Cyber Security Analyst

Embark on a transformative journey as a Cyber Security Analyst. At Barclays, our vision is clear – to redefine the future of banking and help craft innovative solutions. The role of the Cyber Security Analyst is to deliver Security Consulting services to ensure appropriate information security assurance is undertaken during the development lifecycle. This is a client-focused technical role supporting the secure design and implementation of changes across various business areas, technologies, and platforms. You will lead and assist with risk assessments, help design and deliver Security Consultancy services, and collaborate with change delivery teams to identify and track security requirements, ensuring Barclays maintains a secure environment.

• Understanding of security solutions and designs from a people, process, and technology perspective, including security technologies, controls, and assessment methodologies
• Strong relationship, communication, and stakeholder management skills
• Knowledge of information security frameworks and standards such as ISO27001/2, NIST, PCI DSS, and their application in diverse environments
• Ability to discuss underlying technology and security controls with product developers
• Ability to work with technical and security specialists and the Business to develop and deliver system security solutions

• Awareness of Barclays' business unit responsibilities and structure
• Knowledge of best practices for integrating security controls
• Understanding of core development methodologies and technologies
• A relevant Cyber Security qualification
• Ability to translate business objectives into security requirements

This role is based in Radbroke Hall, Knutsford.

To enable ‘secure by design’ principles, supporting change programs by designing and implementing secure systems and architectures across domains such as data security, risk management, asset security, security architecture (including cloud security), communications, networks, security operations, software development, security testing, and identity and access management (IAM).

• Oversee technology change governance within control functions or security guilds
• Conduct security risk assessments and develop threat models during the change and development lifecycle to identify vulnerabilities, ensuring security controls are embedded to enhance resilience
• Promote DevSecOps practices by engaging early with stakeholders to incorporate security into business and technology initiatives
• Support security reviews for third-party products and services
• Manage residual risks in accordance with the bank’s risk management framework
• Collaborate with stakeholders on incident response and security investigations
• Develop and maintain security policies, standards, and procedures aligned with risk appetite, regulations, and industry best practices

• Perform activities efficiently and to high standards, fostering continuous improvement
• Possess in-depth technical knowledge and experience in relevant areas
• Lead or support teams, guiding professional development and resource allocation
• Demonstrate leadership behaviors if in a leadership role, or develop technical expertise as an individual contributor
• Impact related teams and partner with other functions and business areas
• Manage operational risks and ensure compliance with policies and regulations

All colleagues are expected to embody Barclays’ Values: Respect, Integrity, Service, Excellence, and Stewardship, and to demonstrate the Barclays Mindset: Empower, Challenge, Drive.