Security Analyst

Role Overview
We are working with a Charity who are seeking a proactive and detail-oriented Cyber Security Analyst to support the ongoing protection of their digital assets, systems, and data.
This home-based role will be instrumental in monitoring threats, identifying risk, assessing vulnerabilities, and improving their security posture across the organisation.
You'll work closely with the IT Security Manager, wider IT team, and third-party partners to ensure security best practices are maintained across their cloud and on-premise environments.

Key Responsibilities

• Conduct threat and vulnerability assessments and recommend remediation steps
• Support the investigation of security incidents and policy violations
• Assist with risk assessments and security audits
• Implement and maintain security standards, and guidelines
• Work with third-party vendors and partners on pen testing and remediation activities
• Support awareness campaigns to improve cybersecurity hygiene among staff
• Assist in the development and implementation of disaster recovery and business continuity plans.
• Produce reports and metrics for senior IT and governance stakeholders
• Stay updated with the latest threats, trends, and compliance requirements (e.g., GDPR, PCI DSS, Cyber Essentials)

Person Specification
Essential:

• Demonstrable experience in a related role
• Excellent problem-solving, analytical, and communication skills
• An appetite for keeping up to date with the latest developments in technology, business practices, and the wider threat environment
• Ability to work independently and remotely with minimal supervision
• Understanding of current threats, attack vectors, and security frameworks
• Familiarity with Microsoft 365 security tools (Defender, Purview, Entra, etc.)
• Working knowledge of network protocols, email security, and IT architectures
• Right to work in the UK

Desirable:

• Industry certifications (e.g., CompTIA Security+, SSCP)
• Experience in the charity or non-profit sector
• Familiarity with Microsoft Azure cloud platforms and identity management
• Experience with compliance frameworks (PCI DSS, Cyber Essentials)
• Experience with auditing and compliance
• Experience of BCP/DR