Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct hands-on cyber risk assessments and support mitigation strategies.
- Company: Join a forward-thinking IT team focused on governance and compliance.
- Benefits: Gain valuable experience, competitive pay, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity while working with industry best practices.
- Qualifications: Bachelor's degree in Cybersecurity or related field; 3-5 years of relevant experience.
- Other info: Collaborative environment with strong focus on career development and learning.
The predicted salary is between 36000 - 60000 £ per year.
The Cyber Risk Analyst will be responsible for delivering hands-on qualitative and quantitative cyber, IT, and OT risk assessments. The role focuses on identifying, assessing, documenting, and supporting the mitigation of cyber and information security risks in line with recognised frameworks, regulatory requirements, and industry best practices. This is a delivery-focused role operating primarily on day-to-day risk activities.
Key Responsibilities
- Identify, assess, and monitor cyber, information security, and OT risks using established risk management practices.
- Maintain accurate and up-to-date risk registers, including risk treatment plans and control profiles.
- Work closely with IT teams, risk owners, and the wider GRC function to gather risk-related data and support mitigation planning and reporting.
- Support supply chain and third-party cyber risk assessments in collaboration with security assurance activities.
- Contribute to cyber risk quantification initiatives, including the use of structured methods or tools to express cyber risk in business or financial terms.
- Support compliance with internal controls and external regulatory and legislative requirements.
Skills, Knowledge and Experience
- Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or a related discipline.
- 3–5 years' experience in an information security or cyber risk assessment role.
- Practical experience with cyber risk management frameworks and methodologies such as ISO 27005, OCTAVE Allegro, and FAIR or FAST risk quantification.
- Strong understanding of information security principles, frameworks, and regulatory obligations.
- Experience maintaining compliance documentation aligned to standards and regulations including NIS-D CAF, ISO 27001/27002, NIST CSF 2.0, IEC 62443, PCI-DSS, GDPR, and the Data Protection Act.
- Strong analytical, problem-solving, and written communication skills.
- Proven ability to work with stakeholders to assess risks and agree mitigation strategies.
- Ability to work independently while contributing effectively within a team.
Desirable
- Industry-recognised certification or working towards certification, such as CRISC.
Role Scope and Impact
This role is responsible for the practical delivery of cyber, IT, and OT risk assessments. Inadequate risk identification or mitigation could result in cyber incidents, data exposure, service disruption, financial loss, regulatory non-compliance, and reputational damage.
Stakeholder Interaction
The role involves regular interaction with internal IT teams and risk owners, as well as engagement with third-party service providers. Communication is primarily advisory and collaborative, supporting effective risk assessment and reporting.
Management and Resources
This role does not have line management responsibility, budget ownership, or direct control of assets or projects.
Cyber Risk Analyst in Portsmouth employer: TalentHawk
Contact Detail:
TalentHawk Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Risk Analyst in Portsmouth
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that Cyber Risk Analyst gig.
✨Tip Number 2
Prepare for those interviews by brushing up on your risk assessment skills. We recommend practising common interview questions related to cyber risk management frameworks. Show them you’re not just a candidate, but the candidate they need!
✨Tip Number 3
Don’t forget to showcase your practical experience! When chatting with potential employers, highlight specific projects where you’ve identified and mitigated risks. We want them to see how you can add value right from day one.
✨Tip Number 4
Finally, apply through our website! It’s the best way to ensure your application gets the attention it deserves. We’re always on the lookout for talented individuals like you to join our team in tackling cyber risks head-on.
We think you need these skills to ace Cyber Risk Analyst in Portsmouth
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Cyber Risk Analyst role. Highlight your experience with risk management frameworks and any relevant certifications. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber risk and how your background makes you a great fit for our team. Keep it concise but impactful – we love a good story!
Showcase Your Analytical Skills: Since this role involves a lot of risk assessment, make sure to showcase your analytical and problem-solving skills in your application. Give examples of how you've tackled similar challenges in the past – we want to see your thought process!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It helps us keep track of applications and ensures you’re considered for the role. Plus, it’s super easy – just a few clicks and you’re done!
How to prepare for a job interview at TalentHawk
✨Know Your Frameworks
Make sure you’re well-versed in the cyber risk management frameworks mentioned in the job description, like ISO 27005 and NIST CSF 2.0. Brush up on how these frameworks apply to real-world scenarios, as you might be asked to discuss your practical experience with them.
✨Showcase Your Analytical Skills
Prepare to demonstrate your analytical and problem-solving skills during the interview. Think of specific examples where you've identified risks and proposed mitigation strategies. This will show that you can think critically and act decisively in a cyber risk context.
✨Engage with Stakeholders
Since the role involves working closely with IT teams and risk owners, be ready to talk about your experience collaborating with different stakeholders. Highlight any successful projects where you’ve gathered risk-related data or supported mitigation planning, as this will showcase your teamwork abilities.
✨Stay Updated on Regulations
Familiarise yourself with current regulations and compliance standards like GDPR and PCI-DSS. Be prepared to discuss how you’ve maintained compliance documentation in previous roles, as this is crucial for the Cyber Risk Analyst position.
