GRC Security Analyst Apprentice in London

Looking for a new challenge? Take a look at our current vacancies. If you see a vacancy that is right for you, we encourage you to apply!

Join a team where Purpose drives everything we do, Ambition fuels our growth, Trust builds our foundation, and Respect shapes our culture. We're not just hiring — we're inviting you to build the future with us. If you're curious, driven, and ready to leave your mark, this is your invitation to make your next move.

Contract: Initially a Fixed term contract for 24 months to cover the lifetime of the apprenticeship. On successfully passing your apprenticeship qualification, we are committed to offering a suitable permanent position.

Working hours: 35 hours per week is full time. As an apprentice you will be spending 20% of your time on off-the-job learning, which includes attending lectures/tutorials with your training provider.

Salary: £26,936

Location: London, Exchange Tower

Reporting to: Cyber Security Manager

By joining our team, you'll enjoy the best of both worlds – hybrid working and the collaboration of a great office environment. Our hybrid policy sees us all working at least four days across a fortnight in the office, as well as extensive opportunities for personal and career development.

About Us: The Financial Ombudsman Service is an independent, not-for-profit organisation that plays a vital role in UK financial services. Every day we help resolve disputes between consumers or small businesses and their financial service providers.

This apprenticeship role supports the Cyber GRC team to understand, assess and report on cyber risk across our people, processes and technology. You’ll learn how we identify and document risks, evaluate how controls reduce risk, and support compliance with internal standards and regulatory expectations.

What You’ll Do:

• Support internal reviews of cyber security policies, procedures and controls by gathering evidence and completing checklists against agreed standards (e.g., Cyber Essentials, ISO 27001, NIST) under supervision.
• Help evaluate cyber controls by recording what is in place, noting exceptions, and escalating gaps or concerns to the assessor/lead.
• Assist with reviewing systems, processes and data protection measures by gathering information from system owners and keeping evidence organised.
• Help identify practical risk treatments (mitigations) for processes, technology, and outsourced products/services, and support tracking progress to closure.
• Maintain assessment documentation (e.g., working papers, evidence logs, action trackers) so findings and follow-ups can be monitored and reported.
• Work with colleagues across IT, Enterprise Risk, Data Protection and Information Security to gather information and support agreed improvements.
• Support cyber risk assessments by helping identify threats, vulnerabilities and impacts, and capturing results in the agreed templates and risk register.
• Stay curious about industry trends, common cyber threats, and relevant guidance, and share highlights with the team.
• Support regular reporting by updating trackers and helping produce simple summaries of risk and control status (e.g., KPIs/KRIs), with guidance.

Minimum Criteria:

• You will have achieved Three A levels or equivalent and GCSE English and Maths or have significant work experience in a relative field.
• On enrolment onto the apprenticeship (September 2026) you must be at least 18 years of age, you will not be in full-time education or receiving funding for other learning programmes.
• You will need a full UK Right to Work for the duration of the apprenticeship, and have valid and eligible residency status and be a resident in the UK for 3 years before the start of the apprenticeship.

In addition, your CV should show us:

• An interest in cyber security, risk and compliance, with a willingness to learn.
• Some experience (from school, work, volunteering or self-study) of documenting processes, following procedures, or working with evidence.
• A basic understanding of what cyber security controls are (e.g., access control, patching, backups, MFA) and why they matter—or a willingness to learn quickly.

Why You'll Love Working With Us:

We are a values-led organisation. Our values define our culture, influence our decisions, and underpin our vision and strategy. They set out how we play our PART through Purpose, Ambition, Respect and Trust.

Flexibility: Work your way — hybrid, or in-office

Wellbeing: Health plan, gym memberships, mental health support

Growth: We invest in your future with courses, mentorship, promotions

Culture: Diverse. Inclusive. Collaborative. Fun.

We also offer an attractive, competitive salary and flexible benefits to suit our people. Here’s a list of some of the many benefits and perks you can get for working with us:

• 25 days holiday entitlement, with the option to buy extra or sell days
• Generous pension
• Various Family Friendly Policies, including enhanced maternity pay, carers and dependants leave
• Employer provided benefits such as Private medical insurance, virtual GP, Critical illness cover, Life assurance cover, to name a few
• Choice of voluntary benefits including Technology scheme, Cycle to work scheme, Will-writing service amongst others
• Gym membership discounts, and a fully equipped on-site gym open 24/7 in London only

How to apply: To apply, please upload a current CV, which includes your qualifications. If you are still studying, add your predicted grades. We will be reviewing your qualifications to ensure you are eligible for the apprenticeship you have applied for. If you do not hold the required qualifications, you will not be eligible for this Apprenticeship. Applications need to be submitted by 15th June 2026. Due to high application numbers, this advert may end earlier than the date specified, so please don't delay and apply now!

The recruitment process:

• Online tests: The team will review your qualifications once the job advert has closed. If you meet the qualification requirements, you will be emailed tests to complete, which must be completed within 72 hours. The tests are: Cognitive Ability test to assess your problem solving, critical thinking & attention to detail; Workplace Behaviour Assessment, to evaluate if you’d be happy in the role applied for.
• On-demand Video interview: If you pass the previous stage, you will be sent an on-demand video interview to complete. This is your opportunity to tell us why you have applied for an apprenticeship, and how you feel you would be a good fit for the apprenticeship you applied for. You have 72 hours to complete this step. If you are successful, you will be invited to an interview.
• Face to face interview: If you are successful after the video interview, you will be invited to an interview with your future team. Here we are looking to understand if you have the skills to excel in the apprenticeship. It is also your opportunity to learn more about the Financial Ombudsman Service & what you’ll be doing as an apprentice.

The Financial Ombudsman is an Equal Opportunity and disability confident employer. We celebrate diversity and are committed to creating an inclusive environment for all team members. We view diversity as fundamental to our success and welcome applications from underrepresented groups across all communities.

Don’t miss out, be part of the journey and take advantage of this opportunity.

Authenticity of applications: We value authentic personal applications. If we determine that your CV or supporting statement was generated using AI tools, your application may be withdrawn from consideration.