Senior Security Analyst - Risk Assurance

About The Position

Requirements

• Demonstrable experience in Cyber Security or Information Risk roles, with exposure to application and system‑development methods (e.g., Java, web‑service architecture)
• Ability to assess security risks using the organisation’s risk‑assessment framework, risk appetite and recognised risk‑management methodologies, including practical techniques such as gap analysis and control identification
• Excellent knowledge of key security frameworks and standards, such as ISO 27001, NIST, OWASP and MITRE
• A pragmatic, risk‑based approach to information security, balancing security needs with business requirements
• Effective verbal and written communication skills, with the ability to explain technical security standards clearly to both technical and non‑technical audiences, and work collaboratively with stakeholders
• Ability to manage multiple concurrent demands by breaking work into clear, structured workflows and outcomes across several projects

Responsibilities

• Assess information and technical risks.
• Report and escalate risk‑assessment findings.
• Guide teams on security requirements and the suitability of controls for technical proposals and specification documents.
• Produce security reports, risk‑review documents and other materials that support projects, BAU activity and continuous improvement.
• Help internal stakeholders understand and follow Government security guidance.

Benefits

• 28 days annual leave plus 8 public holidays
• Option to buy/sell annual leave
• Flexi-time and enhanced flexible working options available
• Option to join the Civil Service pension scheme
• Life insurance cover for 4 x annual salary
• Enhanced company sick pay and family leave including maternity, paternity and adoption
• Contributory lifestyle benefit options including discounts at hundreds of retailers, cycle to work scheme, access to the Civil Service Sports and Leisure Club for discounted gym memberships, and an optional dental insurance scheme