Senior Technology Assurance Analyst

Senior Technology Assurance Analyst

Your team The UKI Assurance Team are part of the second line of defence and work with the business to provide support and expertise to aid the identification, management & mitigation of risk. Reporting into the Technology Assurance Manager, the Senior Technology Assurance Analyst will play a key role in ensuring the UKI division meets business objectives, maintains effective cyber security posture and meets regulatory requirements by providing assurance over key risks & controls.

• Lead reviews of a variety of business areas through planning, fieldwork and reporting, to assure key Technology and Cyber Security controls are designed adequately and operating optimally to mitigate risk.
• Lead or support a variety of projects related to Technology, Cyber Security, Risk Management, Assurance, Data, Automation or the wider second line team.
• Identify gaps and issues in control frameworks, alignment to processes and operational impacts to infrastructure and architecture. Use your insight to promote better ways of working and control improvements.
• Identify security gaps in process and services, understanding potential impact of threats to the business. Provide clear guidance and recommendations to management to improve our security posture.
• Build and manage relationships with internal partners to discuss findings, and make insightful recommendations to mitigate risk whilst balancing business objectives.
• Present, communicate and articulate information across all formats to a wide range of internal partners across the UKI division.
• Set valuable actions with first line leadership, tracking and validating this to ensure sustainable implementation and delivery by the business.
• Guide, coach and mentor Technology and Enterprise focussed Analysts within the team, lead team training sessions and proactively share good practices.
• Proactively bring fully formed recommendations and target areas of improvement with limited input and assistance from the Technology Assurance Manager.
• Provide ad‑hoc or occasional cover for the Technology Assurance Manager.

• Ask good questions, be curious, and willing to challenge the status quo.
• Maintain attention to detail and professional scepticism when reviewing evidence.
• Use effective organisation and planning skills to run multiple reviews / projects and prioritise tasks to meet deadlines.
• Establish trust and relationships in all levels of the business.
• Continually apply your consistent track record of good written and verbal communication skills. Able to prepare your own, and review others’, work papers to a high standard with clear rationale, testing methodology and evidence to support conclusions.
• Draft clear and concise reports for broad groups of Senior Management partners. Translating technology concepts into terms understood by those outside of technology.
• Apply a detailed understanding of Technology Risk and Cyber Security principles across a large multi‑locational business.
• Demonstrate depth of understanding of Technology processes, including Cloud, Architecture, Engineering, Data and Platform Management and Incident Management.
• Use your knowledge of NIST CSF 2.0, COBIT, ISO
  27001, ITIL, or other Technology and Cyber Security Frameworks to help improve overall risk and control culture within the business.
• Apply multiple years of experience from Technology or Cyber Security focussed roles in Risk Management, Internal Audit, Compliance, or a similar role where you can demonstrate transferable skills. Not essential but would be beneficial to have circa 5+ years of experience.
• Knowledge of SQL or Python, data analytics, data visualisation, or automation, are not essential but would be beneficial.
• CRISK, CISA, CISSP, ISO
  27001 Cert, or relevant professional certification, or relevant degree, are not essential but would be beneficial.

• £1,000 learning fund
• Uncapped leave
• Twice‑yearly bonus (with part of it guaranteed!)
• Pension contribution scheme
• Private healthcare
• Flexible ways of working – home or office, it’s your choice!
• Access to thousands of Udemy courses
• Invest via the Company Sharesave Scheme
• 16 hours paid…