At a Glance
- Tasks: Join our team to protect people and systems while learning about cybersecurity and operational resilience.
- Company: Seccl, an innovative investment platform on a mission to transform the industry.
- Benefits: Competitive salary, generous holiday, remote work options, and a strong focus on personal development.
- Other info: Dynamic, fast-paced environment with opportunities for growth and learning.
- Why this job: Kickstart your career in information security with hands-on experience and mentorship.
- Qualifications: Curiosity, strong communication skills, and a proactive attitude are key.
The predicted salary is between 32000 - 40000 £ per year.
Hybrid role to be based in our Edinburgh office.
About Us
Seccl is the Octopus‑owned embedded investment platform that’s on a mission to help more people invest – and invest well. We’re B‑Corp certified with an amazing product‑market fit, impressive early traction and the potential to transform an outdated industry, for the better. We've been growing fast and will scale even faster over the next few years. We’re also proud to be part of Octopus, the £multi‑billion group that's on a mission to breathe new life into broken industries, through companies like Octopus Energy, Octopus Investments and Octopus Money.
The role
Looking to start or build your career in information security and digital operational resilience? We’re looking for an Information Security and digital operational resilience analyst to join our Governance, Risk and Compliance team. You’ll report into our Head of Information Security and Data Protection Officer, who’ll support your development and help you build your knowledge as you grow into the role. You’ll be part of our 2nd Line of Defence team, helping Seccl protect its people, customers, systems and operations. You don’t need to come with lots of technical experience. What matters most is that you’re curious, proactive, a strong communicator and keen to learn. Over time, you’ll develop valuable knowledge across cybersecurity, technology risk and operational resilience, with the opportunity to become a subject matter expert in how we keep Seccl’s important services running safely and reliably.
On a typical day you will…
- Help assess how technology is used across different teams and departments
- Support information security and operational resilience governance
- Help facilitate information security risk assessments
- Support digital operational resilience initiatives
- Review incident response plans
- Help with business continuity and disaster recovery assessments
- Conduct due diligence assessments
- Maintain our Information Security Management System
- Keep an eye on regulatory developments, including GDPR and DORA
- Help promote information security and operational resilience awareness across Seccl
This role’s for you if…
- You’re a strong communicator who enjoys building relationships and working with people from different backgrounds
- You’re interested in how organisations manage risk, respond to disruption and keep important services running
- You’re comfortable being a first point of contact and helping people find the right answer
- You have a genuine interest in information security, technology, resilience or risk
- You’re proactive and happy to take initiative, rather than waiting to be told what to do
- You’re curious, motivated and keen to learn
- You enjoy solving problems, asking good questions and working with others
- You’re open to learning technical concepts and applying them in a real business setting. We’ll support you with the training you need
This role isn’t for you if…
- You rely on a lot of top‑down direction. Here, you’ll have a lot of freedom and ownership of your role, and you’ll be expected to shape your own progression.
- You’re not comfortable working in a fast‑paced environment. Our speed and scalability are what set us apart; you need to be able to act quickly and think on your feet.
- You struggle to follow through on ideas. We value people who do what they say they will. If you care about something, you have the freedom here to make it happen.
- You don’t like change. You’ll get on great here if you relish the ambiguity of rapid growth and are willing to embrace uncertainty.
What’s In It For You
We offer a generous mix of benefits for the things that really matter to our people, including:
- £32,000 – £40,000 salary, dependent on experience, reviewed annually
- 27 days holiday + bank holidays (some can be flexible) + day off on your birthday + three days (full‑time) per year for Dependant leave
- Two volunteering days per year
- Option to work abroad for up to six weeks a year
- Secclbrate – our recognition programme that offers a mix of flexible rewards including extra pay, additional holiday and increased learning budget
- Length of service award – one month paid sabbatical at eight years
- 6% employer pension contribution and life assurance
- Private medical insurance with AXA Health
- Enhanced parental leave
- MacBook and up to £500 home office set up budget
- £750 per person learning budget
- Health and wellbeing initiatives including free therapy via Wellness Cloud, mental health support via Headspace
- Strong financial wellbeing focus including access to Octopus Money, Octopus Share Incentive Plan and will writing offering via Octopus Legacy
- Perkbox – Flexi‑points giving you a range of discounts and perks including free weekly coffee, gym and retail discounts
- Access to initiatives like Cycle to Work and Octopus Electric Vehicle Leasing
Our culture
We’re proud to put people first, creating a culture where we truly listen to what matters most to them. Our transparent and inclusive environment encourages diversity of thought, challenge and experimentation.
Interview process
Interviewing is a two‑way thing, and we want you to have the time and opportunity to get to know us, as much as we are getting to know you. Our interviews are conversational. In general, you can expect the interview process to look a bit like this, following an initial chat with one of our talent team:
- First stage – one‑hour competencies‑based interview with the hiring manager and another member of the team
- Second stage – 30‑minute team focused interview with the Chief risk officer and Head of operational resilience
We’ll only close this role once we have enough applications for the next stage. Please submit your application as soon as possible to make sure you don’t miss out and you should expect to hear back from us within one to two weeks of applying.
EEO Statement
Our aim is to build a diverse and inclusive company of awesome people, with unique skills, passions and experiences. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status. If this sounds like your kind of thing, we encourage you to apply even if you don’t tick every box. We’d love to hear from you!
Information security & digital operational resilience analyst employer: Seccl
Seccl is an exceptional employer, offering a dynamic hybrid work environment in Edinburgh that prioritises employee growth and well-being. With a strong focus on professional development, generous benefits including a competitive salary, flexible holiday options, and a supportive culture that values diversity and innovation, Seccl empowers its employees to thrive while contributing to a mission that transforms the investment industry for the better.
StudySmarter Expert Advice🤫
We think this is how you could land Information security & digital operational resilience analyst
✨Get Involved in the Cybersecurity Community
Dive into local and online cybersecurity meetups or forums. Engage with communities on platforms like Reddit or Discord, which often have dedicated channels for job opportunities and entry-level tips. Making yourself visible here can open doors we didn't even know existed!
✨Show Off Those Skills
Set up a GitHub profile where you can showcase any projects or contributions you’ve made, even if they’re just personal experiments. Potential employers love to see our work in action, and this is a great way to catch the eye of companies like Seccl while we’re still building our experience.
✨Leverage Online Courses & Certifications
Consider taking some recognised cybersecurity certifications, like CompTIA Security+ or Certified Ethical Hacker. These badges give us an edge and show our commitment to the field. Plus, many courses have job boards and networking opportunities that can lead to our first gig!
✨Apply Early and Often
Entry-level roles in cybersecurity can fill up quickly, so keep an eye on our website for open positions at Seccl. We should be ready to apply as soon as we see a role pop up. Tailor our applications to highlight relevant skills like problem-solving and attention to detail – these can set us apart!
We think you need these skills to ace Information security & digital operational resilience analyst
Some tips for your application 🫡
Show off your technical skills:In the cybersecurity field, we love to see your technical know-how right from the get-go. Include any relevant coursework, certifications (like CompTIA Security+ or CEH), and tools you're familiar with. If you've dabbled in security protocols or have any hands-on experience with firewalls or threat analysis, make sure to highlight that!
Demonstrate your passion for cybersecurity:A cover letter is your chance to show your enthusiasm for cybersecurity—don’t hold back! Talk about why you’re excited about this career path, any personal projects you've been involved with, or security challenges you’ve taken on. It’s all about showing Seccl that you’re eager to learn and contribute.
Include relevant extracurricular activities:In entry-level applications, we appreciate seeing how you’ve engaged with the cybersecurity community. Mention any clubs, competitions (like Capture The Flag), or volunteer work related to cybersecurity. This will give us insight into your dedication to growing your skills beyond academic learning!
Keep it concise and tailored:We get it—writing about yourself can be tough. But for entry-level roles like Information security & digital operational resilience analyst at Seccl, we're looking for clarity and focus. Tailor your CV and application materials to highlight only what matters for this role. Avoid fluff and get straight to your strengths in the context of cybersecurity!
How to prepare for a job interview at Seccl
✨Know Your Cybersecurity Basics
Make sure you’re clued up on the essential concepts of cybersecurity, like encryption, firewalls, and malware. For an entry-level role like Information security & digital operational resilience analyst at Seccl, they might ask you practical questions to test your understanding of these topics, so brush up on the basics and maybe even run through some scenarios.
✨Familiarise Yourself with Tools
You’ll likely be working with various cybersecurity tools and platforms, so get comfortable with common ones like Wireshark and Metasploit. Mention any hands-on experience you have with these tools during your interview, as it shows you’ve taken the initiative to learn and apply your knowledge, which is key for an entry-level position.
✨Show Your Passion for Learning
Since this is an entry-level position, employers at Seccl will want to see your eagerness to learn. Prepare to discuss any certifications or online courses you've completed, as well as how you stay updated on the latest threats and trends in cybersecurity. This demonstrates your commitment to growing in the field.
✨Prepare for Scenario-Based Questions
Expect some scenario-based questions during your interview. These might include how you'd respond to a phishing attempt or securing a network. Think through a few examples beforehand, so you can showcase your problem-solving skills and thought process, which are critical in cybersecurity.
