Security Analyst

At Blue Light Card, we're opening an exciting opportunity for a Security Analyst to join our growing Technology & Security function. As we continue to scale in the UK and Australia, safeguarding our members, systems, and data is more important than ever.

We're committed to building secure, resilient digital experiences that support millions of frontline workers across the UK. Our recent platform evolution has created space for improved security tooling, stronger operational processes, and opportunities for analysts who want to directly influence how we protect the organisation.

You'll join an agile, supportive team that partners closely with Technology, Engineering, and People teams. Collaboration and curiosity are encouraged as we enhance our security posture, uplift awareness, and ensure our defences stay ahead of emerging threats.

What You'll Do

• Monitor, triage, and analyse security alerts from SIEM, EDR, and cloud security tooling-documenting findings and escalating incidents through defined response procedures

• Manage and deliver the organisation's simulated phishing programme, including campaign creation, scheduling, execution, trend analysis, and follow-up

• Develop and deliver compelling, inclusive security awareness content that strengthens our security culture and drives measurable behavioural change

• Create, refine, and maintain SOPs, playbooks, and procedural documentation that support consistent, high-quality security operations

• Produce clear, insightful reporting on alert activity, phishing performance, awareness engagement, and other security metrics to support decision-making

• Collaborate with cross-functional teams to embed secure practices into everyday processes and initiatives

• Contribute to continuous improvement across tooling, detection logic, operational processes, and awareness strategies

• Stay up to date with emerging threats, attack patterns, and best practices-bringing relevant insights back into the team

Do you have experience in SIEM?, * Proven capability in security alert triage, including assessing severity, identifying root causes, and escalating incidents appropriately

• Hands-on experience with SIEM, EDR, and cloud security tools, with the ability to interpret signals, spot anomalies, and validate alerts

• Confidence managing phishing simulation programmes, analysing user behaviour, identifying trends, and informing targeted awareness initiatives

• Strong technical communication and documentation skills, with the ability to produce clear SOPs, playbooks, and guidance material

• Solid foundational security knowledge, including common attack vectors, threat behaviours, and security best practices (e.g., NIST, ISO 27001, Cyber Essentials)

• Ability to translate complex technical concepts into accessible, engaging content for both technical and non-technical audiences

• Structured, detail-driven problem-solving, with sound judgement and the ability to operate with autonomy across defined processes

• An inclusive, collaborative mindset, contributing to a positive security culture and supporting others across the organisation

Our mission is simple - make heroes happy. Our members are the real-life heroes who keep us all safe, cared for, and thriving. It's what gets us up in the morning and pushes us to go further, think bigger, and create something that truly matters. By focusing on their happiness, we create amazing experiences, deliver unrivalled discounts, innovative products, and world-class service.

We don't just follow the usual path - we look for smarter, bolder ways to deliver real impact. We take ownership, move fast, and work shoulder to shoulder to build something special.

We're committed to building a diverse and inclusive team where everyone feels they belong. Different perspectives and experiences help us grow, innovate, and better reflect the communities we serve.

We promote hybrid working, and value in-person collaboration so encourage time in our offices, where you can make the most of our fully stocked snack drawers - either the HQ in Leicestershire, or London, Holborn office. The frequency and office location will vary depending on the role and team. We aim to be flexible, but we aren't able to offer fully remote working.

What We Offer

• Hybrid working and flexible hours

• Free parking and EV charging onsite at HQ

• 25 days annual leave plus an additional day off for your birthday, and a buy and sell holiday scheme of up to 5 days

• A company bonus scheme

• Your own Blue Light Card and exclusive access to thousands of discounts

• Generous funded BUPA medical insurance covering pre-existing conditions

• Group auto-enrolment pension plan

• Enhanced parental leave and absence leave

• Healthcare cashback plan

• Employee assistance programme (including mental health support) and mental health first aiders

• Great social events e.g., festive party, summer party, team socials, sports matches

• Regular company-wide recognition events e.g. monthly Light's Up and annual Shine awards

• Relaxed dress code and modern office space (games area, chill-out areas, book club, free drinks/snacks)

• Onsite gym at HQ (including access to free HIIT & stretch classes)

• Strong learning and development culture and personal growth fund