At a Glance
- Tasks: Lead security risk assessments and support compliance activities to enhance organisational security.
- Company: Join Arqiva, a leader in governance, risk, and compliance with a flexible working culture.
- Benefits: Earn up to £55,000 with a generous pension scheme and unique wellbeing programme.
- Other info: Enjoy a hybrid work model and opportunities for personal development in a diverse community.
- Why this job: Make a real impact on security while developing your skills in a dynamic environment.
- Qualifications: Degree in Cyber Security or related field; experience in risk management and compliance is a plus.
The predicted salary is between 50000 - 55000 £ per year.
Supports and strengthens Arqiva’s governance, risk, and compliance (GRC) capabilities by performing security risk assessments, supporting compliance activities, and helping ensure security policies and controls are effectively embedded across the organisation. Operates as an experienced, senior‑level analyst within the GRC function, providing guidance, conducting complex assessments, and contributing to the organisation’s overall security maturity.
We operate a flexible, hybrid working environment – requirement to travel to either our Winchester or London office up to twice a week.
Benefits
- Up to £55,000
- Work Life Smarter – commitment to a flexible and hybrid working culture
- Generous pension scheme starting at 6% rising to 10%
- Unique wellbeing programme that looks after the whole you
- Access to multiple learning platforms to support your individual development
- Active and diverse networks that build community, support wellbeing and advocate for change
- Comprehensive set of benefits including discounts on big brands, gym flex memberships and paid volunteering leave
Accountabilities
- Lead and perform security risk assessments for internal systems, business processes, and projects.
- Identify, document, and analyse risks, recommending suitable mitigation actions.
- Review and challenge risk findings raised by internal teams and auditors.
- Support remediation planning and track follow‑up activities with stakeholders.
- Conduct or support compliance checks, security assessments, and control testing.
- Ensure alignment with regulatory and standards-based requirements (e.g., GDPR, ISO 27001).
- Participate in internal and external audits by preparing evidence, coordinating responses, and ensuring remediation actions are completed.
- Contribute to the development, maintenance, and lifecycle management of security policies, standards, and procedures.
- Provide informed risk, governance, and compliance guidance to teams across the organisation.
- Ensure governance documentation remains accurate and aligned with evolving business needs.
- Identify opportunities to enhance risk management, governance processes, and compliance workflows.
- Support the rollout and adoption of GRC tools, frameworks, or methodologies.
- Integrate lessons learned from incidents, audits, and assessments into updated processes and documentation.
- Work closely with cross‑functional teams to support risk‑based decision making.
- Contribute to the design and delivery of security awareness and training materials.
- Act as a knowledgeable point of contact for GRC‑related queries.
- Support wider GRC activities as required, aligned to the E‑10 level of responsibility.
Skills
- Strong understanding of cyber security principles and practices.
- Good knowledge of risk management methods and the ability to assess and interpret security risks.
- Solid understanding of governance and compliance frameworks (e.g., ISO 27001, GDPR).
- Excellent analytical and problem‑solving skills.
- Able to communicate technical risk clearly to both technical and non‑technical audiences.
- Ability to work both independently and collaboratively across teams.
- Strong stakeholder and relationship‑management skills.
Knowledge & Experience
- Experience in cyber security, information security, governance, risk, or compliance.
- Good understanding of security standards and industry best practices.
- Experience contributing to audits, compliance checks, and risk assessments.
- Ability to apply governance and compliance requirements in a practical business context.
Qualifications
- Degree or equivalent experience in Cyber Security, Information Systems, Computer Science, or similar.
- Certifications such as CISSP, CISM, or CRISC are beneficial but not essential.
Security Clearance
Successful candidate will be required to successfully undergo UK Security Clearance and must have been resident within the UK for at least five years.
Commitment to Diversity & Inclusion
We’re committed to building a workplace where everyone feels valued, heard and empowered to succeed. We welcome applications from all backgrounds and experiences, and we work hard to remove barriers so every colleague can thrive. If you need any adjustments at any stage of the recruitment process, please reach out to us.
Security Risk Analyst in London employer: Arqiva
Arqiva is an exceptional employer that prioritises a flexible and hybrid working culture, allowing employees to balance their professional and personal lives effectively. With a strong commitment to employee wellbeing, generous pension schemes, and access to diverse learning platforms, Arqiva fosters an environment where individuals can thrive and grow in their careers. The company's active community networks and comprehensive benefits package further enhance the workplace experience, making it an attractive choice for those seeking meaningful and rewarding employment in the security risk domain.
StudySmarter Expert Advice🤫
We think this is how you could land Security Risk Analyst in London
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like Arqiva looking for candidates who are engaged and informed.
We think you need these skills to ace Security Risk Analyst in London
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at Arqiva. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at Arqiva
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with Arqiva’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!
