Cyber Risk Analyst
London, GB, EC1A 1AA
Royal Mail Group
Role Title: Cyber Security Risk Analyst
Location: London OR Sheffield (Hybrid 2-3 days)
What will you do?
As a Cyber Risk Analyst you will provide subject-matter expertise for projects and workstreams in support of the cyber strategy and transformation to ensure that risks are being managed. Ensure cyber risks are identified, assessed, and mitigating actions agreed across the business within acceptable tolerances.
You will assess risk to RMG against risk appetite through engaging and influencing key stakeholders, ensuring risks are understood and embedded into planning and key decision making. Assessing risk and mitigating controls across multiple technologies, technical interdependencies, and data flows.
Identify risks and assess potential mitigating actions to drive the cyber security enhancement agenda. Support the identification of key risk metrics which can be used as a predictive measure to highlight movement in risk position and allow for mitigating action before risks are realised.
You will also support the wider technology function in increasing risk literacy and upskilling key colleagues to embed risk management thinking across the tech function.
You will support the operation of an effective Cyber Risk Management system for managing actions and mitigations for RMG’s group risk on data for annual reports, working closely with the Audit and Risk Committee.
What skills and experience should you have?
- Strong understanding of Cybersecurity management and practices.
- Strong understanding of risk assessment and management methodologies.
- Good understand of ISO 27001 and Cyber Essentials.
- Experience of communicating complex technical risks and issues in a clear commercial language and presenting information in a format that is easy for key decision makers to digest and act upon.
- Agility of thought and comfort with complexity, together with the patience and resilience to overcome change inertia.
- The will to succeed in support of the business’ goals and to align potentially competing agendas to effectively manage Cybersecurity risk within the business risk appetite.
- A desire to learn and stay at the forefront of risk and threat analysis.
- Analytical Skills – strong analytical skills and the ability to see the big picture and apply the relevant detail to it.
- Good influencing and negotiating skills to build trust and confidence at mid and senior levels in RMG and using professional judgement to make risk-based recommendations and decisions within parameters.
What we offer you…
- Competitive Salary
- 18% Bonus
- Competitive Pension Scheme
- Car allowance (or cash alternative)
- Hybrid Working (2-3 days in office)
- Private Healthcare
- 25 days holiday (plus the option to buy more)
- Plus, many more benefits!
Interview process and next steps…
We aim to move as quickly as possible! If your application is successful, you will be contacted by one of our recruitment team who will discuss the two-stage interview process with you.
We don’t expect every candidate to meet the full criteria for the role. If your experience looks a little different from the job requirements, but you feel you have the relevant skills to bring value to the role, we’d love to learn more about you.
We are happy to support your need for any adjustments during the application and hiring process. Please share the details within your application if required.
#LI-POST #LIMRT #RMG
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ISO 27001 Risk assessment Risk management Strategy
Perks/benefits: Competitive pay Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Product Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open Threat intelligence-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs