAYSTACK APP LTD
Privacy policy & Cookies
Terms
Feedback
Contact
Careers