Cyber Security Analyst

At Barclays, our vision is clear – to redefine the future of banking and help craft innovative solutions. The role of the Cyber Security Analyst is to deliver Security Consulting services to ensure appropriate information security assurance is undertaken during the development lifecycle. This is a client-focused technical role supporting the secure design and implementation of change across various business areas, technologies, and platforms. You will lead and assist with risk assessments, help design and deliver Security Consultancy services, and collaborate with change delivery teams to identify and track security requirements, ensuring Barclays maintains a secure environment.

• Demonstrable understanding of security solutions and designs from a people, process, and technology perspective, including security technologies, controls, and assessment methodologies.
• Good relationship, communication, and stakeholder management skills.
• Knowledge of information security frameworks and standards such as ISO27001/2, NIST, PCI DSS, and their application in diverse environments.
• The ability to discuss underlying technology and security controls with product developers.
• Ability to work with technical and security specialists, as well as the Business, to develop and deliver system security solutions.

Other highly valued skills include:

• Awareness and understanding of Barclays' business unit responsibilities and structure.
• Knowledge of best practices for integration of security controls.
• Awareness of core development methodologies and associated technologies.
• A Cyber Security qualification.
• Ability to translate business objectives into supporting information security requirements.

You may be assessed on key skills such as risk and controls, change and transformation, business acumen, strategic thinking, digital and technology skills, and job-specific technical skills.

This role is based in Radbroke Hall, Knutsford.

To enable ‘secure by design’ principles, supporting the bank’s change programmes by designing and implementing secure systems and architecture across security domains like data security, risk management, asset security, security architecture (including cloud security), communications, networks, security operations, software development, security testing, and identity and access management (IAM).

• Oversee technology change governance as part of the control function or security guild.
• Execute security risk assessments and build threat models during the change and development lifecycle to identify vulnerabilities, ensuring security controls are in place to enhance resilience against cyber threats.
• Support DevSecOps initiatives by engaging early with stakeholders to incorporate security into business and technology plans.
• Provide security reviews for third-party technology products and services.
• Transfer residual risks to the business as per the enterprise risk management framework.
• Collaborate with stakeholders and IT teams for incident response and security investigations.
• Contribute to the development and maintenance of security policies, standards, and procedures.
• Perform activities timely and maintain high standards, driving continuous improvement.
• Lead or act as an expert in your area, guiding teams or advising on technical matters.
• Demonstrate leadership behaviors such as listening, inspiring, aligning, and developing others, or develop technical expertise as an individual contributor.
• Partner across functions, manage risks, and ensure compliance with policies and regulations.
• Maintain understanding of how your area contributes to organizational objectives and make evaluative judgments based on factual analysis.

All colleagues are expected to embody Barclays' Values of Respect, Integrity, Service, Excellence, and Stewardship, and to demonstrate the Barclays Mindset: Empower, Challenge, and Drive.

From current accounts, mortgages, and insurance to loans, credit cards, and savings accounts – see how we can help you. Let’s go forward.