Description Flexible Working Options: This role is open to flexible working patterns, these may include: Flexible start and end time to each day Ability to adapt calendar as needed, this could be to fit in the school run, gym, or appointments A 50% in-office attendance requirement can be spread across the month to accommodate diverse working patterns, such as the flexibility to purchase a weekly train ticket for certain weeks Compressed hours (subject to approval and policy within the team) Working from abroad policy (subject to approval and policy within the team) Opportunities in Leeds: We’re excited to be growing our presence in Leeds, a city we’ve been connected to for nearly 200 years! Our modern, accessible office in the City Centre offers a supportive, flexible working environment. The majority of roles, including this one, are now available in Leeds, giving you the chance to build a meaningful career outside of London while contributing to our mission from a dynamic and growing location. You’ll work collaboratively with London-based colleagues in a hybrid model, with regular opportunities to travel into the London office to meet and connect together in person. Want to learn more? Discover what makes our Leeds office such a dynamic place to work by visiting our Leeds page for more details. A day in the role: Your day typically begins with a project team stand-up, where you discuss the current progress and any challenges faced by the team. As the representative for the cyber security division, you play a crucial role in resolving any issues that fall within your remit, ensuring that obstacles are swiftly addressed to keep projects on track. These meetings are usually conducted virtually, enabling effective collaboration between colleagues based in both Leeds and London. After following up on several tasks, it is time for lunch. The office, located in the centre of Leeds, offers colleagues easy access to numerous local amenities. With cafés, restaurants, shops, and public transport all within walking distance, the convenient setting helps foster a comfortable and practical working environment for everyone. During the afternoon, you may have some project work to do or a project meeting to attend, where you’ll be responsible for thoroughly risk assessing design proposals, carefully comparing them against the established security standards set by your team to verify full compliance. As you work through the details, you remain vigilant for any potential security issues. If you identify a concern, you collaborate closely with subject matter experts to evaluate the seriousness of the risks. Together, you devise suitable mitigation strategies, which may include introducing additional authentication steps or updating encryption configurations for example. This collaborative method ensures that the proposed service remains consistent with best security practices and supports the bank’s commitment to robust security. After the working day concludes, there are many opportunities to socialise within the bank. You can join a variety of clubs, such as board games, reading groups, sports, and other ad-hoc activities organised by the social committee, providing a welcoming and inclusive environment for all colleagues. Role Requirements: Minimum Criteria We’re looking for someone who has the following key skills and experience: Proven experience working as part of a team of cyber security consultants delivering accreditation for critical systems within a complex environment. Strong track record of collaborating closely with other Cyber disciplines (e.g. security architecture, risk, operations, IAM, SOC) to ensure proportionate and effective security controls are designed and implemented. Demonstrated ability to ensure projects are subject to appropriate security assurance at the correct lifecycle stages, aligning with delivery milestones and risk appetite. Extensive experience producing high quality Cyber Accreditation artefacts, clearly articulating risk, control effectiveness, and ensuring identified risks are owned, mitigated, or formally accepted. Established ability to build and maintain trusted relationships with key internal and external stakeholders, enabling pragmatic engagement between Cyber teams and wider business areas. Evidence of contributing to the continuous improvement of Cyber Accreditation processes and procedures, enhancing consistency, efficiency, and overall assurance quality. Essential Criteria We are interested in hearing from candidates who have the following capabilities: Experience in independently conducting Cyber Risk and/or Security Control Assessments across complex systems or environments. Practical use of recognised security standards and frameworks, such as the NIST Cyber Security Framework and MITRE ATT&CK. Strong technical report writing skills, with the ability to produce clear outputs for both technical and non‑technical stakeholders. Experience reviewing and assessing technical and solution design documentation from a security perspective. Proven ability to translate complex technical concepts into clear, business‑focused language to support informed decision‑making and positive security outcomes. Ability to work autonomously, manage multiple tasks and deliverables, and proactively raise issues or risks where appropriate. Desirable Criteria It would also be beneficial, but not necessary, to have some of the following: Experience implementing, auditing, or working in compliance with recognised standards such as ISO 27001 and/or the SWIFT Customer Security Programme (CSP). Background in accreditation or assurance activities within HMG, Defence, or similarly regulated environments. Exposure to secure development practices within large scale or complex technology programmes. Familiarity with Agile ways of working and delivery methodologies. How this role fits into the wider Bank: The Cyber Security Division (CSD) is a distinguished team of cyber security professionals dedicated to safeguarding the Bank of England from cyber-attacks and related incidents. In 2023, CSD received the Financial Services Award of the Year at the National Cyber Awards, building upon prior recognition for individual team members at the WeAreTechWomen and Women in IT Awards, as well as Central Banking’s Best Cyber Resilience Initiative. Those working in Cyber Security are passionate about protecting the Bank from security incidents. The Bank of England’s complex technological landscape presents significant challenges, often spanning multiple systems located in internal data centres, cloud environments, and SaaS platforms. Addressing these challenges demands cross-team collaboration and a high level of technical expertise. The role involves assessing the security of solutions proposed by different bank teams. By working closely with colleagues across technology and throughout the organisation, you will contribute significantly to protecting the organisation and its information assets. Teams within the division are committed to continuously developing their expertise in a rapidly changing environment. Staff are encouraged to enhance their skills through both internal and external opportunities, including mentoring, training, and pursuing formal qualifications, in line with industry best practices. Our Approach to Inclusion The Bank values diversity, equity and inclusion. We play a key role in maintaining monetary and financial stability, and to do that effectively, we believe we need a workforce that reflects the society we serve. At the Bank of England, we want all colleagues to feel valued and respected, so we're working hard to build an inclusive culture which supports people from all backgrounds and communities to be at their best at work. We celebrate all forms of diversity, including (but not limited to) age, disability, ethnicity, gender, gender identity, race, religion, sexual orientation and socioeconomic status. We believe that it’s by drawing on different perspectives and experiences that we’ll continue to make the best decisions for the public. We welcome applications from individuals who work flexibly, including job shares and part time working patterns. We've also partnered with external organisations to support us in making adjustments for candidates and employees in the recruitment process where they're needed. For most roles where work can be carried out at home, we aim for colleagues to spend half of their time in the office, with a minimum of 40% per month. Subject to that minimum requirement, individuals and managers should work together to find what works best for them, their team and stakeholders. Finally, we're proud to be a member of the Disability Confident Scheme. If you wish to apply under this scheme, you should check the box in the ‘Candidate Personal Information’ under the ‘Disability Confident Scheme’ section of the application. Salary and Benefits Information We encourage flexible working, part time working and job share arrangements. Part time salary and benefits will be on a pro-rated basis as appropriate. We offer a salary as follows: £55,280 - £62,190 In addition, we also offer a comprehensive benefits package as detailed below: Currently a non-contributory, career average pension giving you a guaranteed retirement benefit of 1/80th of your annual salary for every year worked. There is the option to increase your pension (to 1/65th) or decrease (to 1/105th) in exchange for salary through our flexible benefits programme each year. The Bank has the discretion to vary standard accrual rates and dial up and dial down rates at any time and to withdraw dial up and dial down options at any time. A discretionary performance award based on a current award pool. An 8% benefits allowance with the option to take as salary or purchase a wide range of flexible benefits. 26 days’ annual leave with option to buy up to 12 additional days through flexible benefits. Private medical insurance and income protection. National Security Vetting Process Employment in this role will be subject to the National Security Vetting clearance process (and typically can take between 6 to 12 weeks post offer) and the passing of additional Bank security checks in accordance with the Bank policy. Further information regarding the vetting and security clearance requirements for the role will be provided to the successful applicant, and information about how the Bank processes personal data for these purposes, is set out in the Bank's Privacy Notice. The Bank of England welcomes applications from all candidates, but as a UK Visas and Immigration (UKVI) approved sponsor, we have a responsibility to comply with the Immigration Rules and guidance. As such, our ability to employ individuals who require sponsorship for immigration purposes is limited. The Bank cannot guarantee that you and / or the role you are applying for will be eligible for sponsorship and that any application made to UKVI will be successful. Eligibility will therefore be considered on a case by case basis. The Application Process Important: Please ensure that you complete the ‘work history’ section and answer ALL the application questions fully. All candidate applications are anonymised to ensure that our hiring managers will not be able to see your personal information, including your CV, when reviewing your application details at the screening stage. It’s therefore really important that you fill out the work history and application form questions, as your answers will form a critical part of the initial selection process. This role closes on 17th April 2026. The assessment process will comprise of two interview stages