Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct security diagnostics and identify vulnerabilities in applications.
- Company: Dynamic organisation focused on enhancing application security.
- Benefits: Competitive daily rate, flexible work environment, and opportunities for professional growth.
- Why this job: Play a vital role in safeguarding applications and influencing security strategy.
- Qualifications: Experience in security risk analysis and application security required.
- Other info: Collaborate with senior security leaders and contribute to impactful projects.
Rate: £500-£550 per day Inside IR35
Duration: 6 months initially (will extend, 6 month rolling)
Location: Ipswich 3 days, 2 days remote
Position Summary:
We are seeking a highly skilled Security Risk Analyst with a strong background in application security, vulnerability management, and risk assessment. In this role, you will be responsible for conducting security diagnostics across a suite of applications, identifying potential vulnerabilities, and delivering detailed risk assessment reports to the CISO. This position does not involve remediation but plays a critical role in uncovering and reporting risks within the organisation’s application landscape.
Key Responsibilities:
- Conduct security risk diagnostics on enterprise applications to identify vulnerabilities, weaknesses, and compliance gaps.
- Perform comprehensive vulnerability assessments and penetration testing to evaluate application-level security posture.
- Develop detailed risk reports and vulnerability findings, including risk impact and likelihood, and deliver to the CISO.
- Collaborate with cross-functional teams to collect necessary data and context for risk assessments, while maintaining an independent risk evaluation.
- Support the organisation’s GRC (Governance, Risk, and Compliance) objectives by aligning assessments with security frameworks and standards.
- Assist with security audits and help prepare documentation for internal or external reviews.
- Apply industry-recognized standards and frameworks such as NIST, ISO 27001, CIS Controls, in assessments and recommendations.
- Leverage past penetration testing, vulnerability management, and incident response experience to identify and contextualize threats effectively.
- Partner with and provide direct insights to CISOs and senior security leadership, contributing to overall security strategy and risk posture awareness.
Required Skills & Qualifications:
- Senior profile with experience in security risk analysis, application security, or vulnerability management.
- OSPC or CISP.
- Proven experience with security frameworks such as NIST, ISO 27001, CIS Controls – nice to have.
- Strong knowledge of vulnerability scanning tools (e.g., Qualys, Tenable, Nexpose, Burp Suite).
- Solid understanding of risk assessment methodologies and ability to communicate technical risks in business terms.
- Hands-on background in penetration testing, incident response, or vulnerability management with a move into risk analysis preferred.
- Experience collaborating with or reporting to CISOs and senior security stakeholders.
- Excellent analytical, documentation, and presentation skills.
Preferred Qualifications:
- Security certifications such as CISSP, CISM, CRISC, OSCP, CEH, or equivalent.
- Experience working in regulated industries (e.g., finance, healthcare, government).
- Familiarity with risk scoring methodologies (e.g., CVSS, FAIR).
Security Risk Analyst in Ipswich employer: Auxo Talent
Contact Detail:
Auxo Talent Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Risk Analyst in Ipswich
✨Tip Number 1
Network like a pro! Reach out to your connections in the security field, attend industry meetups, and engage on platforms like LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can help you land that Security Risk Analyst role.
✨Tip Number 2
Prepare for those interviews by brushing up on your technical skills and understanding of security frameworks like NIST and ISO 27001. We recommend doing mock interviews with friends or using online resources to get comfortable discussing your experience with vulnerability management and risk assessment.
✨Tip Number 3
Showcase your expertise! Create a portfolio that highlights your past projects, especially those involving penetration testing and risk analysis. This will give potential employers a clear view of your capabilities and how you can contribute to their security strategy.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might be perfect for you. Plus, applying directly can sometimes give you an edge over other candidates. Let’s get you that Security Risk Analyst position!
We think you need these skills to ace Security Risk Analyst in Ipswich
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application security and risk assessment. We want to see how your skills align with the role, so don’t be shy about showcasing relevant projects or achievements!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about security risk analysis and how your background makes you a perfect fit for our team. Keep it concise but impactful!
Showcase Your Technical Skills: Don’t forget to mention your familiarity with vulnerability scanning tools and security frameworks. We love seeing candidates who can communicate technical risks in business terms, so highlight that ability!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Auxo Talent
✨Know Your Security Frameworks
Make sure you brush up on your knowledge of security frameworks like NIST, ISO 27001, and CIS Controls. Be ready to discuss how you've applied these in past roles, as this will show your understanding of the industry standards that are crucial for the role.
✨Prepare for Technical Questions
Expect to dive deep into technical discussions about vulnerability management and risk assessment methodologies. Practise explaining complex concepts in simple terms, as you'll need to communicate technical risks effectively to non-technical stakeholders.
✨Showcase Your Analytical Skills
Be prepared to demonstrate your analytical skills through real-life examples. Think of specific instances where you identified vulnerabilities or conducted risk assessments, and be ready to explain your thought process and the impact of your findings.
✨Engage with Cross-Functional Teams
Highlight your experience collaborating with cross-functional teams. Discuss how you've gathered data and context for risk assessments in the past, as this will show your ability to work independently while still being a team player.
