Security Risk Analyst

Role

Supports and strengthens Arqivas governance risk and compliance (GRC) capabilities by performing security risk assessments supporting compliance activities and helping ensure security policies and controls are effectively embedded across the organisation. Operates as an experienced seniorlevel analyst within the GRC function providing guidance conducting complex assessments and contributing to the organisations overall security maturity.

We operate a flexible hybrid working environment requirement to travel to either our Winchester or London office up to twice a week.

• Up to 55000
• Work Life Smarter our commitment to a flexible and hybrid working culture
• Generous pension scheme starting at 6% rising to 10%
• A unique wellbeing programme that looks after the whole you
• Access to multiple learning platforms to support your individual development
• Active and diverse networks that build community support wellbeing and advocate for change
• A comprehensive set of benefits including discounts on big brands gym flex memberships and paid volunteering leave - see our full list of benefits here.

Accountabilities

• Lead and perform security risk assessments for internal systems business processes and projects.
• Identify document and analyse risks recommending suitable mitigation actions.
• Review and challenge risk findings raised by internal teams and auditors.
• Support remediation planning and track followup activities with stakeholders.
• Conduct or support compliance checks security assessments and control testing.
• Ensure alignment with regulatory and standards-based requirements (e.g. GDPR ISO 27001).
• Participate in internal and external audits by preparing evidence coordinating responses and ensuring remediation actions are completed.
• Contribute to the development maintenance and lifecycle management of security policies standards and procedures.
• Provide informed risk governance and compliance guidance to teams across the organisation.
• Ensure governance documentation remains accurate and aligned with evolving business needs.
• Identify opportunities to enhance risk management governance processes and compliance workflows.
• Support the rollout and adoption of GRC tools frameworks or methodologies.
• Integrate lessons learned from incidents audits and assessments into updated processes and documentation.
• Work closely with crossfunctional teams to support risk-based decision making.
• Contribute to the design and delivery of security awareness and training materials.
• Act as a knowledgeable point of contact for GRCrelated queries.
• Support wider GRC activities as required aligned to the E10 level of responsibility.

Skills

• Strong understanding of cyber security principles and practices.
• Good knowledge of risk management methods and the ability to assess and interpret security risks.
• Solid understanding of governance and compliance frameworks (e.g. ISO 27001 GDPR).
• Excellent analytical and problemsolving skills.
• Able to communicate technical risk clearly to both technical and nontechnical audiences.
• Ability to work both independently and collaboratively across teams.
• Strong stakeholder and relationshipmanagement skills.

Knowledge & Experience

• Experience in cyber security information security governance risk or compliance.
• Good understanding of security standards and industry best practices.
• Experience contributing to audits compliance checks and risk assessments.
• Ability to apply governance and compliance requirements in a practical business context.

Qualifications
Degree or equivalent experience in Cyber Security Information Systems Computer Science or similar. Certifications such as CISSP CISM or CRISC are beneficial but not essential.

Please note that the successful candidate will be required to successfully undergo UK Security Clearance and must have been resident within the UK for at least five years.

Why Arqiva:

We enable a switched-on world to flow. As the UKs leader in TV and radio broadcast and the countrys top smart utilities platform we are shaping the future of connectivity.

Our infrastructure delivers media and data exactly where theyre needed - whether thats bringing TV and radio to your home or sending smart meter data to your utility provider. Our technology works quietly behind the scenes connecting millions every day.

But its not just what we do its how we do it. At Arqiva youll find real connection: supportive teams active colleague networks and plenty of ways to get involved and feel part of our community. Well give you the space and support to grow - whether thats developing your skills trying something new or taking on fresh challenges. And because there is more to life than work our rewards and benefits are designed to support your wellbeing your lifestyle and what matters most to you.

Our commitment to Diversity & Inclusion

At Arqiva were committed to building a workplace where everyone feels valued heard and empowered to succeed. We welcome applications from all backgrounds and experiences and we work hard to remove barriers so every colleague can thrive. If you need any adjustments at any stage of the recruitment process please reach out to

If this sounds like the right next step for you wed love to hear from you!

#LI-KM1