Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Security Risk Analyst
Apply now
Job Board
Companies
hackajob
Security Risk Analyst

Security Risk Analyst

Full-Time 50000 - 60000 ÂŁ / year (est.) Home office (partial)
Apply now Go Premium
hackajob

At a Glance

  • Tasks: Lead security risk assessments and support compliance activities across the organisation.
  • Company: Join Arqiva, a leader in governance, risk, and compliance with a flexible work culture.
  • Benefits: Enjoy competitive salary, bonuses, generous pension, and wellbeing programmes.
  • Other info: Flexible hybrid working with opportunities for travel and professional growth.
  • Why this job: Make a real impact on security while developing your skills in a dynamic environment.
  • Qualifications: Degree in Cyber Security or related field; experience in risk management is a plus.

The predicted salary is between 50000 - 60000 ÂŁ per year.

Supports and strengthens Arqiva’s governance, risk, and compliance (GRC) capabilities by performing security risk assessments, supporting compliance activities, and helping ensure security policies and controls are effectively embedded across the organisation. Operates as an experienced, senior‑level analyst within the GRC function, providing guidance, conducting complex assessments, and contributing to the organisation’s overall security maturity. The role operates in a flexible, hybrid working environment with a requirement to travel to either our Winchester or London office up to twice a week.

Benefits

  • Competitive salary
  • 10% bonus
  • Work Life Smarter – commitment to a flexible and hybrid working culture
  • Generous pension scheme starting at 6% rising to 10%
  • Wellbeing programme that looks after the whole you
  • Access to multiple learning platforms to support individual development
  • Active and diverse networks that build community, support wellbeing and advocate for change
  • A comprehensive set of benefits including discounts on big brands, gym flex memberships and paid volunteering leave

Accountabilities

  • Lead and perform security risk assessments for internal systems, business processes, and projects.
  • Identify, document, and analyse risks, recommending suitable mitigation actions.
  • Review and challenge risk findings raised by internal teams and auditors.
  • Support remediation planning and track follow‑up activities with stakeholders.
  • Conduct or support compliance checks, security assessments, and control testing.
  • Ensure alignment with regulatory and standards-based requirements (e.g., GDPR, ISO 27001).
  • Participate in internal and external audits by preparing evidence, coordinating responses, and ensuring remediation actions are completed.
  • Contribute to the development, maintenance, and lifecycle management of security policies, standards, and procedures.
  • Provide informed risk, governance, and compliance guidance to teams across the organisation.
  • Ensure governance documentation remains accurate and aligned with evolving business needs.
  • Identify opportunities to enhance risk management, governance processes, and compliance workflows.
  • Support the rollout and adoption of GRC tools, frameworks, or methodologies.
  • Integrate lessons learned from incidents, audits, and assessments into updated processes and documentation.
  • Work closely with cross‑functional teams to support risk‑based decision making.
  • Contribute to the design and delivery of security awareness and training materials.
  • Act as a knowledgeable point of contact for GRC‑related queries.
  • Support wider GRC activities as required, aligned to the E‑10 level of responsibility.

Skills

  • Strong understanding of cyber security principles and practices.
  • Good knowledge of risk management methods and the ability to assess and interpret security risks.
  • Solid understanding of governance and compliance frameworks (e.g., ISO 27001, GDPR).
  • Excellent analytical and problem‑solving skills.
  • Able to communicate technical risk clearly to both technical and non‑technical audiences.
  • Ability to work both independently and collaboratively across teams.
  • Strong stakeholder and relationship‑management skills.

Knowledge & Experience

  • Experience in cyber security, information security, governance, risk, or compliance.
  • Good understanding of security standards and industry best practices.
  • Experience contributing to audits, compliance checks, and risk assessments.
  • Ability to apply governance and compliance requirements in a practical business context.

Qualifications

  • Degree or equivalent experience in Cyber Security, Information Systems, Computer Science, or similar.
  • Certifications such as CISSP, CISM, or CRISC are beneficial but not essential.

Security Clearance

Successful candidates will be required to successfully undergo UK Security Clearance and must have been resident within the UK for at least five years.

Equal Opportunity

We welcome applications from all backgrounds and experiences. If you need any adjustments at any stage of the recruitment process, please reach out to talent@arqiva.com.

Security Risk Analyst employer: hackajob

Arqiva is an exceptional employer that prioritises a flexible and hybrid working culture, allowing Security Risk Analysts to thrive in a supportive environment. With a commitment to employee wellbeing, generous pension schemes, and access to diverse learning platforms, Arqiva fosters professional growth while promoting a strong sense of community through active networks. Located conveniently with travel options to Winchester or London, employees benefit from a comprehensive set of perks, including discounts on major brands and paid volunteering leave, making it a rewarding place to build a meaningful career.
hackajob

Contact Detail:

hackajob Recruiting Team

View hackajob Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Security Risk Analyst

✨Tip Number 1

Network like a pro! Reach out to folks in the industry on LinkedIn or at events. A friendly chat can lead to opportunities that aren’t even advertised yet.

✨Tip Number 2

Prepare for interviews by practising common questions and scenarios related to security risk analysis. We recommend role-playing with a friend to boost your confidence!

✨Tip Number 3

Showcase your skills through real-life examples. When discussing your experience, highlight specific projects where you’ve successfully managed risks or improved compliance.

✨Tip Number 4

Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive!

We think you need these skills to ace Security Risk Analyst

Cyber Security Principles
Risk Management Methods
Governance Frameworks
Compliance Frameworks
Analytical Skills
Problem-Solving Skills
Communication Skills
Stakeholder Management
Relationship Management
ISO 27001
GDPR
Audit Experience
Security Assessments
Control Testing
GRC Tools and Methodologies

Some tips for your application 🫡

Tailor Your CV: Make sure your CV is tailored to the Security Risk Analyst role. Highlight your experience in cyber security, risk management, and compliance. We want to see how your skills align with what we're looking for!

Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about this role and how your background makes you a great fit. We love seeing genuine enthusiasm for the position.

Showcase Relevant Experience: When detailing your experience, focus on specific projects or roles where you've conducted risk assessments or worked with compliance frameworks like ISO 27001 or GDPR. We appreciate concrete examples that demonstrate your expertise.

Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you're keen on joining our team at StudySmarter!

How to prepare for a job interview at hackajob

✨Know Your Cyber Security Basics

Make sure you brush up on your understanding of cyber security principles and practices. Be ready to discuss how these principles apply to risk management and compliance frameworks like ISO 27001 and GDPR. This will show that you’re not just familiar with the terms, but you can also apply them in real-world scenarios.

✨Prepare for Risk Assessment Questions

Expect questions about how you would conduct security risk assessments and what methods you would use to identify and document risks. Think of specific examples from your past experience where you successfully identified risks and recommended mitigation actions. This will demonstrate your analytical skills and problem-solving abilities.

✨Showcase Your Communication Skills

Since you'll need to communicate technical risks to both technical and non-technical audiences, practice explaining complex concepts in simple terms. Prepare to give examples of how you've effectively communicated risk findings or compliance issues in previous roles. This will highlight your ability to bridge the gap between different teams.

✨Engage with Stakeholders

Be ready to discuss how you’ve managed relationships with stakeholders in the past. Think about times when you collaborated with cross-functional teams or supported remediation planning. Showing that you can work well with others and manage relationships will be key to demonstrating your fit for this role.

Security Risk Analyst
hackajob

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>