At a Glance
- Tasks: Protect our community by providing proactive cyber risk analysis and safeguarding digital systems.
- Company: Join a caring council dedicated to supporting diverse communities and enhancing security.
- Benefits: Competitive pay, flexible working, continuous training, and comprehensive wellbeing perks.
- Other info: Be part of a dedicated team serving the local community three days a week.
- Why this job: Make a real impact post-cyber-attack and shape our security approach from day one.
- Qualifications: Degree in ICT or Computer Science, with experience in cyber security and risk management.
The predicted salary is between 40000 - 50000 £ per year.
Protect our information, systems and services - clear risk analysis to secure our community. As a Security Risk Analyst, you'll provide proactive cyber risk analysis to safeguard our digital systems and protect resident data. We're all in to strengthen our security posture and deliver resilient services for everyone.
Working Style: You'll be based in the Borough for three days a week, playing a key role in serving the local community. Whether you're working on-site or collaboratively across teams, you'll be part of a dedicated team helping to keep our organisation secure.
What you'll be doing: Your days will be varied, focusing on providing clear, proactive and evidence-based cyber risk analysis to help us understand, prioritise and manage threats. You'll review updates to the cyber risk register, track agreed actions, identify vulnerabilities and escalate concerns when progress slows. Collaboration is vital, and you'll work closely with ICT, Information Governance, service areas and suppliers to assess risks linked to new systems, contracts, incidents or audits. Vetting suppliers who handle Council information will be a key responsibility. You'll ensure security questionnaires are completed, evaluate threats and likelihoods and agree practical mitigations while managing the supplier risk system. Beyond the technical tasks, you'll translate complex issues into clear business language for senior leaders and governance boards, championing strong security practices and helping embed a risk-aware culture across the entire organisation.
What you'll bring: You'll bring a degree in ICT, Computer Science or comparable experience within digital, data and technology, alongside a continuous commitment to professional development. Experience in cyber security, information risk management or information governance within a complex organisation is essential. You'll need a strong understanding of cyber threats, attack vectors and risk assessment frameworks such as the NCSC Cyber Assessment Framework, ISO 27001 or NIST. Your ability to translate technical risks into clear, business-focused language is crucial, as are your excellent communication and stakeholder engagement skills. You must be proactive, with the analytical depth to manage competing priorities and drive follow-through on risk actions. A firm understanding of modern technology environments, zero-trust delivery, incident response and UK public sector regulatory requirements like PSN CoCo and UK GDPR is required, combined with a clear commitment to fairness, integrity and equal opportunities.
Why join us: At RBKC, we're all in - investing in our people, our communities and our future. This new role offers a unique opportunity to make a council-wide impact following a major cyber-attack, backed by excellent senior buy-in and upward support. You'll be strategically positioned to shape our security approach from day one. We support your career growth with competitive pay, continuous training opportunities, flexible working and comprehensive wellbeing perks to ensure you thrive.
About us: Kensington and Chelsea is home to diverse communities, thriving businesses and unique local places. Everything we do is focused on supporting our residents, strengthening our approach and creating a fairer borough. As a competent and caring Council, we take pride in our work every day, ensuring our services are delivered with care and competence. We listen to our residents, act with integrity and work together to build a borough that is greener, safer and fairer for all.
In this new role, you'll step into a critical mission following the cyber-attack in November 2025, playing an essential part in a wider organisational ICT and security restructure. Establishing a new role amidst a high volume of work brings real embedding challenges, but every ounce of effort pays off. When you commit fully, these challenges become opportunities for growth, allowing your risk analysis and supplier vetting to directly reinforce our wider brand and keep the Council secure.
Interview Details: Interviews will take place in person on 12th and 13th August 2026. Ready to join us? We're all in - are you? If you share our values and have the skills to contribute, we'd love to hear from you. Please apply online explaining how you meet the requirements set out in the person specification and job description.
We reserve the right to extend or close this vacancy early without warning subject to the volume of suitable applicants. We are committed to promoting equality and respecting diversity and welcome applications from all sections of the community. We are a Disability Confident Employer - committed to ensuring that our recruitment and selection process is inclusive and accessible. New hires will normally start at the minimum of the pay scale. However, a higher starting salary may be negotiated where a candidate demonstrates exceptional skills, knowledge, or experience. Employees receive annual salary increments until they reach the top of the pay scale, as well as any agreed cost of living pay awards.
Security Risk Analyst employer: ROYAL BOROUGH OF KENSINGTON AND CHELSEA
The Royal Borough of Kensington and Chelsea is an exceptional employer, offering a dynamic work environment where community engagement and consumer protection are at the forefront. Employees benefit from a supportive culture that prioritises professional development and collaboration, ensuring that you can grow your skills while making a meaningful impact in safeguarding consumers and promoting fair trade within the borough.
Contact Details:
ROYAL BOROUGH OF KENSINGTON AND CHELSEA Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Security Risk Analyst
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including ROYAL BOROUGH OF KENSINGTON AND CHELSEA, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through ROYAL BOROUGH OF KENSINGTON AND CHELSEA
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at ROYAL BOROUGH OF KENSINGTON AND CHELSEA. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Security Risk Analyst
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at ROYAL BOROUGH OF KENSINGTON AND CHELSEA insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to ROYAL BOROUGH OF KENSINGTON AND CHELSEA that you’re committed to staying ahead in the game.
How to prepare for a job interview at ROYAL BOROUGH OF KENSINGTON AND CHELSEA
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at ROYAL BOROUGH OF KENSINGTON AND CHELSEA to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at ROYAL BOROUGH OF KENSINGTON AND CHELSEA.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.