At a Glance
- Tasks: Join our team to protect data and support information security initiatives.
- Company: Seccl, an innovative B-Corp investment platform under Octopus.
- Benefits: Competitive salary, generous holiday, remote work options, and a strong learning budget.
- Other info: Dynamic, inclusive culture with opportunities for personal and professional growth.
- Why this job: Kickstart your career in cybersecurity while making a real impact in a fast-growing company.
- Qualifications: Curiosity, strong communication skills, and a passion for technology are key.
The predicted salary is between 32000 - 40000 £ per year.
Hybrid role to be based in our Edinburgh office.
About us
Seccl is the Octopus-owned embedded investment platform that’s on a mission to helping more people to invest – and invest well. We’re B-Corp certified with an amazing product-market fit, impressive early traction and the potential to transform an outdated industry, for the better. We've been growing fast and will scale even faster over the next few years.
The role
Looking to start or build your career in information security and data protection? We’re looking for an Information security and data protection analyst to join our Governance, Risk and Compliance team. You’ll report into our Head of Information security and data protection officer, who’ll support your development and help you build your knowledge as you grow into the role. You’ll be part of our 2nd Line of Defence team, helping Seccl protect its people, customers and operations. You don’t need to come with lots of technical experience. What matters most is that you’re curious, proactive, a strong communicator and keen to learn.
On a typical day you will...
- Be a first point of contact for information security and data protection queries from across the business
- Support with GDPR-related activity, including data subject access requests and data subject rights
- Help with data protection impact assessments and legitimate interest assessments
- Support the maintenance of our Information Security Management System
- Help facilitate information security risk assessments
- Advise teams on the appropriate use of personal data
- Support information security and data protection governance
- Keep an eye on regulatory developments, including GDPR and DORA
- Help promote information security and data protection awareness across Seccl
This role’s for you if...
- You’re a strong communicator who enjoys building relationships and working with people from different backgrounds
- You’re comfortable being a first point of contact and helping people find the right answer
- You have a genuine interest in information security, data protection, resilience or technology
- You’re proactive and happy to take initiative, rather than waiting to be told what to do
- You’re curious, motivated and keen to learn
- You enjoy solving problems, asking good questions and working with others
- You’re open to learning technical concepts and applying them in a real business setting. We’ll support you with the training you need
This role isn’t for you if...
- You rely on a lot of top-down direction. Here, you’ll have a lot of freedom and ownership of your role, and you’ll be expected to shape your own progression
- You’re not comfortable working in a fast-paced environment. Our speed and scalability are what set us apart; you need to be able to act quickly and think on your feet
- You struggle to follow through on ideas. We value people who do what they say they will. If you care about something, you have the freedom here to make it happen
- You don’t like change. You’ll get on great here if you relish the ambiguity of rapid growth and are willing to embrace uncertainty
What’s in it for you…
- A salary between £32,000 and £40,000 – dependant on experience + reviewed annually
- 27 days holiday + bank holidays (some can be flexible) + day off on your birthday + three days (full time) per year for Dependant leave
- Two volunteering days per year
- Option to work abroad for up to six weeks a year
- Secclbrate - our recognition programme that offers a mix of flexible rewards including extra pay, additional holiday and increased learning budget
- Length of service award – one month paid sabbatical at eight years
- 6% employer pension contribution, and life assurance
- Private medical insurance with AXA Health
- Enhanced Parental leave
- MacBook and up to £500 home office set up budget
- £750 per person learning budget
- Health and wellbeing initiatives including free therapy via Wellness Cloud, mental health support via Headspace
- Strong financial wellbeing focus including access to Octopus Money, Octopus Share Incentive Plan and will writing offering via Octopus Legacy
- Perkbox – Flexi-points giving you a range of discounts and perks including free weekly coffee, gym and retail discounts
- Access to initiatives like Cycle to Work and Octopus Electric Vehicle Leasing
Our culture
We're proud to put people first, creating a culture where we truly listen to what matters most to them. Our transparent and inclusive environment encourages diversity of thought, challenge and experimentation.
Interview process
Interviewing is a two-way thing, and we want you to have the time and opportunity to get to know us, as much as we are getting to know you. Our interviews are conversational, so come with questions and be curious. In general, you can expect the interview process to look a bit like this, (following an initial chat with one of our Talent team):
- First stage – one-hour competencies-based interview with the hiring manager and another member of the team
- Second stage – 30 minute team focused interview with the Chief risk officer and Head of operational resilience
We’ll only close this role once we have enough applications for the next stage. Please submit your application as soon as possible to make sure you don’t miss out and you should expect to hear back from us within one to two weeks of applying.
Our aim is to build a diverse and inclusive company of awesome people, with unique skills, passions and experiences. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status. If this sounds like your kind of thing, we encourage you to apply even if you don’t tick every box. We’d love to hear from you!
Information security & data protection analyst in Edinburgh employer: Seccl
Seccl is an exceptional employer, offering a dynamic hybrid work environment in Edinburgh that prioritises employee growth and well-being. With a strong focus on professional development, including a generous learning budget and supportive mentorship, Seccl fosters a culture of curiosity and collaboration, making it an ideal place for those looking to build a meaningful career in information security and data protection.
StudySmarter Expert Advice🤫
We think this is how you could land Information security & data protection analyst in Edinburgh
✨Get Involved in the Cybersecurity Community
Dive into local and online cybersecurity meetups or forums. Engage with communities on platforms like Reddit or Discord, which often have dedicated channels for job opportunities and entry-level tips. Making yourself visible here can open doors we didn't even know existed!
✨Show Off Those Skills
Set up a GitHub profile where you can showcase any projects or contributions you’ve made, even if they’re just personal experiments. Potential employers love to see our work in action, and this is a great way to catch the eye of companies like Seccl while we’re still building our experience.
✨Leverage Online Courses & Certifications
Consider taking some recognised cybersecurity certifications, like CompTIA Security+ or Certified Ethical Hacker. These badges give us an edge and show our commitment to the field. Plus, many courses have job boards and networking opportunities that can lead to our first gig!
✨Apply Early and Often
Entry-level roles in cybersecurity can fill up quickly, so keep an eye on our website for open positions at Seccl. We should be ready to apply as soon as we see a role pop up. Tailor our applications to highlight relevant skills like problem-solving and attention to detail – these can set us apart!
We think you need these skills to ace Information security & data protection analyst in Edinburgh
Some tips for your application 🫡
Show off your technical skills:In the cybersecurity field, we love to see your technical know-how right from the get-go. Include any relevant coursework, certifications (like CompTIA Security+ or CEH), and tools you're familiar with. If you've dabbled in security protocols or have any hands-on experience with firewalls or threat analysis, make sure to highlight that!
Demonstrate your passion for cybersecurity:A cover letter is your chance to show your enthusiasm for cybersecurity—don’t hold back! Talk about why you’re excited about this career path, any personal projects you've been involved with, or security challenges you’ve taken on. It’s all about showing Seccl that you’re eager to learn and contribute.
Include relevant extracurricular activities:In entry-level applications, we appreciate seeing how you’ve engaged with the cybersecurity community. Mention any clubs, competitions (like Capture The Flag), or volunteer work related to cybersecurity. This will give us insight into your dedication to growing your skills beyond academic learning!
Keep it concise and tailored:We get it—writing about yourself can be tough. But for entry-level roles like Information security & data protection analyst at Seccl, we're looking for clarity and focus. Tailor your CV and application materials to highlight only what matters for this role. Avoid fluff and get straight to your strengths in the context of cybersecurity!
How to prepare for a job interview at Seccl
✨Know Your Cybersecurity Basics
Make sure you’re clued up on the essential concepts of cybersecurity, like encryption, firewalls, and malware. For an entry-level role like Information security & data protection analyst at Seccl, they might ask you practical questions to test your understanding of these topics, so brush up on the basics and maybe even run through some scenarios.
✨Familiarise Yourself with Tools
You’ll likely be working with various cybersecurity tools and platforms, so get comfortable with common ones like Wireshark and Metasploit. Mention any hands-on experience you have with these tools during your interview, as it shows you’ve taken the initiative to learn and apply your knowledge, which is key for an entry-level position.
✨Show Your Passion for Learning
Since this is an entry-level position, employers at Seccl will want to see your eagerness to learn. Prepare to discuss any certifications or online courses you've completed, as well as how you stay updated on the latest threats and trends in cybersecurity. This demonstrates your commitment to growing in the field.
✨Prepare for Scenario-Based Questions
Expect some scenario-based questions during your interview. These might include how you'd respond to a phishing attempt or securing a network. Think through a few examples beforehand, so you can showcase your problem-solving skills and thought process, which are critical in cybersecurity.
