Technical Assurance Analyst
Role details
Job location
Tech stack
Job description
We're looking for an Technical Assurance Analyst to help strengthen our security posture across a complex, modern technology environment spanning cloud, infrastructure, applications, operational technology and third-party services.
This is an exciting opportunity for a technically minded cyber security professional who enjoys assessing risk, challenging control weaknesses and influencing better security outcomes across a large enterprise environment.
Day to day
As part of our Information & Cyber Security team, you'll play a key role in helping Virgin Atlantic stay secure, resilient and ready for the future.
You'll deliver technical assurance across a wide range of security controls, technology changes, solution designs and remediation activity. Acting as an independent second-line assurance partner, you'll use your technical judgement to assess whether controls are well designed, properly implemented and working effectively.
This is a great opportunity for someone who enjoys getting under the skin of technology, asking thoughtful questions and helping teams make secure, practical decisions.
You'll:
- Deliver technical assurance reviews across applications, infrastructure, cloud, identity, endpoints, networks and operational technology environments.
- Assess technology changes, onboarding activity and solution designs to identify security risks early and support secure-by-design outcomes.
- Coordinate the scoping, commissioning, delivery and follow-up of penetration testing, vulnerability assessments and specialist security testing.
- Analyse vulnerability information, remediation evidence, security exceptions and risk acceptance requests to support clear oversight of technical risk.
- Produce clear assurance findings, practical recommendations and management reporting for both technical and non-technical audiences.
- Help strengthen our assurance methods, testing approaches and control validation practices so we continue to improve how we manage security risk., We'd love to hear from you if you have experience in information security, cyber security, technical assurance, technology risk, audit, security testing or control validation, including some of the following:
- Conducting or supporting technical assurance reviews across areas such as applications, infrastructure, cloud, identity, endpoints, networks, suppliers or operational technology.
- Reviewing technology changes, solution designs, onboarding activity or project delivery to assess security risks and support secure-by-design outcomes.
- Assessing technical evidence to understand whether controls are well designed, properly implemented and operating effectively.
- Supporting vulnerability management, remediation tracking, security exception reviews or risk acceptance activity, with a clear view of technical risk.
- Coordinating penetration testing, red team, purple team or specialist security testing, including scoping, delivery oversight, evidence review and findings management.
- Working with technical teams, control owners, suppliers, auditors or assurance providers to turn vulnerabilities, assurance outputs and control gaps into clear, risk-based actions.
If this sounds like you, and you would like to unlock your potential with us, we would love to hear from you!
Requirements
We're looking for someone who brings a strong technical assurance mindset, enjoys getting into the detail of security controls and can help teams improve outcomes through clear, constructive and evidence-based challenge.
You'll be comfortable working across complex technology environments, translating technical findings into practical recommendations and influencing stakeholders in a way that feels collaborative, calm and focused on progress.