At a Glance
- Tasks: Support cyber security assessments and improve risk management processes.
- Company: Join a values-led organisation with a focus on growth and inclusivity.
- Benefits: Enjoy 25 days holiday, private medical insurance, and flexible working options.
- Other info: Hybrid work environment with excellent career progression opportunities.
- Why this job: Kickstart your career in cyber security with hands-on experience and mentorship.
- Qualifications: A levels or equivalent; interest in cyber security and willingness to learn.
The predicted salary is between 26936 - 26936 £ per year.
Cyber GRC Analyst (Apprentice) for a Fixed term contract of 24 months to cover the lifetime of the apprenticeship, with potential for a permanent position on successful qualification.
Contract: Initially a Fixed term contract for 24 months.
Working hours: 35 hours per week. As an apprentice you will spend 20% of your time on off-the-job learning.
Salary: £26,936.
Location: London, Exchange Tower.
Reporting to: Cyber Security Manager. Hybrid working and an office environment are available and encouraged.
This apprenticeship role supports the Cyber GRC team to understand, assess and report on cyber risk across our people, processes and technology.
Responsibilities:
- Support internal reviews of cyber security policies, procedures and controls by gathering evidence and completing checklists against agreed standards (e.g., Cyber Essentials, ISO 27001, NIST) under supervision.
- Help evaluate cyber controls by recording what is in place, noting exceptions, and escalating gaps or concerns to the assessor/lead.
- Assist with reviewing systems, processes and data protection measures by gathering information from system owners and keeping evidence organised.
- Help identify practical risk treatments (mitigations) for processes, technology, and outsourced products/services, and support tracking progress to closure.
- Maintain assessment documentation (e.g., working papers, evidence logs, action trackers) so findings and follow-ups can be monitored and reported.
- Work with colleagues across IT, Enterprise Risk, Data Protection and Information Security to gather information and support agreed improvements.
- Support cyber risk assessments by helping identify threats, vulnerabilities and impacts, and capturing results in the agreed templates and risk register.
- Stay curious about industry trends, common cyber threats, and relevant guidance, and share highlights with the team.
- Support regular reporting by updating trackers and helping produce simple summaries of risk and control status (e.g., KPIs/KRIs), with guidance.
Minimum Criteria / Qualifications:
- You will have achieved three A levels or equivalent and GCSE English and Maths or have significant work experience in a relative field.
- On enrolment onto the apprenticeship (September 2026) you will be at least 18 years of age; you will not be in full-time education or receiving funding for other learning programmes.
- You will need a full UK Right to Work for the duration of the apprenticeship, and have valid and eligible residency status and be a resident in the UK for 3 years before the start of the apprenticeship.
- In addition your CV should show an interest in cyber security, risk and compliance, with a willingness to learn; some experience documenting processes, following procedures, or working with evidence; and a basic understanding of what cyber security controls are (e.g., access control, patching, backups, MFA) or a willingness to learn quickly.
Benefits and Working Environment:
We are a values-led organisation with a hybrid work policy. We offer flexibility, wellbeing support, growth opportunities and a diverse, inclusive culture. Benefits include 25 days holiday entitlement (plus ability to buy/sell days), pension, family-friendly policies, private medical insurance, and other voluntary benefits. The Financial Ombudsman Service is an equal opportunities employer and is Disability Confident. We encourage applications from underrepresented groups and provide reasonable adjustments on request.
GRC Security Analyst Apprentice employer: Financial Ombudsman Service
The Financial Ombudsman Service is an exceptional employer, offering a supportive and inclusive work environment in the heart of London. With a strong commitment to employee growth, you will benefit from a comprehensive apprenticeship programme, flexible hybrid working arrangements, and a range of wellbeing initiatives. Our values-led culture prioritises diversity and provides ample opportunities for professional development, making it an ideal place for aspiring Cyber GRC Analysts to thrive.
Contact Details:
Financial Ombudsman Service Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land GRC Security Analyst Apprentice
✨Get Involved in Local Cybersecurity Meetups
Join local cybersecurity meetups and workshops to connect with professionals and enthusiasts. These events are goldmines for networking and will help us understand what skills are hot right now. Plus, you never know who’s hiring or who can point you in the direction of an awesome apprenticeship!
✨Leverage Online Platforms and Forums
Dive into platforms like Reddit, Discord, or even specialised forums where cybersecurity pros hang out. Engaging in discussions not only boosts your visibility but can also lead to apprenticeship opportunities shared directly by industry insiders. Let’s make sure we’re in the right spaces to learn and connect!
✨Gain Practical Experience with Capture the Flag Competitions
Participating in Capture the Flag competitions is a fun way to flex your cybersecurity skills and gain real-world experience. Many companies actually scout talent at these events, so when we’re honing our problem-solving abilities, we’re also putting ourselves on the radar of potential employers. Don’t miss out!
✨Apply Directly Through Financial Ombudsman Service’s Website
When you find a potential apprenticeship at Financial Ombudsman Service, jump straight onto their website to apply. Tailor your application to show how your skills and interests align with their needs. Don’t just apply anywhere—let’s make our application to Financial Ombudsman Service shine!
We think you need these skills to ace GRC Security Analyst Apprentice
Some tips for your application 🫡
Highlight Your Technical Skills:In the cybersecurity field, your technical skills are paramount. Make sure to emphasise any relevant skills you have, such as knowledge of firewalls, network security, or experience with coding languages like Python. Listing any specific software or tools you've worked with can really catch the hiring manager's eye!
Show Off Your Certifications:If you've got any cybersecurity certifications, such as CompTIA Security+ or CEH, mention them prominently in your application. These qualifications not only prove your commitment to the field but also showcase your foundational knowledge, which is super valuable for an apprenticeship role at Financial Ombudsman Service.
Express Your Eagerness to Learn:Since this is an apprenticeship, make sure to highlight your motivation and willingness to learn. In your cover letter, share your passion for cybersecurity and explain why you want to grow your skills with us at Financial Ombudsman Service. This will show your potential as an apprentice and help you stand out!
Include Relevant Projects or Experiences:If you've participated in any relevant projects, whether at school or independently, be sure to include them! Talk about any practical experiences, like securing a network during a class project or attending cybersecurity workshops. This not only showcases your hands-on skills but also shows your proactive approach to learning.
How to prepare for a job interview at Financial Ombudsman Service
✨Know Your Cyber Basics!
Familiarise yourself with the key concepts in cybersecurity, like vulnerability assessments and firewalls. They might throw some technical questions your way to gauge your understanding, so be ready to tackle those with confidence!
✨Show Off Your Projects
Since this is an apprenticeship, highlight any relevant projects or coursework you've done. If you've created a small network security project or contributed to an open-source initiative, bring it up! It's a great way to demonstrate your passion and practical skills.
✨Brush Up on Tools of the Trade
Make sure you're familiar with cybersecurity tools like Wireshark or Metasploit. Being able to discuss these tools and how you've used or would use them in real-world scenarios will show that you're not just about theory but can apply your knowledge hands-on.
✨Express Your Eagerness to Learn
As an apprentice, your potential for growth is a huge factor. Be ready to share how you plan to develop your skills further and express a genuine enthusiasm for cybersecurity. They’re looking for someone who's keen to dive deeper into the field and make a contribution to Financial Ombudsman Service.
