Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct application risk assessments and manage security risks for a global team.
- Company: Join a leading global Information Security team focused on safeguarding applications.
- Benefits: Enjoy hybrid work options and competitive pay, with potential for contract extension.
- Why this job: Make an impact in security while collaborating with diverse teams and enhancing your skills.
- Qualifications: 5+ years in Risk Management, strong understanding of security frameworks, and excellent communication skills required.
- Other info: Opportunity to work in a multinational environment with exposure to advanced risk management tools.
The predicted salary is between 43200 - 72000 £ per year.
Immediate contract for an experienced Risk Analyst - Application Risk Assessment to help deliver a project for a global Information Security team. You will support the evaluation and management of security risks introduced by applications across the enterprise.
Key Responsibilities:
- Conduct Application Risk Assessments (ISARA) in line with global security standards and frameworks.
- Serve as the liaison between IS, IT, and business stakeholders to identify and assess application-related risks.
- Facilitate the risk evaluation process, including formatting, data collection, and impact assessments.
- Perform control assessments to determine control effectiveness.
- Use defined risk methodologies (e.g., FAIR, ISO 31000) to rate risks and update internal risk registers.
- Propose, document, and follow through on remediation plans and action items.
- Monitor risk remediation efforts and ensure timely updates in governance tools.
- Review major application changes and ensure associated risk documentation is up to date.
- Provide weekly and monthly risk reporting, including key metrics and residual risk summaries.
- Represent Information Security in cross-functional business discussions, clearly articulating risks, controls, and policy alignment.
Required Skills & Experience:
- 5+ years of experience in Risk Management and/or Information Security.
- Proven experience conducting application-level security risk assessments.
- Strong understanding of secure software and network architecture.
- Risk management frameworks (e.g., ISO 3100X, NIST 800-30/37/39, ENISA, EBIOS, OCTAVE, FAIR).
- OWASP Top 10, encryption, data classification, and secure data flows.
- Ability to read and interpret HLDs/LLDs to identify risk controls and gaps.
- Expertise with Microsoft Office suite (Excel, Word, PowerPoint, SharePoint).
- Excellent verbal and written communication skills, including experience communicating with C-level stakeholders.
- Background in multinational environments with cross-functional collaboration.
- Strong attention to detail with advanced analytical and reporting capabilities.
Preferred Qualifications:
- Industry certifications (e.g., CISSP, CISM, CRISC).
- Experience working with Mitre ATT&CK, ISO 27001, or similar InfoSec frameworks.
- Exposure to enterprise-grade risk management tools and reporting platforms.
Risk Analyst employer: Networking People (UK) Limited
Contact Detail:
Networking People (UK) Limited Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Risk Analyst
✨Tip Number 1
Familiarise yourself with the specific risk management frameworks mentioned in the job description, such as ISO 31000 and NIST. Understanding these frameworks will not only help you during interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the information security field, especially those who have experience in application risk assessments. Engaging with industry peers can provide insights into the role and may even lead to referrals.
✨Tip Number 3
Prepare to discuss real-world examples of how you've conducted application-level security risk assessments in the past. Be ready to articulate the methodologies you used and the outcomes of your assessments.
✨Tip Number 4
Stay updated on the latest trends and threats in information security, particularly those related to application security. This knowledge will help you engage in meaningful discussions during interviews and show that you're proactive about your professional development.
We think you need these skills to ace Risk Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Risk Management and Information Security. Focus on your skills in conducting application-level security risk assessments and your understanding of risk management frameworks.
Craft a Strong Cover Letter: Write a cover letter that specifically addresses the key responsibilities mentioned in the job description. Emphasise your experience with secure software architecture, OWASP Top 10, and your ability to communicate effectively with stakeholders.
Showcase Relevant Skills: In your application, clearly outline your expertise with Microsoft Office tools and any industry certifications you hold, such as CISSP or CISM. Mention your familiarity with risk methodologies like FAIR and ISO 31000.
Proofread Your Application: Before submitting, carefully proofread your application for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial for a Risk Analyst role.
How to prepare for a job interview at Networking People (UK) Limited
✨Know Your Risk Frameworks
Familiarise yourself with key risk management frameworks such as ISO 31000 and NIST. Be prepared to discuss how you've applied these frameworks in your previous roles, especially in relation to application risk assessments.
✨Demonstrate Technical Knowledge
Showcase your understanding of secure software and network architecture. Be ready to explain how you interpret high-level designs (HLDs) and low-level designs (LLDs) to identify security risks and controls.
✨Communicate Effectively
Since you'll be liaising with various stakeholders, practice articulating complex security concepts in simple terms. Highlight your experience communicating with C-level executives and how you ensure alignment on risk policies.
✨Prepare for Scenario Questions
Expect scenario-based questions where you may need to assess risks or propose remediation plans. Think of examples from your past experiences where you successfully managed application-related risks and the outcomes of those actions.
