Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Analyse security controls and conduct risk assessments to protect DWP's digital assets.
- Company: Join DWP, the UK's largest government department, making a difference for millions daily.
- Benefits: Enjoy hybrid working, flexible hours, generous holidays, and a fantastic pension scheme.
- Why this job: Be part of a dynamic team using cutting-edge tech to enhance public services and security.
- Qualifications: Experience in technical security analysis and risk management is essential.
- Other info: Work from various locations and enjoy a supportive, award-winning workplace culture.
The predicted salary is between 52500 - 102000 £ per year.
Pay up to £73,517 plus 28.97% employer pension contributions, hybrid working, flexible hours, and a truly great work-life balance.
DWP Digital with Purpose. We have an exciting opportunity to join our community of experts at DWP Digital as a Cyber Security Risk Analyst within our Digital Security Risk Management team (DSRM), which is part of the wider Digital Security function. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year, to support millions of daily users.
Our DWP Digital teams are using fresh ideas and leading-edge technologies to create innovative, scalable, and user-centric digital solutions, positively changing how government work. We design, build, and run digital public services, making them simpler and faster for everyone. The scale of what we do is extraordinary, and our purpose is unique. We’d love you to join us.
What skills, knowledge and experience will you need?
- Significant experience of technical security controls analysis across various platforms such as networks, cloud, legacy, web-based applications.
- Working knowledge of current technical controls in the 8 CISSP security domains.
- Experience of scoping and planning security testing through interpretation of architecture diagrams.
- Experience of using evidence and knowledge to support accurate, expert advice, decisions, and recommendations.
- Evidencing the ability to make proportionate, risk-informed decisions about current and future security investments to protect a large-based business organisation's assets and improve their security risk posture.
- Evidencing experience of working with product owners and Subject Matter Experts to enable them to make well-informed risk-based decisions whilst leading and influencing the management of tactical and strategic risks.
- Proficient at writing and presenting articulate formal risk reports to senior management.
- Threat Understanding - Uses lessons learned to maintain an understanding of the organisation's attack surface and uses local and strategic threat information in decision-making and planning.
- Significant evidence of researching and evaluating business processes in alignment to known/emerging Security risks and controls to ensure expert advice is provided.
You and your role
The Cyber Security Risk Analyst role will be focused on the delivery of 1st line security controls analysis validating they provide the correct security outcomes for DWP and undertaking deep risk analysis of any identified control gaps or failings. You will be writing formal risk reports for presentation to Senior Leaders, which must be factually correct, articulate, and clear. Ensuring these are framed in a way which reflects all compensatory controls in place and are easily understood by technical delivery teams as well as non-technical senior business leaders so they can make informed management decisions.
The roles will not have any direct line management responsibility, but successful candidates will have the autonomy to make empowered decisions and problem-solve within the technical services they lead in collaboration with peers.
Details
- Location: You’ll join us in one of our brilliant digital hubs in Birmingham, Blackpool, Leeds, Manchester, Newcastle, or Sheffield, whichever is most convenient for you.
- Hybrid Working: We work a hybrid model - you’ll spend some time working at home and some time collaborating face to face in a hub.
- Pay: We offer competitive pay of up to £73,517.
- Pension: You’ll get a brilliant civil service pension with employer contributions worth 28.97%, worth over £16,000 per year.
- Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You’ll also get all the usual public holidays.
We have a broad benefits package built around your work-life balance which includes:
- An award-winning environment and culture: Employer of the Year 2023 (Women In IT Awards), Founders Award for Outstanding Digital Leadership 2023 (Digital 100).
- Flexible working including flexible hours and flex-friendly policies.
- Time off volunteering and charitable giving.
- Bring your authentic self to work with 'I Can Be Me in DWP'.
- Discounts and savings on shopping, fun days out, and more.
- Interest-free loans to buy a bike or a season ticket, so it’s even easier for you to get to work and start making a difference.
- Professional development, coaching, mentoring, and career progression opportunities.
Process: We know your time is valuable, so our application and selection process are just two stages:
- Apply: complete your application on Civil Service Jobs. There’ll be full instructions when you click through.
- Interview: a single stage interview online.
CLICK APPLY for more information and to start your application.
Cyber Security Risk Analyst employer: Graphics Unlimited (Vic) Pty Ltd
Contact Detail:
Graphics Unlimited (Vic) Pty Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Risk Analyst
✨Tip Number 1
Familiarise yourself with the 8 CISSP security domains. Understanding these areas will not only help you in interviews but also demonstrate your commitment to the role and your knowledge of current technical controls.
✨Tip Number 2
Network with professionals in the cyber security field, especially those who work in government departments or similar organisations. Engaging with them can provide insights into the role and may even lead to referrals.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've identified and mitigated security risks. Being able to articulate your thought process and decision-making will set you apart during the interview.
✨Tip Number 4
Stay updated on the latest trends and threats in cyber security. Showing that you're proactive about learning and adapting to new challenges will impress the interviewers and highlight your passion for the field.
We think you need these skills to ace Cyber Security Risk Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in technical security controls analysis and risk management. Use keywords from the job description to demonstrate that you meet the specific requirements for the Cyber Security Risk Analyst role.
Craft a Strong Cover Letter: Write a cover letter that clearly outlines your understanding of the role and how your skills align with the responsibilities. Mention your experience with security testing, risk analysis, and your ability to communicate complex information effectively to both technical and non-technical audiences.
Showcase Relevant Experience: In your application, provide concrete examples of past projects or roles where you successfully scoped and planned security testing or made risk-informed decisions. This will help illustrate your capability to handle the responsibilities of the position.
Proofread Your Application: Before submitting, carefully proofread your application materials to ensure there are no spelling or grammatical errors. A well-presented application reflects your attention to detail, which is crucial for a Cyber Security Risk Analyst.
How to prepare for a job interview at Graphics Unlimited (Vic) Pty Ltd
✨Understand the Role
Make sure you thoroughly understand the responsibilities of a Cyber Security Risk Analyst. Familiarise yourself with the key skills mentioned in the job description, such as technical security controls analysis and risk management processes.
✨Prepare for Technical Questions
Expect to be asked about your experience with various platforms and security controls. Brush up on the 8 CISSP security domains and be ready to discuss how you've applied this knowledge in past roles.
✨Showcase Your Communication Skills
Since you'll be writing formal risk reports for senior management, practice articulating complex information clearly and concisely. Be prepared to demonstrate how you can tailor your communication for both technical and non-technical audiences.
✨Demonstrate Problem-Solving Abilities
Be ready to discuss specific examples where you've identified control gaps or failings and how you approached resolving them. Highlight your ability to make informed, risk-based decisions that align with business objectives.