Senior Information Security Risk Analyst in Leeds

MPS has a new opportunity as a Senior Information Security Risk Analyst to play a pivotal role in strengthening and evolving our cyber and information security capabilities. Acting as a trusted expert, you'll lead complex security initiatives, drive the design and assurance of effective security controls, and manage security risks in line with organisational priorities, regulatory requirements, and risk appetite. Working with significant autonomy and influence, you'll translate complex technical and regulatory challenges into pragmatic business outcomes while helping to shape security best practice, mentor colleagues, and enhance organisational resilience and security maturity.

As our new Senior Information Security Risk Analyst, you will also:

• Lead security risk assessments for complex systems, suppliers, projects, and business change initiatives.
• Assess the effectiveness of security controls, identifying gaps and supporting pragmatic risk treatment plans.
• Provide expert security risk guidance for projects, procurement, and supplier onboarding activities.
• Produce clear, high quality risk assessments, treatment plans, exceptions, and management reporting.
• Deliver risk based advice and constructive challenge to technical and business stakeholders.
• Support the continuous improvement of information security risk processes and ways of working.
• Mentor junior analysts, providing guidance and quality assurance to strengthen team capability.
• Support audit, compliance, and assurance activities, ensuring findings are tracked through to resolution.
• Monitor emerging threats, regulatory changes, and compliance requirements, escalating risks where appropriate.

The Ideal Candidate We are looking for:

• Proven experience in information security risk management, governance, and security assurance within complex or regulated environments.
• Strong knowledge of cyber security risks, controls, cloud technologies, and regulatory frameworks.
• Experience leading security risk assessments across systems, suppliers, projects, and change initiatives.
• Ability to translate complex technical risks into clear, pragmatic business outcomes.
• Excellent stakeholder management, communication, and influencing skills, including engagement with senior leaders.
• Confident working autonomously while contributing to a collaborative, high performing security culture.
• Strong analytical skills, professional judgement, and a proactive approach to risk management.
• Experience mentoring or supporting junior analysts and promoting security best practice.
• Relevant certifications such as CISSP, CISM, CRISC, or ISO 27001 qualifications are desirable.

Package Description:

• Discretionary on-target bonus of 10%; up to a max 20% based on performance.
• 11% pension contribution (3% from you, 8% from us – optional additional matched 3% contributions, e.g., 6% from you, 11% from us).
• 25 days annual leave.
• Flexible public holidays and option to buy/sell additional leave.
• Private Medical Cover.
• Car Salary Sacrifice scheme.
• 6x salary death in service.
• Holistic health and wellbeing support package.
• A truly flexible hybrid-working arrangement.
• A culture that promotes inclusivity, wellbeing and rewards hard work.

About the Company:

Medical Protection Society (MPS) is the world's leading protection organisation for Doctors, Dentists and healthcare professionals. We protect and support the professional interests of over 350,000 Members around the world. We are a not‑for‑profit organisation, meaning our Members' premiums are kept safe should our Members require support for complaints or claims arising from professional practice, or invested into bettering the organisation, our colleagues and our products. Our philosophy is to support safe practice in medicine and dentistry by helping to avert problems in the first place. We also actively campaign for regulatory and legal reforms that benefit Members and the wider healthcare professions.