Home
Jobs
Hiscox
Cyber Risk Analyst

Cyber Risk Analyst

On site

London, United Kingdom

Full Time

26-02-2025

Share this job:

Score my CV Apply

Job Specifications

Job Type

Permanent

Build a brilliant future with Hiscox

Position: Cyber Risk Analyst

Reporting to: Head of Cyber Assurance

Location: London

Type: Permanent

Band: I

Company Description

Hiscox is a diversified international insurance group with a powerful brand, strong balance sheet and plenty of room to grow. Listed on the London Stock Exchange and headquartered in Bermuda (with the bulk of group leadership sitting in London), Hiscox has over 3,000 staff across 14 countries and 34 offices. Structured by geography and product, Hiscox’s long-held business strategy has helped them grow from a niche Lloyd’s underwriter to an international insurance group with a powerful and trusted consumer brand.

The Role

The Cyber Risk Analyst is primarily responsible for identifying and analysing the risks associated with cyber threats to our business. You will need to be familiar with cybersecurity risk management frameworks, and have a good grasp of industry recognised security standards such as ISO27001 and NIST CSF. You will also work closely with various stakeholders across our business to gather and analyse data on our Key Risk Indicators (KRIs), track risks throughout the management lifecycle and escalate issues when needed. You will need to be able to populate risk management plans, recommend risk management options and identify trends in our risk assessment data. You will need to promote a culture of risk management and best practice security standards, and your expert advice will help our risk owners to make informed decisions. You will also support with control testing, supply chain risk management and compliance audits against internal policies and standards. You will support other members of your team with the development and maintenance of our security policy framework, and assist with the delivery of security awareness training. The role works in our Office of the CISO and reports to our Head of Cyber Assurance. The role is a permanent position, and will be based in London.

Key Responsibilities

Identify and analyse cybersecurity risks to our business using quantitative and qualitative methods.
Perform risk assessments, control tests and compliance audits in support of our assurance activities.
Ensure that security risks are being accurately identified and managed within acceptable levels throughout their entire lifecycle.
Develop risk management plans and implement measures to reduce risks where required.
Perform third party security risk assessments.
Gather risk management data to track and manage changes in our KRIs.
Support the delivery of all regulatory compliance, risk and board reporting.
Provide cybersecurity risk consulting to delivery programmes and projects.
Advise on implementation of security policies and standards, and how to maintain compliance.
Communicate and report on security risks, issues and initiatives to our stakeholders.
Support the continuous improvement lifecycle of our security policies and standards.
Support the delivery of our corporate security awareness programme and associated initiatives.

Candidate Profile

1 to 3 years experience in a cybersecurity risk analyst role.
Good knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO, CIS, etc.).
Working knowledge of risk management principles and practices for cybersecurity.
Working knowledge of security technologies, tools, and methodologies (e.g., firewalls, encryption, penetration testing, etc.).
Familiarity with financial services (preferably insurance) security standards and regulatory requirements.
Good analytical and problem-solving skills.
Good communication and stakeholder management skills.
BSc or MSc in Cybersecurity, Computer Science or Risk Management is desirable.
Industry recognised qualifications such as CISA and CRISC are desirable.

Diversity & Benefits

At Hiscox we care about our people. We hire the best people for the job and we’re committed to diversity and creating a truly inclusive culture, which we believe drives success.  Working life doesn’t always have to be in the office, so we have introduced hybrid working to encourage a healthy work life balance.  This hybrid working model is set by the team rather than the business to enable you to manage your own personal work-life balance.  We see it as the best of both worlds; structure and sociability on one hand, and independence and flexibility on the other.  Our benefits package includes a bonus, contributory pension, 25 days annual leave plus 2 Hiscox days and a 4 week paid sabbatical with every 5 years’ worth of service, private medical for all the family and much more.

Work with amazing people and be part of a unique culture

About the Company

Hiscox is a leader in specialist insurance. We seek to provide the best protection and peace of mind for our clients through high quality insurance products, backed with excellent service. We are experts in covering a wide range of personal and commercial risks. Know more

Related Jobs

Company Name: AKKODIS
Job Title: Data Engineer Leicester/Hybrid
Job Description: Job Title: Data Engineer Benefits & Perks: Competitive annual salary ranging from £45,000 to £52,000 Hybrid working model for a balanced work-life integration Pension contribution matching to help secure your future Comprehensive wellbeing support to keep you healthy and happy Bike to work scheme for the eco-conscious commuter Performance-based bonuses to reward your hard work Health insurance to keep you and your family protected Paid training opportunities to enhance your skills Exclusive employee discounts to enjoy About Our Client: Our client is a leading organisation in the finance sector, dedicated to delivering exceptional regulatory reporting solutions. They prioritise innovation, compliance, and collaboration, creating an environment that fosters growth and excellence. As they embark on the 2025 Finance Regulatory Reporting Project, they are eager to welcome a talented Data Engineer to their dynamic Business Intelligence team! About The Job: As a Data Engineer, you will play a pivotal role in shaping the future of financial regulatory reporting. You will leverage modern tools within the MS Stack to maintain secure, scalable data infrastructure while ensuring compliance with industry regulations. Here's what you can expect: Data Management & Integration: Design, maintain, and optimise SQL Server-based data warehouse solutions, ensuring high availability and performance. Lead data integration efforts from various source systems to the regulatory reporting software. ETL Development: Spearhead the creation and management of ETL processes, ensuring accurate and timely data delivery for regulatory reporting. Regulatory Reporting: Collaborate with compliance and finance teams to meet all regulatory data reporting requirements and contribute to the delivery of compliant reports. Data Analysis & Remediation: Analyse data to identify inconsistencies, providing solutions to resolve quality issues while remediating Legacy reporting solutions. Collaboration: Work closely with project teams to ensure timely and standard-compliant task completion. Documentation: Produce and maintain high-quality technical and functional documentation for data systems and applications. Technical Expertise: Serve as the subject-matter expert in database management, data integration, and regulatory reporting. Excellence Indicators: Experience in a regulated, controls-focused environment Proven track record of delivering high-quality, compliant reports on time Effective collaboration with cross-functional teams Strong technical documentation and data analysis skills Positive contribution to team dynamics Core Competencies: Clear and respectful communicator Self-motivated and results-oriented Considerate of the impact of your actions on others Innovative and adaptable to new technologies Team-oriented with strong planning and organisational skills Job Specific Competencies: 3-5 years of experience as a Data Engineer in the financial services sector Knowledge of regulatory reporting requirements Expertise in SQL Server and data warehousing methodologies Proficient in the Microsoft Stack, including .NET, C#, and SSRS Strong analytical and problem-solving skills If you're passionate about data and ready to make an impact in a dynamic finance environment, we'd love to hear from you! Join our client in delivering exceptional financial solutions while enjoying a vibrant and supportive workplace. Apply today! Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.

Leicester, United Kingdom

On site

Full Time

03-03-2025

Company Name: Cambridge Intelligence
Job Title: Platform Engineer
Job Description: Are you a DevOps pro, looking to join a growing platform team where you can make a real difference? As a Platform Engineer at Cambridge Intelligence, you'll design and maintain reliable infrastructure and delivery pipelines for our acclaimed graph data visualization toolkits, sites and systems. What's involved? This is a varied technical role requiring extensive experience in both Platform and Software engineering with a particular focus on the building, delivering and monitoring of TypeScript/Node.js applications running on Kubernetes and AWS Cloud. Day to day, you could be applying yourself to anything from Platform architectural design or AWS Cloud management using Pulumi, to debugging CICD performance of Docker wrapped Node.js apps or integrating a JavaScript authentication library into our product sites. You should be comfortable leading on projects, debugging complicated systems and have an appreciation for the need to occasionally set project work to one side to debug and fix high priority issues in real time. You'll need a passion for your work, along with a desire to help others progress their technical skills through close collaboration, coaching and mentoring. Requirements Who's the ideal candidate? Our products are market leaders thanks to the innovation of our developers. To excel in this role, you should enjoy leading and collaborating on the design, implementation and maintenance of stable and reliable infrastructure for our products, sites and systems. You'll enjoy working closely with the development teams to make the development process as frictionless as possible. As a Platform Engineer, you'll get involved in various projects and processes including helping to mentor more junior members of the team. Our main programming language is TypeScript, so experience in that or JavaScript is essential. Required Skills Kubernetes / Docker expert AWS (EKS/EC2/S3/IAM) expert TypeScript / JavaScript / Node.js application development Infrastructure as Code - Pulumi or similar CDN configuration - CloudFlare or similar Production-grade Software Engineering CI/CD services - GitLab Pipelines or similar Build systems for monorepos Code management and version control - git/GitLab or similar Desirable skills Platform and web application security JS build tooling such as vite, webpack, rollup, etc Front end development - React Experience building/configuring auth libraries/services Experience working in, and/or setting up, an ISO governed environment Google Cloud Platform Linux knowledge / Bash scripting Opportunities to grow Everyone here gets funded professional development time, with up to five days allocated to learning new skills - whether that's at conferences, training programs or using our subscription to Front-End Masters. Be yourself We want to build a fair, respectful and welcoming company, where everyone feels at home. That means taking a long-term approach to equality, diversity and inclusion - not treating it as a tickbox exercise. With the help of our EDI group, we're working to make every aspect of the business - including recruitment - fair, respectful and inclusive. You will need the right to work in the UK now and in the future. No agency approaches please, we are only hiring directly. Benefits Hybrid working (three days a week in the office) Pension - up to 6% employer contribution Medical and Dental Insurance (BUPA) Up to 12% discretionary bonus 25 days annual leave 5 days of professional development paid for by the company Death in Service benefit Flexible holiday benefits Cycle scheme (fully funded by the company) EV scheme (conditions apply)

Cambridge, United Kingdom

Hybrid

Full Time

28-02-2025

Company Name: Roku
Job Title: Senior Data Scientist
Job Description: Teamwork makes the stream work. Roku Is Changing How The World Watches TV Roku is the #1 TV streaming platform in the US and Mexico, and we've set our sights on powering every television in the world. Roku pioneered streaming to the TV. Our mission is to be the TV streaming platform that connects the entire TV ecosystem. We connect consumers to the content they love, enable content publishers to build and monetize large audiences, and provide advertisers unique capabilities to engage consumers. From your first day at Roku, you'll make a valuable - and valued - contribution. We're a fast-growing public company where no one is a bystander. We offer you the opportunity to delight millions of TV streamers around the world while gaining meaningful experience across a variety of disciplines. About The Team The Core Analytics Team is a centralized function dedicated to providing data-driven insights to drive business and product success. We work closely with our Product and Engineering teams to deliver exceptional experiences to our customers while maximizing the value proposition for the business. This role can be based in either Cambridge or Manchester, with an on-site requirement of three days per week at the designated office. This is an essential aspect of the position. About The Role Roku is seeking a Senior Data Scientist to join the Core Analytics team supporting our international product team. In this role you will harness data to understand how users interact with our platforms across different with regions and work directly with Product Management and Engineering to identify actionable insights that will help to improve the user experience. This role offers a dynamic opportunity to investigate, design, and implement solutions to track, monitor, and optimize our ecosystem. The ideal candidate is detail-oriented, highly analytical, and passionate about solving complex challenges. What You’ll Be Doing Designing and maintaining dashboards, reports, and data visualizations to monitor key metrics for operational and system performance. Analyzing both structured and unstructured data to uncover insights, identify trends, and support Product Management and Engineering in solving business challenges and making informed decisions. Building and maintaining data pipelines to enable automation, validation, and reporting processes. Designing and Analyzing A/B tests Conducting exploratory data analysis to understand emerging trends and performing advanced analyses across the Roku platform. Providing leadership with actionable insights on the performance of various initiatives and identifying untapped opportunities. We're excited if you have 3+ years in data science and analytics, with a strong foundation in a quantitative field (e.g., Statistics, Data Science, Mathematics, Economics, Engineering, or Computer Science). A proven track record in consumer products, digital media, or entertainment industries. Proficiency in SQL, SAS, R, Python, or other query/analysis languages Hands-on expertise with visualization tools such as Tableau or Looker. A proactive approach to problem-solving, with a bias toward action in high-energy, fast-paced environments. Experience in A/B testing, statistical modeling, and forecasting, with a demonstrated ability to translate complex findings into practical solutions. If you’re passionate about leveraging data to create meaningful impact, thrive in collaborative environments, and want to be part of a team shaping the future of voice products, we’d love to hear from you. Benefits Roku is committed to offering a diverse range of benefits as part of our compensation package to support our employees and their families. Our comprehensive benefits include global access to mental health and financial wellness support and resources. Local benefits include statutory and voluntary benefits which may include healthcare (medical, dental, and vision), life, accident, disability, commuter, and retirement options (401(k)/pension). Our employees can take time off work for vacation and other personal reasons to balance their evolving work and life needs. It's important to note that not every benefit is available in all locations or for every role. For details specific to your location, please consult with your recruiter. The Roku Culture Roku is a great place for people who want to work in a fast-paced environment where everyone is focused on the company's success rather than their own. We try to surround ourselves with people who are great at their jobs, who are easy to work with, and who keep their egos in check. We appreciate a sense of humor. We believe a fewer number of very talented folks can do more for less cost than a larger number of less talented teams. We're independent thinkers with big ideas who act boldly, move fast and accomplish extraordinary things through collaboration and trust. In short, at Roku you'll be part of a company that's changing how the world watches TV. We have a unique culture that we are proud of. We think of ourselves primarily as problem-solvers, which itself is a two-part idea. We come up with the solution, but the solution isn't real until it is built and delivered to the customer. That penchant for action gives us a pragmatic approach to innovation, one that has served us well since 2002. To learn more about Roku, our global footprint, and how we've grown, visit https://www.weareroku.com/factsheet. By providing your information, you acknowledge that you have read our Applicant Privacy Notice and authorize Roku to process your data subject to those terms.

Cambridge, United Kingdom

On site

Full Time

25-02-2025

Company Name: Ørsted
Job Title: Information Security SCADA Specialist - Critical Infrastructure
Job Description: Join us in this role where you’ll be leading UKW hub national critical infrastructure with cyber secure generation. You will be leading in all areas of Information Security Management system across the region, initiating improvements of the system, and reporting from the system. This also includes ensuring that the implemented ISMS controls fulfil organisational and country-specific legal requirements where ISMS is implemented. Welcome to UK West Engineering You’ll be part of UKW Engineering team where you, together with your colleagues, will ensure secure, reliable generation from our European assets. You will ensure the best possible handling and improvement of cybersecurity and ensure compliance towards applicable country-specific legal requirements where ISMS is implemented. You’ll secure the lowest possible operating costs and consistently deliver high-quality results at the right time. You’ll play an important role in: maintaining and improving the cybersecurity risk register, including conducting risk identification, developing improvement roadmap and conducting follow-up workshops with relevant parties owning regional technical cyber security risks in close collaboration with Quality & Risk team. Developing, securing budget and implementing risk treatment plans defining effective business continuity plans for SCADA IT/OT systems, maintaining them and implementing them in emergency scenarios, leading event recovery sessions in relation to area of expertise facilitating and supporting regional hub initiatives on continuous improvement of ISMS, including instructions, controls, reports, training, or other work related to ISMS ensuring development and roll-out of training to all involved functions as well as supporting relevant teams in the implementation of ISMS requirements establishing, conducting, and following up on regional audits (internal & external) and management reviews in accordance with requirements in ISMS. To succeed in the role, you: [HFJ1] hold a degree in Information Security, Cybersecurity, Computer Science, or a related field are proficient in cyber security in IT/OT environments, preferably with in-depth knowledge on ISO27001/27019 and IEC62443. National requirements such as NIS-CAF would be advantageous possess relevant cybersecurity certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) bring prior experience working independently in the energy sector, particularly in a regulated environment such as utilities, renewable energy, or oil and gas are proficient in risk assessment methodologies, security controls, and incident response management demonstrate ability to work effectively with external vendors and internal stakeholders to achieve security objectives. Maybe you’ve read the above and can see you have some transferable skills, even though they don’t quite match all the points. If you think you can bring something to the team, we still encourage you to apply. Shape the future with us Send your application to us as soon as possible. We’ll be conducting interviews on a continuous basis and reserve the right to take down the advert when we’ve found the right candidate. As an applicant or employee, you may request reasonable work and position accommodation or adjustments via accommodation@orsted.com. Please note that for your application to be taken into consideration, you must submit your application via our online career pages and answer the screening questions relevant for your country. We don't take applications or inquiries from external recruiters or agencies into account for this position.

Barrow-In-Furness, United Kingdom

On site

Full Time

27-02-2025