973 Security Advisor jobs in the United Kingdom

Requisition ID 35730 | Office Country United Kingdom | Office City London | Division Risk Management | Contract Type Short Term | Contract Length 12 months | Posting End Date 24/09/2025

We are looking for a highly skilled

Information Security Consultant

to join our Operational Risk Management (ORM) team at the European Bank for Reconstruction and Development (EBRD). This is a unique opportunity to play a vital role in protecting the EBRD's Information Assets and IT Facilities, supporting the delivery of critical projects, and shaping our security and risk governance across the Bank; with a focus on providing Information Security consultancy to the business and performing supplier assurance assessments.

Your Role and PurposenAs an Information Security Consultant, you will support the Head of Information Security in managing Information Security (IS) risks across the Bank. You will be responsible for:

Providing technical security consultancy and managing risk assessments, including third-party and cybersecurity risks.

Identifying and assessing AI risks and devising remediation programmes.

Working on key Information and Cybersecurity remediation projects such as Data Leakage Prevention (DLP) and Supplier Assurance Security Reviews.

Assess and advise on technical risk mitigation measures, review identified risks, analyse security incidents and communicate risk mitigation actions, plans and activities to management and peers for strategic decision-making.

Ensuring regulatory compliance and supporting internal/external reviews.

Work closely with the IT Department on technical aspects of information security in the Bank.

Key Responsibilities

Conduct Information Security and Cybersecurity assessments and technical risk evaluations.

Design remediation projects, in particular around Data Leakage, Supplier Security Assurance and AI.

Liaise with IT and MSSP teams to identify and remediate security risks/incidents.

Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF).

Track and advise on industry security trends and their implications.

Contribute to social engineering assessments, BAU risk mitigation, and business process evaluations.

Influence and support change by aligning policy updates with new regulations and business needs.

What We're Looking For

A Bachelor's or Master's degree (preferably in IT, Security, or Risk).

At least one recognised IS qualification (CISM, CISA, CISSM, ISO 27001 Lead Auditor/Implementer, CIPP/E).

Proven experience in delivering project and supplier assurance activities in the IS domain.

Strong written and verbal communication skills, especially the ability to translate technical details into business-friendly language.

Effective project management and stakeholder engagement abilities.

Ability to work independently, manage multiple priorities, and maintain high attention to detail.

A collaborative mindset with strong influencing and problem-solving capabilities.

What is it like to work at the EBRD?nOur agile and innovative approach is what makes life at the EBRD a unique experience! You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people's lives and help shape the future of the regions we invest in.

The EBRD environment provides you with:

Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;

A working culture that embraces inclusion and celebrates diversity;

An environment that places sustainability, equality and digital transformation at the heart of what we do.

Diversity is one of the Bank's core values which are at the heart of everything it does. A diverse workforce with the right knowledge and skills enables connection with our clients, brings pioneering ideas, energy and innovation. The EBRD staff is characterised by its rich diversity of nationalities, cultures and opinions and we aim to sustain and build on this strength. As such, the EBRD seeks to ensure that everyone is treated with respect and given equal opportunities and works in an inclusive environment. The EBRD encourages all qualified candidates who are nationals of the EBRD member countries to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. As an inclusive employer, we promote flexible working and expecting our employee to attend the office 50% of their working time.

Please note, that due to the high volume of applications received, we regret to inform you that we are unable to provide detailed feedback to candidates who have not been shortlisted (for further consideration).

#J-18808-Ljbffrn

Join to apply for the

Information Security Consultant

role at

myGwork - LGBTQ+ Business Community .

This job is with EBRD, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.

Requisition ID 35730 | Office Country United Kingdom | Office City London | Division Risk Management | Contract Type Short Term | Contract Length 12 months | Posting End Date 24/09/2025

We are looking for a highly skilled

Information Security Consultant

to join our Operational Risk Management (ORM) team at the European Bank for Reconstruction and Development (EBRD). This is a unique opportunity to play a vital role in protecting the EBRD’s Information Assets and IT Facilities, supporting the delivery of critical projects, and shaping our security and risk governance across the Bank; with a focus on providing Information Security consultancy to the business and performing supplier assurance assessments.

Your Role and Purpose

Responsibilities

Providing technical security consultancy and managing risk assessments, including third-party and cybersecurity risks.

Identifying and assessing AI risks and devising remediation programmes.

Working on key Information and Cybersecurity remediation projects such as Data Leakage Prevention (DLP) and Supplier Assurance Security Reviews.

Assess and advise on technical risk mitigation measures, review identified risks, analyse security incidents and communicate risk mitigation actions, plans and activities to management and peers for strategic decision-making.

Ensuring regulatory compliance and supporting internal/external reviews.

Work closely with the IT Department on technical aspects of information security in the Bank.

Key Responsibilities

Conduct Information Security and Cybersecurity assessments and technical risk evaluations.

Design remediation projects, in particular around Data Leakage, Supplier Security Assurance and AI.

Liaise with IT and MSSP teams to identify and remediate security risks/incidents.

Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF).

Track and advise on industry security trends and their implications.

Contribute to social engineering assessments, BAU risk mitigation, and business process evaluations.

Influence and support change by aligning policy updates with new regulations and business needs.

What We’re Looking For

A Bachelor’s or Master’s degree (preferably in IT, Security, or Risk).

At least one recognised IS qualification (CISM, CISA, CISSP, ISO 27001 Lead Auditor/Implementer, CIPP/E).

Proven experience in delivering project and supplier assurance activities in the IS domain.

Strong written and verbal communication skills, especially the ability to translate technical details into business-friendly language.

Effective project management and stakeholder engagement abilities.

Ability to work independently, manage multiple priorities, and maintain high attention to detail.

A collaborative mindset with strong influencing and problem-solving capabilities.

What is it like to work at the EBRD?

Our agile and innovative approach is what makes life at the EBRD a unique experience. You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people’s lives and help shape the future of the regions we invest in.

The EBRD Environment Provides You With

Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in.

A working culture that embraces inclusion and celebrates diversity.

An environment that places sustainability, equality and digital transformation at the heart of what we do.

Diversity is one of the Bank’s core values which are at the heart of everything it does. The EBRD seeks to ensure that everyone is treated with respect and given equal opportunities and works in an inclusive environment. The EBRD encourages all qualified candidates who are nationals of the EBRD member countries to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. As an inclusive employer, we promote flexible working and expecting our employee to attend the office 50% of their working time.

Please note, that due to the high volume of applications received, we regret to inform you that we are unable to provide detailed feedback to candidates who have not been shortlisted (for further consideration).

Seniority level

Mid-Senior level

Employment type

Full-time

Job function

Information TechnologynIndustries: Technology, Information and Internet

Referrals increase your chances of interviewing at myGwork - LGBTQ+ Business Community by 2x.

Get notified about new Information Security Consultant jobs in

London, England, United Kingdom .

#J-18808-Ljbffrn

Your Role and Purpose

As an Information Security Consultant, you will support the Head of Information Security in managing Information Security (IS) risks across the Bank. You will be responsible for:nProviding technical security consultancy and managing risk assessments, including third-party and cybersecurity risks.nIdentifying and assessing AI risks and devising remediation programmes.nWorking on key Information and Cybersecurity remediation projects such as Data Leakage Prevention (DLP) and Supplier Assurance Security Reviews.nAssess and advise on technical risk mitigation measures, review identified risks, analyse security incidents and communicate risk mitigation actions, plans and activities to management and peers for strategic decision-making.nEnsuring regulatory compliance and supporting internal/external reviews.nWork closely with the IT Department on technical aspects of information security in the Bank.nKey Responsibilities

Conduct Information Security and Cybersecurity assessments and technical risk evaluations.nDesign remediation projects, in particular around Data Leakage, Supplier Security Assurance and AI.nLiaise with IT and MSSP teams to identify and remediate security risks/incidents.nDraft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF).nTrack and advise on industry security trends and their implications.nContribute to social engineering assessments, BAU risk mitigation, and business process evaluations.nInfluence and support change by aligning policy updates with new regulations and business needs.nWhat We’re Looking For

A Bachelor’s or Master’s degree (preferably in IT, Security, or Risk).nAt least one recognised IS qualification (CISM, CISA, CISSP, ISO 27001 Lead Auditor/Implementer, CIPP/E).nProven experience in delivering project and supplier assurance activities in the IS domain.nStrong written and verbal communication skills, especially the ability to translate technical details into business-friendly language.nEffective project management and stakeholder engagement abilities.nAbility to work independently, manage multiple priorities, and maintain high attention to detail.nA collaborative mindset with strong influencing and problem-solving capabilities.nWhat is it like to work at the EBRD?

Our agile and innovative approach is what makes life at the EBRD a unique experience! You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people's lives and help shape the future of the regions we invest in.nThe EBRD environment provides you with:nVaried, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;nA working culture that embraces inclusion and celebrates diversity;nAn environment that places sustainability, equality and digital transformation at the heart of what we do.nDiversity is one of the Bank’s core values which are at the heart of everything it does. A diverse workforce with the right knowledge and skills enables connection with our clients, brings pioneering ideas, energy and innovation. The EBRD staff is characterised by its rich diversity of nationalities, cultures and opinions and we aim to sustain and build on this strength. As such, the EBRD seeks to ensure that everyone is treated with respect and given equal opportunities and works in an inclusive environment. The EBRD encourages all qualified candidates who are nationals of the EBRD member countries to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. As an inclusive employer, we promote flexible working and expecting our employee to attend the office 50% of their working time.nPlease note, that due to the high volume of applications received, we regret to inform you that we are unable to provide detailed feedback to candidates who have not been shortlisted (for further consideration).

#J-18808-Ljbffrn

Business Unit: Technology Operations and Cyber Security Salary range: £48,000 - £60,000 per annum Benefits Location: UK Remote - work from anywhere within the UK, with occasional travel to Hub Contract type : Permanent Our Team Are you passionate about cyber security and eager to make a real impact? At Virgin Money, we’re looking for a dynamic Cyber Project Specialist to join our Security Solutions team. We are championing being Secure by Design across all our change and delivery programmes, embarking on threat modelling and giving straight up advice for colleagues on security best practice and our regulatory requirements. If you like a fast-paced and rewarding role that exposes you to exciting technology and will challenge you, then you may have just found it! We're looking for self-motivated enthusiastic individuals, who are ready to make a real difference to a successful team and play a key role in keeping our customers and colleagues safe. What you’ll be doing Foster strong connections, help to shift our security culture and advocate for Secure by Design principles throughout our projects. Perform design reviews, threat modelling, and risk assessments to ensure robust security measures are incorporated from the outset. Offer expert advice and consultation on our policy & standards, industry regulations, frameworks, and best practices to support our change initiatives and operational teams. Ensure that security requirements and considerations are seamlessly integrated into our change solutions and evident. Identify and evaluate security risks, making recommendations to continuously improve Virgin Money’s security posture in an ever-changing threat landscape. Set clear objectives, boundaries, and focus areas for security tests to prevent vulnerabilities in our technical ecosystem. Ensure that any risks or findings from security scans or tests are addressed within risk appetite before changes are promoted to production. We need you to have You know your Cyber Security Frameworks inside out and can explain their significance and impact to everyone from tech teams to senior business stakeholders. You’ve got good understanding across a range of Information Security domains, including Identity & Access Management, Network Security, Cryptography and Public Key Infrastructure, Mobile & API security, and more. Your strong analytical skills help you interpret how industry trends, regulations, and the threat landscape can affect our business. You’ve got experience in scoping penetration tests, conducting risk assessments, and overseeing remediation plans. You’re skilled at influencing, communicating, and collaborating with senior management and stakeholders. You’re well-versed in Cloud Service models like IaaS, PaaS, and SaaS and the security context when deploying solutions into them. You’ve got experience in a similar cyber role, information technology or governance / risk, bringing valuable insights and expertise to the table. It’s a bonus if you have but not essential Experience working in a regulated industry and the financial services sector. Background and experience in threat modelling using techniques like STRIDE. knowledge and understanding of Microsoft Azure and 365 security products like Defender, Sentinel, Azure Information Protection, and Intune. Holding Information Security certifications such as CISM, CCSP, CRISC, or CompTIA Security and being actively involved in the cyber community through participation in working groups, forums, and facilitating knowledge-sharing sessions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Business Unit: Technology Operations and Cyber Security Salary range: £48,000 - £60,000 per annum Benefits Location: UK Remote - work from anywhere within the UK, with occasional travel to Hub Contract type : Permanent Our Team Are you passionate about cyber security and eager to make a real impact? At Virgin Money, we’re looking for a dynamic Cyber Project Specialist to join our Security Solutions team. We are championing being Secure by Design across all our change and delivery programmes, embarking on threat modelling and giving straight up advice for colleagues on security best practice and our regulatory requirements. If you like a fast-paced and rewarding role that exposes you to exciting technology and will challenge you, then you may have just found it! We're looking for self-motivated enthusiastic individuals, who are ready to make a real difference to a successful team and play a key role in keeping our customers and colleagues safe. What you’ll be doing Foster strong connections, help to shift our security culture and advocate for Secure by Design principles throughout our projects. Perform design reviews, threat modelling, and risk assessments to ensure robust security measures are incorporated from the outset. Offer expert advice and consultation on our policy & standards, industry regulations, frameworks, and best practices to support our change initiatives and operational teams. Ensure that security requirements and considerations are seamlessly integrated into our change solutions and evident. Identify and evaluate security risks, making recommendations to continuously improve Virgin Money’s security posture in an ever-changing threat landscape. Set clear objectives, boundaries, and focus areas for security tests to prevent vulnerabilities in our technical ecosystem. Ensure that any risks or findings from security scans or tests are addressed within risk appetite before changes are promoted to production. We need you to have You know your Cyber Security Frameworks inside out and can explain their significance and impact to everyone from tech teams to senior business stakeholders. You’ve got good understanding across a range of Information Security domains, including Identity & Access Management, Network Security, Cryptography and Public Key Infrastructure, Mobile & API security, and more. Your strong analytical skills help you interpret how industry trends, regulations, and the threat landscape can affect our business. You’ve got experience in scoping penetration tests, conducting risk assessments, and overseeing remediation plans. You’re skilled at influencing, communicating, and collaborating with senior management and stakeholders. You’re well-versed in Cloud Service models like IaaS, PaaS, and SaaS and the security context when deploying solutions into them. You’ve got experience in a similar cyber role, information technology or governance / risk, bringing valuable insights and expertise to the table. It’s a bonus if you have but not essential Experience working in a regulated industry and the financial services sector. Background and experience in threat modelling using techniques like STRIDE. knowledge and understanding of Microsoft Azure and 365 security products like Defender, Sentinel, Azure Information Protection, and Intune. Holding Information Security certifications such as CISM, CCSP, CRISC, or CompTIA Security and being actively involved in the cyber community through participation in working groups, forums, and facilitating knowledge-sharing sessions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Business Unit: Technology Operations and Cyber Security Salary range: £48,000 - £60,000 per annum Benefits Location: UK Remote - work from anywhere within the UK, with occasional travel to Hub Contract type : Permanent Our Team Are you passionate about cyber security and eager to make a real impact? At Virgin Money, we’re looking for a dynamic Cyber Project Specialist to join our Security Solutions team. We are championing being Secure by Design across all our change and delivery programmes, embarking on threat modelling and giving straight up advice for colleagues on security best practice and our regulatory requirements. If you like a fast-paced and rewarding role that exposes you to exciting technology and will challenge you, then you may have just found it! We're looking for self-motivated enthusiastic individuals, who are ready to make a real difference to a successful team and play a key role in keeping our customers and colleagues safe. What you’ll be doing Foster strong connections, help to shift our security culture and advocate for Secure by Design principles throughout our projects. Perform design reviews, threat modelling, and risk assessments to ensure robust security measures are incorporated from the outset. Offer expert advice and consultation on our policy & standards, industry regulations, frameworks, and best practices to support our change initiatives and operational teams. Ensure that security requirements and considerations are seamlessly integrated into our change solutions and evident. Identify and evaluate security risks, making recommendations to continuously improve Virgin Money’s security posture in an ever-changing threat landscape. Set clear objectives, boundaries, and focus areas for security tests to prevent vulnerabilities in our technical ecosystem. Ensure that any risks or findings from security scans or tests are addressed within risk appetite before changes are promoted to production. We need you to have You know your Cyber Security Frameworks inside out and can explain their significance and impact to everyone from tech teams to senior business stakeholders. You’ve got good understanding across a range of Information Security domains, including Identity & Access Management, Network Security, Cryptography and Public Key Infrastructure, Mobile & API security, and more. Your strong analytical skills help you interpret how industry trends, regulations, and the threat landscape can affect our business. You’ve got experience in scoping penetration tests, conducting risk assessments, and overseeing remediation plans. You’re skilled at influencing, communicating, and collaborating with senior management and stakeholders. You’re well-versed in Cloud Service models like IaaS, PaaS, and SaaS and the security context when deploying solutions into them. You’ve got experience in a similar cyber role, information technology or governance / risk, bringing valuable insights and expertise to the table. It’s a bonus if you have but not essential Experience working in a regulated industry and the financial services sector. Background and experience in threat modelling using techniques like STRIDE. knowledge and understanding of Microsoft Azure and 365 security products like Defender, Sentinel, Azure Information Protection, and Intune. Holding Information Security certifications such as CISM, CCSP, CRISC, or CompTIA Security and being actively involved in the cyber community through participation in working groups, forums, and facilitating knowledge-sharing sessions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Business Unit: Technology Operations and Cyber Security Salary range: £48,000 - £60,000 per annum Benefits Location: UK Remote - work from anywhere within the UK, with occasional travel to Hub Contract type : Permanent Our Team Are you passionate about cyber security and eager to make a real impact? At Virgin Money, we’re looking for a dynamic Cyber Project Specialist to join our Security Solutions team. We are championing being Secure by Design across all our change and delivery programmes, embarking on threat modelling and giving straight up advice for colleagues on security best practice and our regulatory requirements. If you like a fast-paced and rewarding role that exposes you to exciting technology and will challenge you, then you may have just found it! We're looking for self-motivated enthusiastic individuals, who are ready to make a real difference to a successful team and play a key role in keeping our customers and colleagues safe. What you’ll be doing Foster strong connections, help to shift our security culture and advocate for Secure by Design principles throughout our projects. Perform design reviews, threat modelling, and risk assessments to ensure robust security measures are incorporated from the outset. Offer expert advice and consultation on our policy & standards, industry regulations, frameworks, and best practices to support our change initiatives and operational teams. Ensure that security requirements and considerations are seamlessly integrated into our change solutions and evident. Identify and evaluate security risks, making recommendations to continuously improve Virgin Money’s security posture in an ever-changing threat landscape. Set clear objectives, boundaries, and focus areas for security tests to prevent vulnerabilities in our technical ecosystem. Ensure that any risks or findings from security scans or tests are addressed within risk appetite before changes are promoted to production. We need you to have You know your Cyber Security Frameworks inside out and can explain their significance and impact to everyone from tech teams to senior business stakeholders. You’ve got good understanding across a range of Information Security domains, including Identity & Access Management, Network Security, Cryptography and Public Key Infrastructure, Mobile & API security, and more. Your strong analytical skills help you interpret how industry trends, regulations, and the threat landscape can affect our business. You’ve got experience in scoping penetration tests, conducting risk assessments, and overseeing remediation plans. You’re skilled at influencing, communicating, and collaborating with senior management and stakeholders. You’re well-versed in Cloud Service models like IaaS, PaaS, and SaaS and the security context when deploying solutions into them. You’ve got experience in a similar cyber role, information technology or governance / risk, bringing valuable insights and expertise to the table. It’s a bonus if you have but not essential Experience working in a regulated industry and the financial services sector. Background and experience in threat modelling using techniques like STRIDE. knowledge and understanding of Microsoft Azure and 365 security products like Defender, Sentinel, Azure Information Protection, and Intune. Holding Information Security certifications such as CISM, CCSP, CRISC, or CompTIA Security and being actively involved in the cyber community through participation in working groups, forums, and facilitating knowledge-sharing sessions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Business Unit: Technology Operations and Cyber Security Salary range: £48,000 - £60,000 per annum Benefits Location: UK Remote - work from anywhere within the UK, with occasional travel to Hub Contract type : Permanent Our Team Are you passionate about cyber security and eager to make a real impact? At Virgin Money, we’re looking for a dynamic Cyber Project Specialist to join our Security Solutions team. We are championing being Secure by Design across all our change and delivery programmes, embarking on threat modelling and giving straight up advice for colleagues on security best practice and our regulatory requirements. If you like a fast-paced and rewarding role that exposes you to exciting technology and will challenge you, then you may have just found it! We're looking for self-motivated enthusiastic individuals, who are ready to make a real difference to a successful team and play a key role in keeping our customers and colleagues safe. What you’ll be doing Foster strong connections, help to shift our security culture and advocate for Secure by Design principles throughout our projects. Perform design reviews, threat modelling, and risk assessments to ensure robust security measures are incorporated from the outset. Offer expert advice and consultation on our policy & standards, industry regulations, frameworks, and best practices to support our change initiatives and operational teams. Ensure that security requirements and considerations are seamlessly integrated into our change solutions and evident. Identify and evaluate security risks, making recommendations to continuously improve Virgin Money’s security posture in an ever-changing threat landscape. Set clear objectives, boundaries, and focus areas for security tests to prevent vulnerabilities in our technical ecosystem. Ensure that any risks or findings from security scans or tests are addressed within risk appetite before changes are promoted to production. We need you to have You know your Cyber Security Frameworks inside out and can explain their significance and impact to everyone from tech teams to senior business stakeholders. You’ve got good understanding across a range of Information Security domains, including Identity & Access Management, Network Security, Cryptography and Public Key Infrastructure, Mobile & API security, and more. Your strong analytical skills help you interpret how industry trends, regulations, and the threat landscape can affect our business. You’ve got experience in scoping penetration tests, conducting risk assessments, and overseeing remediation plans. You’re skilled at influencing, communicating, and collaborating with senior management and stakeholders. You’re well-versed in Cloud Service models like IaaS, PaaS, and SaaS and the security context when deploying solutions into them. You’ve got experience in a similar cyber role, information technology or governance / risk, bringing valuable insights and expertise to the table. It’s a bonus if you have but not essential Experience working in a regulated industry and the financial services sector. Background and experience in threat modelling using techniques like STRIDE. knowledge and understanding of Microsoft Azure and 365 security products like Defender, Sentinel, Azure Information Protection, and Intune. Holding Information Security certifications such as CISM, CCSP, CRISC, or CompTIA Security and being actively involved in the cyber community through participation in working groups, forums, and facilitating knowledge-sharing sessions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Business Unit: Technology Operations and Cyber Security Salary range: £48,000 - £60,000 per annum Benefits Location: UK Remote - work from anywhere within the UK, with occasional travel to Hub Contract type : Permanent Our Team Are you passionate about cyber security and eager to make a real impact? At Virgin Money, we’re looking for a dynamic Cyber Project Specialist to join our Security Solutions team. We are championing being Secure by Design across all our change and delivery programmes, embarking on threat modelling and giving straight up advice for colleagues on security best practice and our regulatory requirements. If you like a fast-paced and rewarding role that exposes you to exciting technology and will challenge you, then you may have just found it! We're looking for self-motivated enthusiastic individuals, who are ready to make a real difference to a successful team and play a key role in keeping our customers and colleagues safe. What you’ll be doing Foster strong connections, help to shift our security culture and advocate for Secure by Design principles throughout our projects. Perform design reviews, threat modelling, and risk assessments to ensure robust security measures are incorporated from the outset. Offer expert advice and consultation on our policy & standards, industry regulations, frameworks, and best practices to support our change initiatives and operational teams. Ensure that security requirements and considerations are seamlessly integrated into our change solutions and evident. Identify and evaluate security risks, making recommendations to continuously improve Virgin Money’s security posture in an ever-changing threat landscape. Set clear objectives, boundaries, and focus areas for security tests to prevent vulnerabilities in our technical ecosystem. Ensure that any risks or findings from security scans or tests are addressed within risk appetite before changes are promoted to production. We need you to have You know your Cyber Security Frameworks inside out and can explain their significance and impact to everyone from tech teams to senior business stakeholders. You’ve got good understanding across a range of Information Security domains, including Identity & Access Management, Network Security, Cryptography and Public Key Infrastructure, Mobile & API security, and more. Your strong analytical skills help you interpret how industry trends, regulations, and the threat landscape can affect our business. You’ve got experience in scoping penetration tests, conducting risk assessments, and overseeing remediation plans. You’re skilled at influencing, communicating, and collaborating with senior management and stakeholders. You’re well-versed in Cloud Service models like IaaS, PaaS, and SaaS and the security context when deploying solutions into them. You’ve got experience in a similar cyber role, information technology or governance / risk, bringing valuable insights and expertise to the table. It’s a bonus if you have but not essential Experience working in a regulated industry and the financial services sector. Background and experience in threat modelling using techniques like STRIDE. knowledge and understanding of Microsoft Azure and 365 security products like Defender, Sentinel, Azure Information Protection, and Intune. Holding Information Security certifications such as CISM, CCSP, CRISC, or CompTIA Security and being actively involved in the cyber community through participation in working groups, forums, and facilitating knowledge-sharing sessions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.