Security Risk Analyst

We tackle the most complex problems in quantitative finance, by bringing scientific clarity to financial complexity.

From our London HQ, we unite world-class researchers and engineers in an environment that values deep exploration and methodical execution - because the best ideas take time to evolve. Together we're building a world-class platform to amplify our teams' most powerful ideas.

Every breakthrough is built on strong foundations. In our cyber security team, you'll work across disciplines to drive the strategy, culture and structure that enable our success.

Take the next step in your career.

As a Security Risk Analyst at G-Research, you will report to the Security Risk Oversight Lead and play a vital role as an integral member of our Risk Team.

Key responsibilities of the role include:

• Understanding - and quickly synthesising - information on new technologies across hardware and software to enable the business to make informed decisions on strategic roadmaps
• Conducting threat models and risk assessments to identify vulnerabilities, evaluating the business impact and recommending mitigation strategies to reduce identified risks
• Ensuring security controls are fit-for-purpose with respect to updates and changes to the technology landscape
• Driving thematic reviews of processes and controls to identify strengths, weaknesses and opportunities for improvement
• Proactively prioritising and tracking findings to ensure remediation actions are taken in a timely manner
• Providing oversight, guidance and assurance that supports the continual improvement of security risk management across the organisation
• Ensuring managed services continuously meet our security requirements, including vendor and supply chain, data centre providers and SaaS services
• Building effective working relationships with service, risk and control owners across the organisation, ensuring they understand their responsibilities and accountabilities

We are looking for an experienced candidate with a balanced knowledge of security architecture and risk management.

The ideal candidate will have:

• Extensive and demonstrable experience in security, with a preference for fintech, or technology companies
• Knowledge and proficiency in information security frameworks, such as CIS, ISO 27000 or NIST
• Subject matter expertise in at least one security domain, for example, security & risk management, cryptography, security assessment and testing, identity and access management and security detection/response/forensics
• Cloud security knowledge and experience
• Ability to undertake threat models and risk assessments and communicate their findings
• Experience in applying quantitative and qualitative methodologies for calculating security risk
• Drive, enthusiasm and the ability to think outside of the box to identify suitable approaches
• Excellent verbal and written communication skills to report and present across the organisation
• Strong analytical, organisational and relationship building skills, as well as the confidence to challenge positively
• Enthusiasm and the drive to learn and develop new skills and knowledge

• Highly competitive compensation plus annual discretionary bonus
• Lunch provided (via Just Eat for Business) and dedicated barista bar
• 30 days' annual leave
• 9% company pension contributions
• Informal dress code and excellent work/life balance
• Comprehensive healthcare and life assurance
• Cycle-to-work scheme
• Monthly company events

G-Research is committed to cultivating and preserving an inclusive work environment. We are an ideas-driven business and we place great value on diversity of experience and opinions.

We want to ensure that applicants receive a recruitment experience that enables them to perform at their best. If you have a disability or special need that requires accommodation please let us know in the relevant section