IT Security Analyst
Role details
Job location
Tech stack
Job description
Job Title:Cyber Security Assurance Specialist (Application Security)Client:UrencoRate:£700 per dayLocation:Hybrid Minimum 2 days per week in Paddington, LondonClearance:Active SC Clearance requiredAbout the Client Urenco is a world leader in the enrichment of uranium for use in the civil nuclear industry. Operating across the United Kingdom, United States, Netherlands, and Germany, Urenco plays a critical role in enabling the safe, sustainable use of nuclear technology worldwide.The Group CISO function is responsible for continuously developing and enhancing Urenco s cyber security portfolio to protect the organisation, its customers, and the public. The CISO team is structured across three core areas:Governance, Risk & Compliance (GRC)Operational Technology (OT) Cyber & Cyber AssuranceThreat DefenceThis opportunity sits within theCyber Assurance Team , reporting directly to the Head of Cyber Security Assurance.Role Overview We are seeking an experiencedCyber Security Assurance Specialistwith a strong focus onapplication securityacross both on-premises and cloud environments.You will play a key role in improving cyber security maturity across the organisation by providing assurance over security designs, assessing risk, and developing application security standards and policies. The role requires close collaboration with IT, Information Security, and business stakeholders, translating business requirements into secure, practical solutions.This is a highly visible position requiring strong communication skills, sound business judgement, and the ability to operate effectively in agile delivery environments.Key Responsibilities 1. Security Design & Solution AssuranceReview and assure technical designs against security policies and standardsIdentify security design gaps and recommend appropriate control improvementsAuthor and review high-quality security documentationProvide security oversight for both on-premises and cloud-based solutionsAct as a trusted advisor, Job Title: Cyber Security Assurance Specialist (Application Security) Client: Urenco Rate: £700 per day Location: Hybrid - Minimum 2 days per week in Paddington, London Clearance: Active SC Clearance required About the Client Urenco is a world leader in the enrichment of..., Our client urgently requires an Information Security Technical Assurance Lead to support one of their major programmes.Start: ASAP. Duration: 6 months. Rate: £550-£600 per day. Clearance: SC. Location: Hybrid - London or Chester (minimum 2 days per week).INSIDE IR35 .The..., Job Description I'm working with a bisuness that is looking to hire an IT Security Analyst to join its London based security function. The role sits within a small but high impact security team responsible for maintaining and improving the organisation's security posture..., I'm working with a bisuness that is looking to hire an IT Security Analyst to join its London based security function. The role sits within a small but high impact security team responsible for maintaining and improving the organisation's security posture while ensuring...
Requirements
and security advocate across the businessCommunicate effectively with stakeholders to embed secure-by-design principles2. Security Risk Assessment & Control AssuranceProduce formal security risk assessments in collaboration with GRC, architects, and IT teamsDefine and agree risk mitigations and compensating controlsAssure implementation and effectiveness of technical controlsTranslate business strategy into secure architecture guidanceConduct supplier assurance across on-premises, cloud, and hybrid services3. Security Standards, Policies & GovernanceDevelop and maintain application security policies, standards, and guidelinesAlign security frameworks with broader business strategyTrack emerging security practices and ensure standards remain currentSupport the continuous improvement of cyber security maturityEssential ExperienceMinimum5 years experiencein Information Security Assurance with a focus on application securityExperience working in a global organisationStrong knowledge of regulatory compliance and security frameworks such as:ISO 27000 seriesNIST SP 800 seriesNIST Cyber Security FrameworkExperience in:Secure application design and reviewCloud security assurancePenetration testing and vulnerability managementSupplier security assuranceDesirable ExperienceKnowledge of nuclear industry regulations across the UK, US, Netherlands, and GermanyUnderstanding of government information classificationsExperience in OT security environmentsTechnical Knowledge Strong understanding of security controls across multiple asset types including data, networks, devices, and users, covering:Software Asset Inventory & ControlData ProtectionSecure Configuration ManagementContinuous Vulnerability ManagementAudit Log ManagementMalware DefencesDisaster RecoveryService Provider Security ManagementApplication Security & Penetration TestingQualifications & CertificationsDegree (BS/MS) in Computer Science, Information Security, or equivalent experienceRelevant certifications such as:CISSPCISACSSLPOWASP ASVS / OWASP Top 10GIAC (GWAPT, GCSA)CASECertified DevSecOps ProfessionalKey CompetenciesStrong business acumen with ability to align security to organisational objectivesAdaptable and responsive to changing risk landscapesExcellent written and verbal communication skillsStrong analytical and decision-making capabilityTeam-oriented with experience working across diverse stakeholdersSelf-motivated with a sense of urgency and delivery focusOrganised and able to manage multiple prioritiesAdditional InformationHybrid working model minimum 2 days per week onsite in PaddingtonOccasional travel may be requiredActive SC clearance is mandatory#J-18808-Ljbffr Similar jobs
Benefits & conditions
Head of Information Security & IT Risk£90,000 + benefits + performance bonus Flexible Location | Hybrid working with frequent travel to Banbury requiredYou've spent years building your credibility in information security.You've configured the tools, handled the incidents,...
