Senior Cyber Security Analyst, Technical Vulnerability Management - Cyber Security
Permanent · Full time · Leeds
We currently have a number of opportunities across our Cyber teams - if this role isn't the right fit, we encourage you to explore what else is available.
Job Description
The Bank of England is looking for an enthusiastic Senior Cyber Security Analyst to join its outstanding Security Posture Management Team. The team is responsible for the provisioning of continuous vulnerability and mis‑configuration detection for the whole Bank and works alongside the Penetration Testing team to form the Technical Vulnerability Management Team (TVM).
Flexible Working Options
* Ability to adapt calendar as needed, this could be to fit in the school run, gym, or appointments
* A 50% in‑office attendance requirement can be spread across the month to accommodate diverse working patterns, such as the flexibility to purchase a weekly train ticket for certain weeks. Compressed hours (subject to approval and policy within the team)
* Working from abroad policy (subject to approval and policy within the team)
Opportunities in Leeds
We're excited to be growing our presence in Leeds, a city we've been connected to for nearly 200 years! Our modern, accessible office in the City Centre offers a supportive, flexible working environment. The majority of roles, including this one, are now available in Leeds, giving you the chance to build a meaningful career outside of London while contributing to our mission from a dynamic and growing location. You'll work collaboratively with London‑based colleagues in a hybrid model, with regular opportunities to travel into the London office to meet and connect together in person.
A day in the role
Day‑to‑day you will be responsible for the ongoing security posture of the Bank. Within the Security Posture Management (SPM) team you will be covering strategy, ongoing vulnerability assessment, policy compliance reviews, continual improvement and reporting. Ensuring that the SPM team is staying at the forefront of the SPM practice.
Role Requirements
* Supporting the Team Lead with the delivery of Security Posture Management activities including vulnerability and configuration management
* Provide status reports to Cyber Security leadership on VM metrics, key risk indicators, trends, and compliance
* Using the Bank's vulnerability management tools (Qualys and Wiz) to monitor security posture
* Provide technical security guidance in plain English to Bank stakeholders
* Ability to manage multiple tasks concurrently
* Assist in the remediation management of identified vulnerabilities, coordinating with other teams in the Technology Directorate
* Consistently deliver detailed clear documentation for reporting and compliance purposes
Minimum Criteria
* Manage vulnerability scanning, prioritisation, and remediation workflows across all technology stacks
* Knowledge of Cyber Security, threat, risk, and technical vulnerability management
* Strong analytical skills and the ability to parse technical information from multiple sources
* Good communication skills and capability to present complex information clearly to technical and non‑technical audiences (including senior stakeholders)
* Ability to work cross‑functionally with multi‑functional teams
* Stay ahead of emerging threats and testing methodologies to enhance security resilience
Essential Criteria
* Expertise in integration with risk management frameworks
* Excellent team leadership, stakeholder management, and communication skills
* Foster a culture of accountability, collaboration, and continuous learning
Desirable Criteria
* A strong interest in Cyber Security matters, with the holding of relevant qualifications (e.g. CISSP, Security+, OSCP) being a distinct advantage
* Experience using Qualys and/or Wiz as security tools
* Experience working in financial services or government organisations
How this role fits into the wider Bank
The Cyber Security Division (CSD) supports Technology and the wider Bank in achieving its cyber security objectives and is made up of a number of domains with responsibility for operating and improving the Bank's cyber security controls. Security Posture Management is responsible for the Cyber Defence domain. This domain is responsible for ensuring potential cyber‑attacks are responded to and potential impacts to the Banks mission are reduced.
National Security Vetting Process
Employment in this role will be subject to the National Security Vetting clearance process (and typically can take between 6 to 12 weeks post offer) and the passing of additional Bank security checks in accordance with the Bank policy. Further information regarding the vetting and security clearance requirements for the role will be provided to the successful applicant, and information about how the Bank processes personal data for these purposes, is set out in the Bank's Privacy Notice.
Salary and Benefits Information
We encourage flexible working, part time working and job share arrangements. Part time salary and benefits will be on a pro‑rated basis as appropriate.
* Currently a non‑contributory, career average pension giving you a guaranteed retirement benefit of 1/80th of your annual salary for every year worked. There is the option to increase your pension (to 1/65th) or decrease (to 1/105th) in exchange for salary through our flexible benefits programme each year. The Bank has the discretion to vary standard accrual rates and dial up and dial down rates at any time and to withdraw dial up and dial down options at any time.
* A discretionary performance award based on a current award pool.
* An 8% benefits allowance with the option to take as salary or purchase a wide range of flexible benefits.
* 26 days' annual leave with option to buy up to 12 additional days through flexible benefits.
* Private medical insurance and income protection.
Application Deadline
This role closes on 2nd June 2026.
The Bank of England welcomes applications from all candidates.
#J-18808-Ljbffr