Senior Information Security Analyst

Salary: GBP45,272 to GBP56,844 Per Annum (Dependent on Skills & Experience)

Hours: Full Time (Flexible Working)

Contract Type: Open Ended (Compressed Hours & Flexible Working Available)

Location: Keyworth, Nottingham or Polaris House, Swindon (Hybrid Working)

Band: UKRI Band E

Closing Date: Sunday 26 October 2025

The UKRI CIO Group plays a pivotal role in managing and optimising the organisation's critical enterprise technical services that underpin and enable UKRI's business capabilities. Within the group a team of Information Security Professionals support the delivery of modern, secure, resilient and scalable services across a federated team of Digital, Data and Technology professionals to deliver impact across the organisation and the wider UK research and innovation system.

• Work collaboratively across the organisation to identify, assess, and mitigate risks, ensuring security policies and processes align with organisational objectives and regulatory requirements.
• Advise stakeholders and implement effective security solutions, providing oversight for vulnerability assessments, remediation activities, and technical control evaluations.
• Promote a culture of security by participating in awareness programs, supporting internal and external audits, and assisting in the development of policy, standards, and procedures.
• Lead the collection, analysis, and presentation of InfoSec performance metrics, and prepare briefings for senior leaders on studies and plans.
• Analyse data from security assessment tools and systems, identify process inefficiencies, and contribute innovative solutions to improve security and efficiency across projects and initiatives.

The below criteria will be scored during Shortlisting (S), Interview (I) or both (S&I).

• A professional certification (eg, CISM, CISSP, CompTIA Security+, CCSP or AWS certification).
• Degree in a related subject or relevant comparable education.
• Solid experience with risk assessment methodologies and vulnerability management processes, including relevant tooling. (S&I)
• Excellent analytical, problem–solving, and decision–making skills, with strong attention to detail. (I)
• Proficient in communicating complex security concepts to non–technical stakeholders and collaborating across departments and third–party providers. (S&I)
• Demonstrable knowledge of information security frameworks, regulations (such as ISO27001, NIST, and GDPR), and security technologies and controls. (S&I)
• Proven ability to lead and drive security initiatives, respond to security incidents, and conduct investigations. (S&I)
• Comprehensive understanding of information security management concepts. (S&I)

• An outstanding defined benefit pension scheme
• 30 days' annual leave in addition to 10.5 public and privilege days (full time equivalent)
• Employee discounts and offers on retail and leisure activities
• Employee assistance programme, providing confidential help and advice
• Flexible working options

Plus many more benefits and wellbeing initiatives that enable our employees to have a great work life balance! For further information on our benefits please see: Benefits of working at UK Research and Innovation (UKRI)

Applicants are required to provide an up–to–date CV and a cover letter outlining their suitability for the role. Further information on how to apply and the selection process is listed on our careers page.

The closing date for applications is Sunday 26 October 2025

UKRI is an Equal Opportunity & Disability Confident Employer.

Please apply online, if you experience any issue applying, please contact (see below)