Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security risk assessments and support compliance activities to enhance organisational security.
- Company: Join Arqiva, a leader in governance, risk, and compliance with a flexible working culture.
- Benefits: Enjoy competitive salary, bonuses, generous pension, and wellbeing programmes.
- Other info: Flexible hybrid work, travel to Winchester or London office up to twice a week.
- Why this job: Make a real impact on security while developing your skills in a dynamic environment.
- Qualifications: Degree in Cyber Security or related field; experience in risk management is a plus.
The predicted salary is between 50000 - 60000 ÂŁ per year.
Supports and strengthens Arqiva’s governance, risk, and compliance (GRC) capabilities by performing security risk assessments, supporting compliance activities, and helping ensure security policies and controls are effectively embedded across the organisation. Operates as an experienced, senior‑level analyst within the GRC function, providing guidance, conducting complex assessments, and contributing to the organisation’s overall security maturity. The role operates in a flexible, hybrid working environment with a requirement to travel to either our Winchester or London office up to twice a week.
Benefits
- Competitive salary
- 10% bonus
- Work Life Smarter – commitment to a flexible and hybrid working culture
- Generous pension scheme starting at 6% rising to 10%
- Wellbeing programme that looks after the whole you
- Access to multiple learning platforms to support individual development
- Active and diverse networks that build community, support wellbeing and advocate for change
- A comprehensive set of benefits including discounts on big brands, gym flex memberships and paid volunteering leave
Accountabilities
- Lead and perform security risk assessments for internal systems, business processes, and projects.
- Identify, document, and analyse risks, recommending suitable mitigation actions.
- Review and challenge risk findings raised by internal teams and auditors.
- Support remediation planning and track follow‑up activities with stakeholders.
- Conduct or support compliance checks, security assessments, and control testing.
- Ensure alignment with regulatory and standards-based requirements (e.g., GDPR, ISO 27001).
- Participate in internal and external audits by preparing evidence, coordinating responses, and ensuring remediation actions are completed.
- Contribute to the development, maintenance, and lifecycle management of security policies, standards, and procedures.
- Provide informed risk, governance, and compliance guidance to teams across the organisation.
- Ensure governance documentation remains accurate and aligned with evolving business needs.
- Identify opportunities to enhance risk management, governance processes, and compliance workflows.
- Support the rollout and adoption of GRC tools, frameworks, or methodologies.
- Integrate lessons learned from incidents, audits, and assessments into updated processes and documentation.
- Work closely with cross‑functional teams to support risk‑based decision making.
- Contribute to the design and delivery of security awareness and training materials.
- Act as a knowledgeable point of contact for GRC‑related queries.
- Support wider GRC activities as required, aligned to the E‑10 level of responsibility.
Skills
- Strong understanding of cyber security principles and practices.
- Good knowledge of risk management methods and the ability to assess and interpret security risks.
- Solid understanding of governance and compliance frameworks (e.g., ISO 27001, GDPR).
- Excellent analytical and problem‑solving skills.
- Able to communicate technical risk clearly to both technical and non‑technical audiences.
- Ability to work both independently and collaboratively across teams.
- Strong stakeholder and relationship‑management skills.
Knowledge & Experience
- Experience in cyber security, information security, governance, risk, or compliance.
- Good understanding of security standards and industry best practices.
- Experience contributing to audits, compliance checks, and risk assessments.
- Ability to apply governance and compliance requirements in a practical business context.
Qualifications
- Degree or equivalent experience in Cyber Security, Information Systems, Computer Science, or similar.
- Certifications such as CISSP, CISM, or CRISC are beneficial but not essential.
Security Clearance
Successful candidates will be required to successfully undergo UK Security Clearance and must have been resident within the UK for at least five years.
Equal Opportunity
We welcome applications from all backgrounds and experiences. If you need any adjustments at any stage of the recruitment process, please reach out to.
Security Risk Analyst in London employer: hackajob
Contact Detail:
hackajob Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Risk Analyst in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at events. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Prepare for interviews by researching Arqiva’s GRC practices. Show us you know your stuff and how you can contribute to their security maturity. Tailor your examples to highlight relevant experience!
✨Tip Number 3
Don’t just apply and wait! Follow up on your application through our website. A quick message can show your enthusiasm and keep you on our radar.
✨Tip Number 4
Practice your communication skills. You’ll need to explain complex security risks clearly, so get comfortable talking about technical stuff in simple terms. It’ll make a big difference!
We think you need these skills to ace Security Risk Analyst in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Risk Analyst role. Highlight your experience in cyber security, risk management, and compliance. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about security risk analysis and how you can contribute to our GRC capabilities. Keep it engaging and relevant to the job description.
Showcase Your Skills: In your application, don't forget to showcase your analytical and problem-solving skills. Mention specific examples where you've successfully assessed risks or contributed to compliance checks. We love seeing real-world applications of your expertise!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it’s super easy!
How to prepare for a job interview at hackajob
✨Know Your Stuff
Make sure you brush up on your knowledge of cyber security principles and risk management methods. Be ready to discuss how you've applied these in past roles, especially in relation to compliance frameworks like ISO 27001 and GDPR.
✨Showcase Your Analytical Skills
Prepare to demonstrate your analytical and problem-solving skills during the interview. Think of specific examples where you've identified risks and recommended mitigation actions, as this will show your ability to think critically about security issues.
✨Communicate Clearly
Practice explaining complex technical concepts in simple terms. You'll need to communicate effectively with both technical and non-technical audiences, so being able to articulate your thoughts clearly is key.
✨Engage with Stakeholders
Be ready to discuss your experience working with cross-functional teams and managing stakeholder relationships. Highlight any instances where you've successfully collaborated to enhance governance processes or compliance workflows.