At a Glance
- Tasks: Support GRC activities and improve security maturity in a fast-paced environment.
- Company: Dynamic security team in London with a focus on growth and development.
- Benefits: Hands-on experience, career growth, and a collaborative work culture.
- Other info: Join a supportive team and thrive in a reactive, delivery-focused environment.
- Why this job: Kickstart your GRC career and make a real impact on security processes.
- Qualifications: Basic understanding of risk management and compliance frameworks.
The predicted salary is between 35000 - 45000 £ per year.
Location – London three times a week on site.
We’re looking for a hands-on GRC Security Analyst to support a growing security function within a fast-paced and developing environment. This is a great opportunity for someone early in their GRC career who wants to build strong foundational experience across risk, policy and third-party assurance.
The Role: You’ll be supporting core GRC activities in a pragmatic, delivery-focused environment, helping to improve security maturity while keeping day-to-day operations moving.
Key responsibilities include:
- Supporting third-party risk and assurance activities
- Assisting with security policy reviews and updates
- Maintaining and updating risk registers and documentation
- Supporting audits and compliance activities
- Helping drive basic GRC processes and controls
- Carrying out tasks aligned with wider “Know Your System” (KYS) principles (understanding assets, processes and risks across the environment)
Currently a developing / low-maturity security environment. Work is often reactive and fast-moving. Strong need for someone who can roll up their sleeves and deliver. You’ll play a key role in establishing and improving GRC basics.
Experience with:
- Third-party risk / supplier assurance
- Policy management
- Risk and compliance processes
- Understanding of frameworks such as: ISO 27001 / NIST / CIS (basic awareness is fine)
- Comfortable working in a delivery-focused, directive environment
- Someone practical, reliable and detail-oriented
Security Analyst employer: Sanderson
Join a dynamic and supportive team in London, where you will have the opportunity to grow your GRC career in a fast-paced environment. Our company fosters a collaborative work culture that prioritises employee development, offering hands-on experience in risk management and compliance while ensuring a healthy work-life balance. With a focus on practical delivery and continuous improvement, you'll be empowered to make a meaningful impact from day one.
StudySmarter Expert Advice🤫
We think this is how you could land Security Analyst
✨Get Involved in the Cybersecurity Community
Dive into local and online cybersecurity meetups or forums. Engage with communities on platforms like Reddit or Discord, which often have dedicated channels for job opportunities and entry-level tips. Making yourself visible here can open doors we didn't even know existed!
✨Show Off Those Skills
Set up a GitHub profile where you can showcase any projects or contributions you’ve made, even if they’re just personal experiments. Potential employers love to see our work in action, and this is a great way to catch the eye of companies like Sanderson while we’re still building our experience.
✨Leverage Online Courses & Certifications
Consider taking some recognised cybersecurity certifications, like CompTIA Security+ or Certified Ethical Hacker. These badges give us an edge and show our commitment to the field. Plus, many courses have job boards and networking opportunities that can lead to our first gig!
✨Apply Early and Often
Entry-level roles in cybersecurity can fill up quickly, so keep an eye on our website for open positions at Sanderson. We should be ready to apply as soon as we see a role pop up. Tailor our applications to highlight relevant skills like problem-solving and attention to detail – these can set us apart!
We think you need these skills to ace Security Analyst
Some tips for your application 🫡
Show off your technical skills:In the cybersecurity field, we love to see your technical know-how right from the get-go. Include any relevant coursework, certifications (like CompTIA Security+ or CEH), and tools you're familiar with. If you've dabbled in security protocols or have any hands-on experience with firewalls or threat analysis, make sure to highlight that!
Demonstrate your passion for cybersecurity:A cover letter is your chance to show your enthusiasm for cybersecurity—don’t hold back! Talk about why you’re excited about this career path, any personal projects you've been involved with, or security challenges you’ve taken on. It’s all about showing Sanderson that you’re eager to learn and contribute.
Include relevant extracurricular activities:In entry-level applications, we appreciate seeing how you’ve engaged with the cybersecurity community. Mention any clubs, competitions (like Capture The Flag), or volunteer work related to cybersecurity. This will give us insight into your dedication to growing your skills beyond academic learning!
Keep it concise and tailored:We get it—writing about yourself can be tough. But for entry-level roles like Security Analyst at Sanderson, we're looking for clarity and focus. Tailor your CV and application materials to highlight only what matters for this role. Avoid fluff and get straight to your strengths in the context of cybersecurity!
How to prepare for a job interview at Sanderson
✨Know Your Cybersecurity Basics
Make sure you’re clued up on the essential concepts of cybersecurity, like encryption, firewalls, and malware. For an entry-level role like Security Analyst at Sanderson, they might ask you practical questions to test your understanding of these topics, so brush up on the basics and maybe even run through some scenarios.
✨Familiarise Yourself with Tools
You’ll likely be working with various cybersecurity tools and platforms, so get comfortable with common ones like Wireshark and Metasploit. Mention any hands-on experience you have with these tools during your interview, as it shows you’ve taken the initiative to learn and apply your knowledge, which is key for an entry-level position.
✨Show Your Passion for Learning
Since this is an entry-level position, employers at Sanderson will want to see your eagerness to learn. Prepare to discuss any certifications or online courses you've completed, as well as how you stay updated on the latest threats and trends in cybersecurity. This demonstrates your commitment to growing in the field.
✨Prepare for Scenario-Based Questions
Expect some scenario-based questions during your interview. These might include how you'd respond to a phishing attempt or securing a network. Think through a few examples beforehand, so you can showcase your problem-solving skills and thought process, which are critical in cybersecurity.
