Salary: £40,000 - 45,000 per year Requirements: Experience in cyber security governance, risk or assurance, ideally within a regulated environment Proven background in testing and assuring security controls and supporting audits Strong experience producing and maintaining security policy and process documentation Familiarity with security frameworks such as ISO 27001, NIST or CIS Ability to engage effectively with technical and non-technical stakeholders Strong written and verbal communication skills with a risk-focused mindset Relevant experience or qualifications in IT Security, Cyber GRC or Risk Management Responsibilities: Reviewing and assuring cyber security controls to ensure effectiveness, coverage and evidence Maintaining and improving cyber governance, risk and reporting frameworks Supporting cyber risk assessments, issue tracking and remediation activities Reviewing and updating security policies, standards, procedures and playbooks Supporting internal and external audits, regulatory reviews and assurance activities Assisting with incident management governance, including root cause analysis and control improvements Working with technology teams to embed effective security risk management and compliance Technologies: Cloud Support Security More: We are CPS Group, supporting a well-established financial services organization in Cardiff. We offer a 12-month fixed-term contract for an IT Security Analyst. This role presents an excellent opportunity to join our forward-thinking security team and play a key role in protecting systems, networks, and data across both cloud and on-premise environments. We value a strong security posture and support governance and assurance activities within our technology function. Our hybrid work model allows for 2 days onsite per week. last updated 4 week of 2026