Enable job alerts via email!

Cyber Security Analyst

JR United Kingdom

Leeds

On-site

GBP 40,000 - 80,000

Full time

Today

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is seeking a Cyber Security Analyst to enhance its security framework. This role focuses on assurance and oversight, ensuring effective security controls and risk management. Collaborating with the Information Security Officer and risk team, you will assess current controls, contribute to risk assessments, and support audits. The ideal candidate will possess a strong understanding of information security frameworks and be skilled at translating technical risks for non-technical audiences. Join this dynamic team to make a significant impact in the realm of cyber security.

Qualifications

Strong understanding of the three lines of defence model.
Proven experience in information security risk and assurance.

Responsibilities

Provide second-line assurance and oversight of information security controls.
Identify gaps in existing controls and offer risk-based solutions.
Support audits and compliance assessments.

Skills

Information Security Risk

Stakeholder Communication

Control Gap Identification

Risk Assessment

ISO 27001 Knowledge

NIST Framework Knowledge

Education

Relevant Certifications (CISM, CISSP, CRISC)

Social network you want to login/join with:

Cyber Security Analyst, leeds, west yorkshire

col-narrow-left

Client:

Bestman Solutions

Location:

leeds, west yorkshire, United Kingdom

Job Category:

Other

EU work permit required:

Yes

col-narrow-right

Job Views:

Posted:

05.05.2025

Expiry Date:

19.06.2025

col-wide

Job Description:

We’re working with a financial services organisation that’s hiring a Cyber Security Analyst to join its second line of defence. This isn’t your typical analyst role - it’s focused on assurance and oversight, helping to ensure the organisation’s security controls are effective, risks are clearly understood, and improvements are made where it matters most.

You’ll work alongside the Information Security Officer and wider risk team to assess and challenge the effectiveness of current controls, contribute to risk assessments, and support internal audit and governance processes.

Responsibilities:

Provide second-line assurance and oversight of information security controls
Identify and assess gaps in existing controls, offering pragmatic, risk-based solutions
Translate technical risks into business-friendly language for executive and board-level reporting
Support audits and compliance assessments, including gathering and reviewing evidence
Collaborate with teams across the business to ensure effective risk management
Influence stakeholders to drive security improvements without a blame culture
Contribute to the development and maturity of the organisation’s security risk framework
Stay up to date with evolving threats, vulnerabilities, and control standards

Requirements:

Strong understanding of the three lines of defence model
Proven experience in information security risk, assurance, and oversight
Ability to influence stakeholders and communicate effectively at all levels, including non-technical audiences
Knowledge of security frameworks such as ISO 27001, NIST, or similar
Experience identifying control gaps and working across functions to address them
Comfortable working in a collaborative, solutions-focused environment
Sector background is flexible – consulting, commercial, or industry experience welcome
Relevant certifications (CISM, CISSP, CRISC, ISO 27001 Lead Auditor) are a plus, but not required

This role it's a great fit for someone who understands information security frameworks, knows how to translate technical risks for non-technical audiences, and enjoys working across both strategic and operational layers of cyber risk.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Be an early applicant