This role offers a competitive salary, hybrid working working in London 1 (minimum) - 2 days per week with Thursdays being the mandatory in office team day, 28 days holiday a year plus Bank Holidays and a fantastic pension scheme offering 6% in year one and 11% after this.
Salary £60,000 - £65,000 per annum
Location: London/Hybrid (required to be in the office up to 2 days per week, with every Thursday being mandatory)
Please note: Although we acknowledge that the use of AI tools can be helpful, we want your application to represent you. Please ensure your CV and statement of suitability (if asked to send in this advert) reflect your own voice and experiences. AI tools must not be used as part of any interview you attend.
About the role
You will form part of the Which? InfoSec team, responsible for routine and project-based cyber security delivery, you will own various aspects of the operational security work and coordinate remedial security work and participate in all aspects of day to day work, including incident management, under the supervision of the Cyber Security Lead.
Key responsibilities
* Leading a variety of BAU security tasks such as vulnerability management, Security Operations Centre (SOC) escalation and investigation and security controls assessment.
* Owning aspects of Strategic Cyber Security workstreams to increase the company's maturity.
* Acting as the technical security point of contact for the InfoSec team, providing advice to stakeholders across IT and Engineering.
* Promoting a 'security-first' culture by mentoring junior InfoSec colleagues and embedding security awareness across Which?.
* Vulnerability identification, management and remediation.
* Incident response and management.
* Protective monitoring subject matter expert.
* Compliance, audit and assurance, including physical security.
* Being the platform security single point of contact.
About you
You will have a technical background and a keen interest in cyber security, with proven experience working in operational roles and responsibilities for security tooling and business-as-usual activities. You will be keen to learn and a strong communicator, able to engage across all levels, from engineers to leadership.
* Motivated, enthusiastic and pragmatic security professional.
* Well-versed in both technical and senior stakeholder management.
* Analytical mindset for improving and streamlining security processes.
* Awareness and understanding of emerging cyber security threats.
The interview process
* 30 minute screening call with members of the Security Team via MS Teams.
* 60-90 minute Competency-based and scenario-based interview via MS Teams.
Benefits
* 35 hour working week
* Generous 28 days holiday a year plus bank holidays and the option to buy additional holiday days
* Excellent pension scheme – when you pay in 3%, Which? pays in 6% (rising to 11% after one year of service)
* Annual Award (depending on employee and company performance)
* Healthcare insurance & Private medical insurance and opportunity to participate in Vitality rewards programme (at 6 months)
* A discretionary death in service benefit provision equivalent to six times your annual salary
* Free access to Which? member content and free access to Which? money & legal helplines
* Free wills for all Which? employees, plus, partners of employees can make their will at cost price.
* Discount site Pluxee which offers large % off every day shopping and holidays
* Work from (almost) anywhere for 4 weeks of the year policy
* A great work-life balance (all our roles are now hybrid), offering flexible working options e.g. part time or job shares where possible. If you wish to discuss any of these options, please contact the Resourcing team at recruitment@which.co.uk.
About Which?
Which? is the UK's consumer champion, here to make life simpler, fairer and safer for everyone. You can find out more about what we do, our people and culture as well as hints and tips on how to complete your application on our Careers site.
We're proud to be ranked 3rd in the ‘Top 25 Inclusive Employers' List 2024. We welcome applications from everyone, because we value diversity, and are committed to maintaining an inclusive culture where all can thrive and reach their full potential—because diverse perspectives help us better understand and positively impact consumers.
As a Disability Confident Leader, we ensure that everyone can apply and be part of our recruitment processes and so we'll make reasonable adjustments if you need them. For this or any other assistance you need with applying (i.e., would like to apply by phone or post), email recruitment@which.co.uk. Find out more about the Disability Confident Interview Scheme here.
Please note
1. You must meet the essential criteria listed within the Role Profile, to have your application reviewed.
2. We are unable to accept applications by email. Only candidates who apply by completing the online application via the careers site will be considered.
3. We reserve the right to withdraw this advert at any given time due to the number of applications received.
Resource
* Senior Cyber Security Analyst role profile - Feb 2026.pdf
#J-18808-Ljbffr