Cyber Security Analyst - Governance, Risk and Culture (GRC) in London

About Baringa

Baringa is a global consulting firm that partners with leaders to drive change and create value. With deep industry expertise, and enabled by advanced technology, the firm helps clients to deliver with greater confidence and certainty. The firm works across energy and resources, financial services, government and public sector, consumer products and retail, pharmaceuticals and life sciences, manufacturing, and technology, media and telecoms, with capabilities spanning strategy, transformation and operational excellence – all powered by advanced technology, data, AI and digital innovation.

Overview

We are currently looking for a Cyber Security Analyst to join our Governance, Risk and Culture (GRC) capability within the wider Cyber Security Team, where you will play a key role in strengthening the firm’s security posture, ensuring compliance, and embedding a cyber-conscious culture across the organisation. The role contributes to the delivery of governance, risk management and assurance activities, including supplier due diligence, audit responses, and the development and maintenance of security policies, standards and controls.

What will you be doing?

• Develop a complete understanding of Baringa’s technology and information systems.
• Lead in the response to RFPs/audits, including supplier security due diligence and third-party audit and assurance activities.
• Identify and communicate current and emerging security threats and cyber risks.
• Support a program of awareness-raising and training to deliver compliance and to foster a cyber conscious culture across the company.
• Assist with the definition, implementation and maintenance of corporate security policies, standards and procedures.
• Provide ‘hands on’ assistance, particularly in technical control implementation and incident response.
• Work as part of a team to communicate ideas, suggestions and solutions that achieve the firm’s long-term objectives, especially the GRC Strategy.
• Align organisational security strategy and infrastructure with overall business and information technology strategy.
• Manage company compliance with information security, policies, standards, contractual obligations and guidance through business managers and champions providing advice, support and guidance on risk based good practice.
• Lead on and produce technical security MI in support of governance and vulnerability management engagements.
• Support client engagement leads on client queries and requests regarding Baringa’s information technology security policies and processes.

What are we looking for?

We recruit individuals at all levels based on merit. Some of the key skills we are looking for:

• Experience in full-time operational Cyber Security GRC, or Cyber Security role.
• Experience of compliance requirements for cloud technologies stacks such as Microsoft and AWS.
• Experience utilising emerging technologies, such as AI, to design and implement security solutions.
• Thorough understanding of relevant industry security standards and protocols including ISO27001, NIST, NSCS CAF, SOC, NIS 2 Directive and NCSC Cloud Security Principles.
• Background of consulting and engineering the design and development of security best practices.
• Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems.
• Assist in risk assessment procedures, policy formation, role-based authorisation methodologies, authentication technologies and security attack pathologies.
• Growth mentality with excellent problem-solving skills.
• A self-motivated individual with a “can do” attitude.
• An excellent communicator who can help develop good Cyber practices.
• Strong leadership, stakeholder management, and project/team-building skills.

What a career at Baringa will give you

Putting People First. Baringa is a People First company and wellbeing is at the forefront of our culture. We recognise the importance of work-life balance and flexible working and provide our staff amazing benefits.

• Generous Annual Leave Policy: We provide our employees with 5 weeks of annual leave, fully available at the start of each year.
• Flexible Working: We have implemented a hybrid working policy and introduced more flexibility around taking unpaid leave.
• Corporate Responsibility Days: All our employees get 3 every year to help social and environmental causes.
• Wellbeing Fund: We’ve introduced our annual People Fund to support this by offering every individual a fund to support and manage their wellbeing.
• Profit Share Scheme: All employees participate in the Baringa Group Profit Share Scheme.

Diversity and Inclusion

We are proud to be an Equal Opportunity Employer. We believe that creating an environment where everyone feels a sense of belonging is central to our culture.

Using business as a force for good. We maintain high standards of environmental performance and transparency, which can be seen through our commitment to Net Zero.

Join us. All applications received will be reviewed by a member of our Talent Acquisition team. We never rely solely on automated screening or AI tools to make hiring decisions.